Web Application Firewall (WAF)

AI-driven protection of your sites, services & web applications.

Let's Connect

Currently under DDoS attack? Get immediate mitigation with our emergency on-boarding. Contact Us Now!


The Oracle Dyn Web Application Firewall (WAF) is designed to protect web applications, meet compliance requirements, eliminate management complexity, and reduce operational costs for all organizations with Internet-facing web applications and services. Oracle Dyn WAF offers a flexible solution that is easily deployed and continuously managed. This guarantees ongoing monitoring and tuning of WAF security policies to maintain optimal performance and effective security for your web applications.

Oracle Dyn’s feature-rich web application security is 100% cloud-based. Configured as a reverse-proxy, the Oracle Dyn WAF inspects all traffic destined to your web application origin and identifies and blocks any malicious traffic.  The Oracle Dyn solution is built across globally distributed POPs to ensure minimum latency and maximum coverage. Once under protection, your web application only accepts traffic from WAF nodes, completely isolating your origin from any threats.

Receive a fully custom security report - for free!

Do you have the tools and expertise you need to intelligently defend your sites, systems, and applications from a complex and ever-evolving cyber threat landscape? Let's find out!

Request Free Report


AI Driven

Our WAF uses artificial intelligence to dynamically and automatically update security postures to protect web applications from vulnerabilities. Leveraging Oracle Dyn’s patent-pending mathematical model based on proprietary machine learning algorithms and big data analysis, the AI WAF inspects web traffic in real-time, identifies threats and behavior anomalies, and dynamically updates security postures accordingly.

Real Time SIEM Support

The Oracle Dyn WAF is able to integrate seamlessly with the most popular security information and event management (SIEM) platforms to leverage the aggregation of network and application threat intelligence. Oracle Dyn has developed an extensive SIEM integration framework that allows for the flow of event information from the WAF to leading vendors.

24x7 SOC with follow-the-sun operations

Oracle Dyn operates three security operation centers (SOC) around the world with 24x7 coverage and a two-hour overlap across shifts to ensure any open cases are transitioned seamlessly to the next shift. Leveraging automation coupled with the best cybersecurity talent in the industry, Oracle Dyn delivers continuous monitoring and immediate response in the event of an attack.

Download WAF Datasheet

Web Application Security Policies: OWASP 10, PCI Compliance and Customizable Rules

Oracle Dyn WAF specifically focuses on the following OWASP 10 vulnerability groups:

  • A1 – Injections (SQL, LDAP, OS, etc.)
  • A3 – Cross Site Scripting
  • A4 – Insecure Direct Object Reference
  • A6 – Sensitive Data Exposure
  • A8 – Cross Site Request Forgery
  • A9 – Using Components with Known Vulnerabilities
  • A10 – Invalidated Redirects and Forwards

PCI Compliance & App Specific Configurations

Oracle Dyn has created a set of application specific rules that address compliance requirements and vulnerabilities for ecommerce platforms, Drupal and SharePoint. The list is always growing!

Custom Rules

Each client has the ability to create their own custom rules. Oracle Dyn works with clients to create unique rules during the onboarding process and includes the capability to create custom rules for all applications any time custom rules are required by the web application.

Ready to see Oracle Dyn WAF in action?

Find out how Dyn can help improve your application security.

Let's Connect