Tell me about security events

Events are web site security violations detected by a WAF firewall you've deployed using your virtual platform. Our service monitors your web applications for security violations according to the policies you've applied to them.

Hover over an event and select View Event Details from the Quick Actions menu. Show me

Yes, it's easy. Just select the events and then choose "Mark as False positive" from the Actions menu.

Tip - Events marked as false positive won't appear in the event list unless you turn on the Include False Positive filter.

Once included in your filters you'll see icon in the event details.

Flagging events is a way to mark events for future reference. A yellow flag   indicates a flagged event.

How do I flag an event? Just click to the left of the web application name. To flag multiple events, select the events and then choose "Mark as flagged" from the Actions menu.  

Want to see all your flagged events? Select the Status called Flagged Only under Filter Results (in left column).

Archiving is a way to remove events from your view without actually deleting them. Archived events will not be used in the calculations for your dashboard statistics and, by default, they do not appear in your event list.

How do I do this? Select the events to archive, then select Archive from the Actions menu.

How do I view archived events? Under Filter Results select the Status called Archived only. You'll see in event details.

Go to your Events list, identify the security event you want to allow and choose Create exception from the Quick Actions menu. Review the exception details and feel free to update or remove rule conditions. Then click OK. We'll add the exception rule to your firewall. The exception is deployed to the WAF appliances that are protecting the application where the event was detected.

You'll see icon in the event and rule details.

Learn more

Use Virtual Patches upon vulnerability detection by the Web Application Scanning (WAS) app. Learn more