Dailydave mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [EXTERNAL] WAF Metrics

From: John Lampe via Dailydave <dailydave () lists aitelfoundation org>
Date: Sat, 11 Jul 2020 21:50:26 -0400
So, I recently did an integration for a company that took their web app
scanner results and mapped those to existing WAF rules. I can think of 2
metrics based off that

1) How many real-world vulns have a corresponding check in the WAF? and
2) Once the WAF rules have been put in place to protect actually-vulnerable
endpoints, how many attacks were actually stifled?

John


On Sat, Jul 11, 2020 at 12:51 PM Dave Aitel via Dailydave <
dailydave () lists aitelfoundation org> wrote:


**** CAUTION: This email was sent from an EXTERNAL source. Think before
clicking links or opening attachments. ****
------------------------------
So I'm making a video on metrics, of all things, and I wanted to post both this
question <https://twitter.com/daveaitel/status/1281629327776522242?s=20>and
the best answer so far to the list to see if anyone had any other ideas or
followups.

-dave


[image: image.png]

[image: image.png]
_______________________________________________
Dailydave mailing list -- dailydave () lists aitelfoundation org
To unsubscribe send an email to dailydave-leave () lists aitelfoundation org



_______________________________________________
Dailydave mailing list -- dailydave () lists aitelfoundation org
To unsubscribe send an email to dailydave-leave () lists aitelfoundation org
Previous By Date Next
Previous By Thread Next

Current thread: