Sherlock Holmes on WAF Evasion - Imperva Data Security Blog

August 13, 2012

Sherlock Holmes on WAF Evasion

While running for President, former US Senator Paul Tsongas famously said, “That's a good question. Let me try to evade you.” He didn't make it past the primaries.

There was a lot of discussion about WAF evasion techniques at this year's Black Hat. Imperva's Tal Be'ery, in his weekly Security Week column, gives an interesting take on the issue. In a nutshell:

By using evasion techniques hackers break the most basic principle of hiding as stated by Sherlock Holmes: “the best place to hide something is where everyone can see it.” The evasion technique usage just draws more attention from the WAF and actually helps the WAF to block the attack.

Posted by Imperva Blogger at 01:52:04 PM | Rob Rachwald

Comments

Verify your Comment

Previewing your Comment

Posted by: |

This is only a preview. Your comment has not yet been posted.

Your comment could not be posted. Error type:

Your comment has been saved. Comments are moderated and will not appear until approved by the author. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.