b04e965d73
|
||
|---|---|---|
| .. | ||
| README.md | ||
| _sidebar.md | ||
| begin.md | ||
| contribute.md | ||
| discuss.md | ||
| install.md | ||
| problems.md | ||
README.md
Introduction
!> UUSEC WAF Web Application Firewall is an industrial grade free, high-performance, and highly scalable web application and API security protection product that supports AI and semantic engines. It is a comprehensive website protection product launched by UUSEC Technology, which first realizes the three-layer defense function of traffic layer, system layer, and runtime layer.
🎯 Advantages
⛎ Intelligent 0-day defense
UUSEC WAF innovatively applies machine learning technology, using anomaly detection algorithms to distinguish and identify HTTP normal and attack traffic, and models whitelist threats to normal traffic. By using machine learning algorithms to automatically learn the parameter characteristics of normal traffic and convert them into corresponding parameter whitelist rule libraries, it is possible to intercept attacks without adding rules when facing various sudden 0-day vulnerabilities, eliminating the pain of website managers having to work late to upgrade as soon as vulnerabilities appear.
♉ Ultimate CDN acceleration
UUSEC self-developed cache cleaning feature surpasses the arbitrary cache cleaning function only available in the commercial version of nginx, proxy_cache_purge. The commercial version of nginx only supports * pattern matching to clean the cache, while UUSEC WAF further supports regular expression matching URL path cache cleaning, which has higher flexibility and practicality compared to the commercial version of nginx. Users can enjoy ultimate CDN acceleration while more conveniently solving cache expiration issues.
♍ Powerful proactive defense
The self-developed 'HIPS' and 'RASP' functions of UUSEC WAF can achieve more powerful dual layer defense at the system layer and application runtime layer, effectively preventing zero day vulnerability attacks. Host layer active defense can intercept low-level attacks at the system kernel layer, such as restricting process network communication, process creation, file read and write, system privilege escalation, system overflow attacks, etc. Runtime application self-defense RASP is inserted into runtime engines such as Java JVM and PHP Zend to effectively track runtime context and intercept various web 0-day vulnerability attacks.
♎ Advanced semantic engine
UUSEC WAF adopts four industry-leading semantic analysis based detection engines, namely SQL, XSS, RCE, and LFI. Combined with multiple deep decoding engines, it can truly restore HTTP content such as base64, JSON, and form data, effectively resisting various attack methods that bypass WAF. Compared with traditional regular matching, it has the characteristics of high accuracy, low false alarm rate, and high efficiency. Administrators do not need to maintain a complex rule library to intercept multiple types of attacks.
♊ Advanced rule engine
UUSEC WAF actively utilizes the high-performance and highly flexible features of nginx and luajit. In addition to providing a traditional rule creation mode that is user-friendly for ordinary users, it also offers a highly scalable and flexible Lua script rule writing function, allowing advanced security administrators with certain programming skills to create a series of advanced vulnerability protection rules that traditional WAF cannot achieve. Users can write a series of plugins to extend the existing functions of WAF. This makes it easier to intercept complex vulnerabilities.
🔥 Pricing
UUSEC WAF provides you with rich and powerful web security and API protection features, and the Community Edition may be the strongest free WAAP product you have ever seen. At the same time, UUSEC WAF also provides a more powerful commercial version for commercial users. The product features are compared as follows:
| Price | Free | $499/year | Custom |
| Sites management | |||
| Vulnerabilities protection | |||
| CC protection | |||
| Backdoor detection | |||
| Business Security | |||
| CDN acceleration | |||
| Advanced rules | |||
| Plugins extension | |||
| Compliance audit | |||
| Log report | |||
| Regional restrictions | |||
| Load balancing | |||
| Intercept page | |||
| Grades protection | |||
| Free certificates | |||
| Multi-users permissions | |||
| Machine learning | |||
| Enhanced rules | |||
| Data masking | |||
| Technical support | |||
| HIPS | |||
| RASP | |||
| Cluster management | |||
| Customized development |
🎨 Screenshots
UUSEC WAF provides you with a simple and easy-to-use WAF backend management interface. After installation, all operations can be completed in the browser, and all configurations take effect immediately without restarting, far exceeding most free WAF products on the market such as ModSecurity, as follows:
🍢 Management
📦 Rules
