moutix's comments

moutix · 2025-01-13T09:25:12 1736760312

Ah yes, we are still missing RASP support on ruby, but this should come out in the next 3-6 months. Everything else should be supported though (In App WAF, playbook, user monitoring etc)

moutix · on Feb 14, 2019

That's why we now have RASP. It's better than SQL proxy and WAF, because you have both the SQL query and the HTTP parameters and you can correlate them to be super accurate

ninegunpi · on Feb 15, 2019

Isn't RASP just slapping the WAF-like signature detection into your application data streams directly? How would RASP prevent:

1. Insiders having access to database front?

2. Same SQL bypass techniques as employed to bypass WAFs?

3. Mitigate developer errors in query logic which enable custom injections?