Forum Discussion

Cirrostratus

Jun 19, 2024

F5 WAF risk assessment process

I got request to do f5 WAF risk assessment for my environment, do you have any suggestions how should i do Any documents/steps/url that I can follow to do the same. I don't have any vulnerabili...

application delivery

security

boneyard

MVP

Jun 23, 2024

You asked this before and got an answer there, what was not ok with that?

Beyond that you give pretty limited information. Should the risk assessment be of the F5 WAF itself or the application beyond the F5 WAF?

If you search the internet you can find many resources about risk assessments, it helps to make clearer what you want your scope is because else this becomes way too broad a question to answer.

It is also always possible to get external help, perhaps your F5 partner or your security partner can assist with a start or the whole proces.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

F5 WAF risk assessment process

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Mitigating OWASP API Security Top 10 risks using F5 NGINX App Protect

Mitigate OWASP LLM Security Risk: Sensitive Information Disclosure Using F5 NGINX App Protect

Mitigating OWASP API Security risks using BIG-IP

Mitigating OWASP API Security Risk: Mass Assignment using F5 XC Platform

Enabling F5 Distributed Cloud Fraud and Risk Solutions with ForgeRock Connector

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS