Deadloop is my technical blog focused on cybersecurity, system administration, and software development. Welcome to a space where I share practical how-tos, code examples, and reproducible labs for developers, students, and security professionals. My goal is to share knowledge and highlight important topics I’ve encountered during 25 years working in IT and security architecture. My writing style is straightforward, fact-based, and hands-on. About Me I’m a cybersecurity architect working in government and run my own consulting business. I’ve programmed in many languages including C/C++, Python, PHP, C#, and also PL/I. ...
Brief introduction to Web Application Firewalls
A Web Application Firewall (WAF) is a security solution that protects web applications by filtering and monitoring HTTP/HTTPS traffic between clients and the application. Unlike traditional firewalls that operate at the network level, a WAF focuses on the application layer, enabling it to detect and block threats targeting the specific logic of web applications. This includes inspecting and filtering URLs, form inputs, cookies, and other user-generated content. In addition to basic (rule based) filtering, many WAFs offer advanced features such as IP white- and blacklisting, which allow administrators to explicitly permit or block traffic from specific IP addresses or ranges. ...