Forum Discussion

Altostratus

Sep 20, 2018

JSON Parser Attack

Hi All, I have enabled WAF policy in blocking mode and i could see the WAF is blocking. Client is using JSON scripts and its being blocked by WAF. How to bypass the JSON parser attack . ...

application delivery

ASM Advanced WAF

security

Altocumulus

Apr 07, 2022

enabling WAF may block requests if you don't custom your policy according to your needs.

if your json content has some special characters or any pattern that may match a signature, the request may get blocked.

you can look at the logs and see what is the reason of the blocking.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

JSON Parser Attack

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

JSON Web Token (JWT) Parser

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Json parsing with iRules

Post-Quantum Cryptography, OpenSSH, & s1ngularity supply chain attack

November Security Research Update: Newly Released Attack Signatures

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS