AWS WAF is a web application firewall that helps protect your webnbsp;applications from common web exploits that could affect applicationnbsp;availability, compromise security, or consume excessive resources. AWSnbsp;WAF gives you control over which traffic to allow or block to your webnbsp;applications by defining customizable web security rules. You can use AWSnbsp;WAF to create custom rules that block common attack patterns, such as SQLnbsp;injection or cross-site scripting, and rules that are designed for your specific application. New rules can be deployed within minutes, letting you respondnbsp;quickly to changing traffic patterns. Also, AWS WAF includes a full-featurednbsp;API that you can use to automate the creation, deployment, and maintenancenbsp;of web security rules.nWith AWS WAF you pay only for what you use. AWS WAF pricing is based on how many rules you deploy and how many web requests your web application receives. There are no upfront commitments.nYou can deploy AWS WAF on either Amazon CloudFront as part of your CDN solution or the Application Load Balancer (ALB) that fronts your web servers or origin servers running on EC2.nbsp;


API Paths

Associate Web ACL (GET) /?Action=AssociateWebACL OpenAPI
Create Byte Match Set (GET) /?Action=CreateByteMatchSet OpenAPI
Create IP Set (GET) /?Action=CreateIPSet OpenAPI
Create Rule (GET) /?Action=CreateRule OpenAPI
Create Size Constraint Set (GET) /?Action=CreateSizeConstraintSet OpenAPI
Create Sql Injection Match Set (GET) /?Action=CreateSqlInjectionMatchSet OpenAPI
Create Web ACL (GET) /?Action=CreateWebACL OpenAPI
Create XSS Match Set (GET) /?Action=CreateXssMatchSet OpenAPI
Delete Byte Match Set (GET) /?Action=DeleteByteMatchSet OpenAPI
Delete IP Set (GET) /?Action=DeleteIPSet OpenAPI
Delete Rule (GET) /?Action=DeleteRule OpenAPI
Delete Size Constraint Set (GET) /?Action=DeleteSizeConstraintSet OpenAPI
Delete Sql Injection Match Set (GET) /?Action=DeleteSqlInjectionMatchSet OpenAPI
Delete Web ACL (GET) /?Action=DeleteWebACL OpenAPI
Delete Xss Match Set (GET) /?Action=DeleteXssMatchSet OpenAPI
Disassociate Web ACL (GET) /?Action=DisassociateWebACL OpenAPI
Get Byte Match Set (GET) /?Action=GetByteMatchSet OpenAPI
Get Change Token (GET) /?Action=GetChangeToken OpenAPI
Get Change Token Status (GET) /?Action=GetChangeTokenStatus OpenAPI
Get IP Set (GET) /?Action=GetIPSet OpenAPI
Get Rule (GET) /?Action=GetRule OpenAPI
Get Sampled Requests (GET) /?Action=GetSampledRequests OpenAPI
Get Size Constraint Set (GET) /?Action=GetSizeConstraintSet OpenAPI
Get Sql Injection Match Set (GET) /?Action=GetSqlInjectionMatchSet OpenAPI
Get Web ACL (GET) /?Action=GetWebACL OpenAPI
Get Web ACLFor Resource (GET) /?Action=GetWebACLForResource OpenAPI
Get Xss Match Set (GET) /?Action=GetXssMatchSet OpenAPI
List Byte Match Sets (GET) /?Action=ListByteMatchSets OpenAPI
List IP Sets (GET) /?Action=ListIPSets OpenAPI
List Resources For Web ACL (GET) /?Action=ListResourcesForWebACL OpenAPI
List Rules (GET) /?Action=ListRules OpenAPI
List Size Constraint Sets (GET) /?Action=ListSizeConstraintSets OpenAPI
List SQL Injection Match Sets (GET) /?Action=ListSqlInjectionMatchSets OpenAPI
List Web ACLs (GET) /?Action=ListWebACLs OpenAPI
List Xss Match Sets (GET) /?Action=ListXssMatchSets OpenAPI
Update Byte Match Set (GET) /?Action=UpdateByteMatchSet OpenAPI
Update IP Set (GET) /?Action=UpdateIPSet OpenAPI
Update Rule (GET) /?Action=UpdateRule OpenAPI
Update Size Constraint Set (GET) /?Action=UpdateSizeConstraintSet OpenAPI
Update SQL Injection Match Set (GET) /?Action=UpdateSqlInjectionMatchSet OpenAPI
Update Web ACL (GET) /?Action=UpdateWebACL OpenAPI
Update Xss Match Set (GET) /?Action=UpdateXssMatchSet OpenAPI