🚀 Join our AI Wargame at Black Hat Asia and our Workshop + Wargame at NDC Sydney .

Cloudfront without WAF

Web Application Firewall (WAF) should be setup in front of Cloudfront to mitigate various types of web attacks.

Remediation

Enable WAF. See https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudfront_distribution#web_acl_id

Metadata

  • Severity: informational
  • Slug: cloudfront-without-waf

Available Labs

Open Aws labs in SecDim Play for this vulnerability.

Try it yourself

Find, Hack and Fix Your First Vulnerability

Reading about security bugs is one thing — fixing one is how the skill sticks. Play a free challenge from the wargame, no setup required.