AppSec Made Easy: L7 Behavioral DoS

Learn how to use the F5 Advanced Web Application Firewall to easily implement DoS protections for your application. Layer 7 DoS can be challenging, and prebuilt signatures are often not enough. F5 dynamically builds signatures and implements various protections as needed based on the behavior of the application and the attackers, reducing false positives and providing quicker time to mitigation.

See the entire AppSec Made Easy series.

Published May 08, 2018
Version 1.0
advanced waf
ASM Advanced WAF
behavioral dos
BIG-IP
ddos
dos
security
waf
  • rob_carr's avatar
    rob_carr
    Icon for Cirrostratus rankCirrostratus
    May 15, 2018

    Great video, but what were you using for traffic generation?

     

  • Graham_Alderso1's avatar
    Graham_Alderso1
    Icon for Employee rankEmployee
    May 15, 2018

    Thanks rob_carr! For the video I used a bunch of simultaneous threads of Apache Bench each with different settings and changing what they sent over time. I launched those with a few scripts. This way you could see how the BIG-IP changed the mitigation technique and dynamic signatures as the attack evolved.