2020-06-17T11:18:00Z
Rony_Sklar - PeerSpot reviewer
Community Manager at PeerSpot (formerly IT Central Station)
  • 4
  • 180

What is a Bot Manager? How does it differ from WAF?

It seems that there is some overlap between these two types of solutions - how do Bot Managers and WAF differ? How can they work together to improve security?

5
PeerSpot user
5 Answers
JT
DevOps Senior Engineer at Fingerhut
User
2021-11-12T15:27:41Z
Nov 12, 2021

In general, WAF inspects the requested traffic, mostly incoming and some outgoing (responses), matches rules/ conditions, then takes appropriate actions. 


Again in general.

Bot Manager is a tool to detect a human and automated scripts = Bot traffic.


As automated scripts get smarter, some of them can emulate human behavior.


So, there are different levels of a bot manager release to adapt to the changing of an automated script.


Both should be used in conjunction to reach the maximum benefit of protection.

Search for a product comparison in Web Application Firewall (WAF)
MK
ICT/Presales Manager with 51-200 employees
User
2020-06-23T10:55:47Z
Jun 23, 2020

What’s the Difference Between a WAF and Bot Blocking Solution?


The main difference between a WAF and a bot mitigation solution is that the focal point of a bot mitigation solution is to only target bots. A WAF is capable of targeting them as well but is more focused on protecting against a combined threat profile to prevent app exploitations and safeguard sensitive data.

So which is better? It depends. If a company’s security goal is to minimize the probability of account takeover, content scraping, or denial of service attacks, to name a few examples, a bot mitigation solution would be best. If the goal is to safeguard against internal app exploitations, such as SQL injections or session hijacking, a Web Application Firewall serves best. It all depends on the security objective a company has for their web application, and in many cases, both solutions are leveraged to build a stronger security perimeter.

it_user989274 - PeerSpot reviewer
Systems Engineer at Datasure Solutions
Real User
2020-06-23T10:49:28Z
Jun 23, 2020

A Bot manager differs from a WAF in that it focuses on the management of Bots which comprises about 50% of web traffic today. A good bot manager should be able to differentiate between good and bad bots and perform relevant actions to prevent overwhelming a web application by bot activity ( even in advanced bot attacks ) WAF, on the other hand, manages a broader spectrum of threat activities which also includes bot detection. However, WAF is primarily designed to protect against the exploitation of web application vulnerabilities, like SQL injection, cross-site scripting, cross-site request forgery, and others. By this description, although WAF can do some level of bot filtering, it is not as deep and advanced as a dedicated bot manager. Both can definitely work together to enhance the security posture of an application. A bot manager can be positioned in front of a WAF to filter malicious bot traffic before reaching the WAF which protects the application from bad traffic processing.

SaurabhPal - PeerSpot reviewer
Technical Specialist - Network & Security at a tech services company with 201-500 employees
Real User
Top 10
2020-06-26T17:04:20Z
Jun 26, 2020

I have prepared some details regarding Bot Manager and WAF.


1. Traditional WAF have LIMITATION Mitigstion of Dynamic IP and headless attack whereas Bot manager can complete protect against the same.


2. WAF can not stop RIsk of blocking geniun false positive users whereas  Bot Manager can resolve the same.


3.  Bot Manager can't protect from API vulnarebilities whereas WAF can protect the same.


4. Bot Manager can't protect from Layer 7 DoS attack whereas WAF can protect the same.


5. Compliance of HIPAA and ACI is very limited for Bot Manager whereas for WAF it fulfill it fulfill compliance.

RF
AVP Central Region at Imperva
User
2020-06-23T12:11:48Z
Jun 23, 2020

Bot solutions offer much more targeted protection against Bit traffic vs a WAF that is more owasp, sql injection, cross site scripting, and detailed rules.  Account takeovers using Bots is a common attack protected by these solutions.  

Learn what your peers think about Imperva DDoS. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
655,994 professionals have used our research since 2012.
Related Questions
Eric Signe - PeerSpot reviewer
INFORMATION SECURITY ANALYST / ARCH at octosafes inc
Jul 21, 2022
Hi infosec professionals, I'd like to understand better the main highlights of WAF security. E.g., what type of security can be achieved with a WAF tool? Thank you for sharing your knowledge.
2 out of 3 answers
Eric Signe - PeerSpot reviewer
INFORMATION SECURITY ANALYST / ARCH at octosafes inc
Feb 13, 2022
-Application security  -OWASP top 10 -Protection on two aspects: detection/prevention of malicious IPs or threats -Certain WAFs protect against DoS, ...
Tom Foale - PeerSpot reviewer
CTO at Klaatu IT Security Ltd
Feb 15, 2022
A good WAF secures not just your websites and cloud applications but will protect against bots and protect containers, databases, VMs and APIs too. It will have a low rate of false positives, which is becoming critical as the volume of attacks increase. If you are a small business then a cloud-based one has a lower management overhead.
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Jun 28, 2022
Hello, Would you recommend using an open-source WAF for a large company? If so, which one and why? Thanks.
See 2 answers
JT
DevOps Senior Engineer at Fingerhut
Nov 1, 2021
I do NOT have a simple answer.  However, we have to start looking at the OSI Model. WAF only satisfies some but not all OSI layers.  I would list out the requirements, prior to asking this question. With the requirements in place, there are open-source packages that would satisfy most of your requirements (there is NOT one Hat that fits all). I am using NGINX as an internal WAF. In a normal mode, the internal traffic is a lot less malicious than from the public network.
Nir - PeerSpot reviewer
Head of Marketing at Reblaze
Jun 28, 2022
Hi, You can check out Curiefense.io. It is suitable for both enterprises and SMBs. 
Related Articles
Deena Nouril - PeerSpot reviewer
Tech Blogger
Aug 5, 2022
What is OWASP? The OWASP or Open Web Application Security Project is a nonprofit foundation dedicated to improving software security. It operates under an open community model, meaning that anyone can participate in and contribute to OWASP-related online chats and projects. The OWASP ensures that its offerings (online tools, videos, forums, events, etc.) remain free and are easily accessible t...
See 2 comments
Ben Arbeit - PeerSpot reviewer
Manager at a retailer with 51-200 employees
Jul 31, 2022
Thanks for this informative article.
Jairo Willian Pereira - PeerSpot reviewer
Information Security Manager at a financial services firm with 5,001-10,000 employees
Aug 5, 2022
OWASP is nice, but very specific and currently limited. How about trying ISO-24772 for all?
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Mar 18, 2022
Hi community members, Here we go with a new Community Spotlight. We publish it to help YOU catch up on recent contributions by community members. Trending What open-source HCI solution do you recommend? How much time does SSO save? What are the main technical differences between Microsoft Power Automate and Blue Prism? Articles Top HCI in 2022 What is Web Design? The Ultima...
Related Articles
Deena Nouril - PeerSpot reviewer
Tech Blogger
Aug 5, 2022
What is OWASP Top 10 in 2022
What is OWASP? The OWASP or Open Web Application Security Project is a nonprofit foundation dedi...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Mar 18, 2022
Community Spotlight #10
Hi community members, Here we go with a new Community Spotlight. We publish it to help YOU catch...
Download Free Report
Download our free Imperva DDoS Report and get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
DOWNLOAD NOW
655,994 professionals have used our research since 2012.