Hello Every one ,
kindly i need to know what is the Best Practices to review the AWAF Policy .
If some one have like DOC or check list or standard questions to ask that would be great .
Thank you in advance
Check out K07359270: Succeeding with application security
For AWAF, F5 implemented an owasp top ten dashboards that can help you, and guide you in the deployment of all the security features in each asm policy, you must have running Big-ip V15,
Additionally, let me share with you an amazing guide to operate ASM: