Bachelor thesis: Expansion of a reverse proxy to a web application firewall (WAF)
open positions at SRC
SRC Security Research & Consulting bundles the latest know-how on security in information technology. SRC’s strengths lie in the design, specification, implementation, operation and security assessment of systems and infrastructures.
Web application firewalls (WAF) have become established for securing web applications. Independent commercial solutions are often used here. On the other hand, many reverse proxies based on an apache or nginx web server or Squid proxy are in use, which are also powerful tools.
A web application firewall (WAF) is a security solution developed to protect web applications from a variety of online threats. It acts as a kind of filter between the internet and the web application to detect and block malicious traffic patterns. Essentially, a WAF serves to protect vulnerabilities and security holes in web applications by blocking attacks such as cross-site scripting (XSS), SQL injection, distributed denial of service (DDoS) and other types of attacks.
A WAF analyzes the traffic reaching the web application using various techniques such as signatures, behavioral analysis and rules to detect suspicious activity. If it detects signs of an attack, it blocks the malicious traffic or redirects it without affecting legitimate traffic.
Based on an exemplary web infrastructure, requirements for a WAF are to be formulated (requirements specification). Subsequently, the possibilities of a WAF based on a reverse proxy based on an apache or nginx web server will be determined and a reverse proxy will be supplemented by the possibilities of a WAF.
We look forward to receiving your application, stating your possible starting date and salary expectations, at karriere@src-gmbh.de.
SRC Security Research & Consulting GmbH
Personnel Department
Emil-Nolde-Str.7
D‑53113 Bonn