Spoke at CPE session, ISACA Muscat Chapter
What is a web application firewall, how does it work, how to audit it, how to assess risks around a web application firewall.
So, this happened.
I spoke at a CPE (Continuous Professional Education) session on WAF (Web Application Firewall), its working, and some considerations around its audit and risk assessment (in other words, what to consider if you are to audit or assess risks around WAF).
Here's the PDF of the session. Credit to the original authors for the images used.
At the intersection of pentest, auditing, risk management and career advice. Musings based on real experiences, not theory. All infosec, mashed up.
Follow the Risky Context channel on WhatsApp (if WhatsApp is your thing. Your number is not shared with others when you connect to my channel): https://whatsapp.com/channel/0029VaDqrFU8aKvQohD5nq0r
