Forum Discussion

Altostratus

Sep 20, 2018

JSON Parser Attack

Hi All, I have enabled WAF policy in blocking mode and i could see the WAF is blocking. Client is using JSON scripts and its being blocked by WAF. How to bypass the JSON parser attack . ...

application delivery

ASM Advanced WAF

security

Nimbostratus

Apr 07, 2022

enabling WAF may block requests if you don't custom your policy according to your needs.

if your json content has some special characters or any pattern that may match a signature, the request may get blocked.

you can look at the logs and see what is the reason of the blocking.

Recent Discussions

how to whitelist new source IP on F5 web UI access
Jan 02, 2025
Herman2024
F5 to read a combined CRL file
Jan 02, 2025
awan_m
Upgrade F5 BIGIP
Jan 02, 2025
Ollie_Alderson
ISP Load Balancing, SNAT pool instead of Automap link self-ip, anyway to do health check ?
Jan 02, 2025
russellasl00
MAC address of deleted VS IP address still responsive
Jan 02, 2025
Teddy_Brewski

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

JSON Parser Attack

Recent Discussions

how to whitelist new source IP on F5 web UI access

F5 to read a combined CRL file

Upgrade F5 BIGIP

ISP Load Balancing, SNAT pool instead of Automap link self-ip, anyway to do health check ?

MAC address of deleted VS IP address still responsive

Related Content

JSON Web Token (JWT) Parser

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Json parsing with iRules

Attacks against Domain Specific Languages, EU Cybersecurity Laws, & Supply Chain Attacks

The HTTP/2 CONTINUATION frame attack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS