Forum Discussion

Cirrostratus

Jun 19, 2024

F5 WAF risk assessment process

I got request to do f5 WAF risk assessment for my environment, do you have any suggestions how should i do Any documents/steps/url that I can follow to do the same. I don't have any vulnerabili...

application delivery

security

boneyard

MVP

Jun 23, 2024

You asked this before and got an answer there, what was not ok with that?

Beyond that you give pretty limited information. Should the risk assessment be of the F5 WAF itself or the application beyond the F5 WAF?

If you search the internet you can find many resources about risk assessments, it helps to make clearer what you want your scope is because else this becomes way too broad a question to answer.

It is also always possible to get external help, perhaps your F5 partner or your security partner can assist with a start or the whole proces.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

F5 WAF risk assessment process

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

Mitigating OWASP API Security Top 10 Risks – 2023 using F5 BIG-IP

Mitigating OWASP API Security Risk: BOPLA using F5 BIG-IP

Mitigating OWASP API Security Risks: Broken Authentication using BIG-IP

Mitigating OWASP API Security risks using BIG-IP

Mitigating OWASP API Security Risk: Mass Assignment using F5 BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS