The Web Application Firewall (WAF) protects web applications and APIs against various attacks such as those highlighted in the OWASP Top 10 (SQL injections, cross-site scripting (XSS) etc.), application layer denial of service (DoS) attacks such as amplification or Slowloris attacks, zero day attacks etc. It filters, analyses and blocks the content of HTTP / HTTPS requests in incoming traffic, based on their behaviour and logic. This protects your web resources from malicious users and distinguishes legitimate users from unwanted DDoS traffic.