05-12-2022 11:10 AM - last edited on 06-01-2022 08:41 AM by RPrasadi
Hello,
I was curious if is the Palo Alto Prisma Cloud WAAS just a host based WAF or a Runtime Application Self Protection (RASP) solution? My idea is that RASP is getting popular as way to block 0 day server web attacks even without signatures using behavour patterns but I do not know if the Palo Alto WAAS is a WAF, RASP or the two at the same time.
If it is just a WAF maybe if it can be integrated with Cortex XDR then it can monitor also behaviour if such intergation is possible?
05-21-2022 12:27 AM
After talking with some people that work with XDR, there is a new XDR agent for clouds that is installed separately than the Prisma Cloud Defender and WaaS on the hosts (virtual machines, containers, kubernetes). The WaaS is a full featured WAF and the XDR agent is adding extra protections but not a RASP but I still can't decide if RASP is better than a WAF, so this is under review if RASP is needed.
05-21-2022 12:27 AM
After talking with some people that work with XDR, there is a new XDR agent for clouds that is installed separately than the Prisma Cloud Defender and WaaS on the hosts (virtual machines, containers, kubernetes). The WaaS is a full featured WAF and the XDR agent is adding extra protections but not a RASP but I still can't decide if RASP is better than a WAF, so this is under review if RASP is needed.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
