A retail company has recently migrated its website to AWS. The company wants to ensure that it is protected from SQL injection attacks. The website uses an
Application Load Balancer to distribute traffic to multiple Amazon EC2 instances.
Which AWS service or feature can be used to create a custom rule that blocks SQL injection attacks?
AWS WAF (Web Application Firewall) can create custom rules that inspect incoming requests and block any that match patterns or signatures associated with SQL injection attacks. By using AWS WAF, you can define conditions and actions for SQL injection detection and apply these rules at the Application Load Balancer level, providing protection for your web application across multiple Amazon EC2 instances.
"You can also use AWS WAF to block or allow requests based on conditions that you specify, such as the IP addresses that requests originate from or *****values in the requests*****." Values in the requests can match sql injections
A - instance level firewall B - yes C - subnet level firewall D - shields from DDOS
AWS WAF is a web application firewall that helps protect web applications from common web exploits and vulnerabilities, including SQL injection attacks. With AWS WAF, you can create custom rules that inspect incoming requests and block any requests that match specific patterns or signatures associated with SQL injection attacks. By configuring AWS WAF with custom rules, you can define conditions and actions to be taken when SQL injection attempts are detected. These rules can be applied at the Application Load Balancer level, allowing you to protect your web application across multiple Amazon EC2 instances behind the load balancer.
Vote for B https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-sqli-match.html
Answer is B.
AWS WAF - B
With AWS WAF, you can create security rules that control bot traffic and block common attack patterns such as SQL injection or cross-site scripting (XSS). https://aws.amazon.com/waf/
B. AWS WAF
Website protection - AWS Website Application Firewall (AWS WAF)
Answer is A
Sorry B.. aws WAF
B is the answer.
https://docs.aws.amazon.com/waf/latest/developerguide/waf-rule-statement-type-sqli-match.html
B. AWS WAF
AWS WAF IS controlling Injection attacks in cloud ,with help of calling and taking common factors of Ip addresses and original forms of the requests in cloud .