Wallarm - Cloud-Native Application and API Security

In Web Application Security

Wallarm API Firewall outperforms Nginx in a production environment

September 14, 2021 10 Mins Read

Wallarm API Firewall is a free light-weighted API Firewall that protects your API endpoints in cloud-native environments with API schema validation. Wallarm API Firewall relies on a positive security model allowing calls that match a predefined API specification, while rejecting everything else. Wallarm API Firewall is available as a Docker container (with 15M+ pulls to date). You can run the API Firewall Docker container through docker-compose or in Kubernetes. For instructions on launching a sample…

In Network Security

An Introduction to the Specifics of Start-Ups Security

August 26, 2021 4 Mins Read

Security probably would not be too interesting to you at all if you were a liquor store, restaurant, or work…

In Cloud Security

5 Themes for Product Security and Fostering Organizational Growth

August 5, 2021 6 Mins Read

Product security (ProdSec) is crucial in the process of growing your business, as it helps build a solid and recognizable brand for products.

In API Security

Securing REST with free API Firewall. How-to guide

June 8, 2021 9 Mins Read

In our modern world, web applications are becoming ever more important. Bad actors know this and they target them more…

In WAF

Wallarm NG WAF is ranked as a “High Performer” by G2, Spring 2021!

May 19, 2021 2 Mins Read

We are proud to announce that Wallarm NG WAF was ranked as a “High performer” by G2 in the Web…

In API Security

What does Zero Trust mean for API security?

May 7, 2021 5 Mins Read

The old mentality of building a moat around important assets and trusting anyone or anything that is already inside the…

In API Security

Wallarm API Discovery: Discover API endpoints automatically and secure them

April 6, 2021 4 Mins Read

What do you know about your APIs? Why are the vulnerable v2 and v3 still exposed if they are deprecated…

In API Security

http2smugl: HTTP2 request smuggling security testing tool

April 4, 2021 11 Mins Read

HTTP/2 become the standard defacto for the modern web and causes new application security risks. The HTTP2 request smuggling is…

In Different attack types

Weekly exploit digest – March, 15-21 – VMware View Planner, Win32k ConsoleControl, Microsoft Windows Containers DP API

March 21, 2021 6 Mins Read

Welcome to our weekly exploit digest! We should say this hasn’t been a big week because guys keep producing exploits…

In Researcher Corner

Web vulnerabilities exploit weekly digest #1. March 8-15th 2021. VMware vCenter and Apache OFBiz RCE.

March 16, 2021 5 Mins Read

Welcome to the Wallarm weekly web exploits digest! Since this week, we will publish our weekly digests consists of web…

In Researcher Corner

Why WAFs can’t catch VMware CVE-2021-21972 Remote Code Execution Exploit?

March 8, 2021 3 Mins Read

The recent critical security issue in VMware vCenter was discovered this January and fixed on February 23rd https://www.vmware.com/security/advisories/VMSA-2021-0002.html. The exploit looks like…