CloudGuard WAF is a cloud-native web application and API security solution developed by Check Point. It uses contextual AI and machine learning to detect and prevent threats against web applications and APIs without relying on traditional signatures. The solution offers several key capabilities: 1. ML-based threat prevention that addresses OWASP Top 10 vulnerabilities with minimal tuning requirements 2. API discovery and security features that help identify and protect against malicious API access and enforce API schema 3. Bot and DDoS prevention to stop automated attacks 4. Intrusion Prevention System (IPS) with protections for over 2,800 web CVEs and support for custom Snort 3.0 signatures CloudGuard WAF includes API discovery functionality that helps organizations identify and analyze their complete API landscape, including shadow APIs, rogue APIs, zombie APIs, and deprecated endpoints. This capability allows users to monitor API changes, minimize API drift, and protect sensitive data such as PII, financial information, and login credentials. The solution is available as a service (WAFaaS) that can be deployed quickly through DNS configuration changes. The service-based deployment automatically provides and renews SSL certificates and leverages CDN delivery to ensure continuous service availability against DDoS and bot attacks. CloudGuard WAF integrates with Check Point's broader CloudGuard platform, which includes additional cloud security capabilities such as Cloud Detection & Response, Cloud Security Posture Management, Cloud Native Application Protection, and Code Security.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A tool for detecting capabilities in executable files, providing insights into a program's behavior and potential malicious activities.
An insecure web application with multiple vulnerable web service components for learning real-world web service vulnerabilities.
Runtime application security platform that provides vulnerability management, patching, and threat detection at the application level during program execution.
A full python tool for analyzing Android files with various functionalities.
A SaaS-based web application firewall that combines signature and behavioral-based threat detection to protect applications deployed across cloud, on-premises and edge environments.
A series of levels teaching about common mistakes and gotchas when using Amazon Web Services (AWS).
An API security platform that provides automated security testing, runtime protection, and lifecycle management for APIs through integrated tools and controls.
SearchCode is an extensive code search engine that indexes 75 billion lines of code from millions of projects to help developers find coding examples and libraries.
PINNED

Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.