Skills
.Work. You
Rest

defensive-waf-hardening

Community

Tune Azure WAFs for effective protection.

Software Engineering#azure#waf#security-architecture#kql#sigma#rule-tuning#waf-hardening
Authorriparino
Version1.0.0
Installs0

System Documentation

What problem does it solve?

WAF configuration often struggles to balance security with site availability, leading to false positives and gaps in protection. This skill guides Azure WAF CRS tuning, mode progression, and rule customization to improve posture.

Core Features & Use Cases

  • WAF tuning guidance for Azure deployments using CRS rule groups and detected mode progression from Detection to Prevention.
  • Techniques to identify top matched rules and blocked IPs using KQL, enabling scoped exclusions to reduce FP without sacrificing security.
  • Use Case: A web application experiences frequent FP events; apply this skill to tune rules, monitor with KQL, and shift from Detection to Prevention.

Quick Start

Set WAF to Detection mode for monitoring, then transition to Prevention after FP tuning completes.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: defensive-waf-hardening
Download link: https://github.com/riparino/Claude-Cyber/archive/main.zip#defensive-waf-hardening

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.