Sold by: Penta Security
Deployed on AWS
Vendor Insights
Cloudbric Managed Rules for AWS WAF - OWASP Top 10 Protection provides security against threats from OWASP Top 10 Web Application Security Risks such as SQL Injection and Cross-Site Scripting (XSS).
Overview
Cloudbric Managed Rules for AWS WAF - OWASP Top 10 Protection was created to protect the websites and web applications against the threats from OWASP Top 10 Web Application Security Risks.
OWASP Top 10 Protection utilizes the logic-based detection engine of Penta Security, which has been acknowledged by the top research organizations such as Gartner, Forrester, and Frost & Sullivan, to protect the web applications from security threats such as SQL injection and Cross Site Scripting (XSS) by detecting abnormal traffic patterns or behavior and implementing appropriate rule action on incoming traffic.
Cloudbric Managed Rules for AWS WAF is created based on the security technologies and expertise of WAPPLES which has protected the web services for enterprises since 2005 and has recently been validated by a third-party testing firm to have a top-tier detection rate. Cloudbric Managed Rules for AWS WAF utilizes Penta Security's own Cyber Threat intelligence (CTI), Cloudbric Labs, to provide a safer online environment.
Interested in trying out the product before committing? Click the 'Request Private Offer' button to contact us. We offer a 14-day free trial so you can explore the product firsthand. Please note that after the free trial period, the private offer will automatically convert to a regular subscription at the standard rate.
Having difficulties managing the rules for your AWS WAF? Cloudbric WAF Managed Service (WMS) provides you with accurate information about the threats and vulnerabilities on your web application in real time, easy-to-use management system and dedicated console, and rule optimization from our security experts so that you can implement a security level best fit for your AWS WAF even if you do not have an expert security knowledge.
AWS Marketplace: https://cloudwatch-portal.com/marketplace/pp/prodview-r4opjncghemnc Cloudbric Website: https://www.cloudbric.com/cloudbric-wms/
Highlights
- Provides web security against the threats from OWASP Top 10 Web Application Security Risks.
- Top-tier detection rate validated by a third-party testing firm.
- Regularly managed and updated by Cloudbric Labs.
Details
Features and programs
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(1)
ISO27001
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/unit |
|---|---|
Charge per month in each available region (pro-rated by the hour) | $25.00 |
Charge per million requests in each available region | $1.00 |
Vendor refund policy
Non-Refundable
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
For product-related all inquiries, please contact : awsmkp@pentasecurity.com .
If you are a buyer based in Japan, and need to request a TQI, please contact: jp-sales@pentasecurity.com .
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Barracuda Message Archiver - PAYG
By Barracuda Networks
The Barracuda Message Archiver is ideal for organizations looking to preserve email for compliance and legal discovery, reduce their email storage requirements and boost user productivity with mobile or desktop access to any email ever sent or received.
The BIG-IP Virtual Edition (VE) is the industry's most trusted and comprehensive app delivery and security solution. Providing everything from intelligent traffic management and visibility, to app security, access, and optimization, BIG-IP VE ensures all of your apps are fast, available, and secure.
Cloudbric Managed Rules for AWS WAF - Malicious IP Protection
By Penta Security
Cloudbric Managed Rules for AWS WAF - Malicious IP Protection provides security against Malicious IP traffic based on the Malicious IP Reputation List created using the ThreatDB collected and analyzed by Cloudbric Labs.
Customer reviews
Kevin Tan
I’ve been using Cloudbric’s Managed Rules for AWS WAF – OWASP Top 10 Rule Set
Reviewed on May 21, 2025
Purchase verified by AWS
After testing several AWS WAF rule providers, we selected Cloudbric’s OWASP Top 10 bundle for its balance of coverage and efficiency. Setup through AWS Marketplace was intuitive, and the default rule priorities required only minor adjustment to suit our application. During simulated attack scenarios, the managed rules consistently blocked attempts without breaking legitimate API calls. In comparison, open-source rule sets needed more manual tuning. The Cloudbric solution reduced our security team’s maintenance time by roughly 50%, allowing us to focus on new feature development rather than constant rule tweaking.
Leave a comment0 comments
Tony B.
Simple, strong, well performing
Reviewed on Apr 15, 2025
Review provided by G2
What do you like best about the product?
I’ve been using one of their rule sets already, and decided to give this one a try as part of a test run before potentially migrating, based on an offer I received.
Just like the others, it was simple to set up, smoothly integrated, and packed with all the essentials—especially key protections aligned with OWASP standards.
What really stood out, though, was the support team—quick to respond, incredibly helpful, and genuinely considerate. I really value that kind of human touch and attention to detail. It’s rare, and it makes a difference.
At this point, I’m seriously leaning toward accepting their offer and migrating permanently. Very satisfying overall. Kudos to them!
Just like the others, it was simple to set up, smoothly integrated, and packed with all the essentials—especially key protections aligned with OWASP standards.
What really stood out, though, was the support team—quick to respond, incredibly helpful, and genuinely considerate. I really value that kind of human touch and attention to detail. It’s rare, and it makes a difference.
At this point, I’m seriously leaning toward accepting their offer and migrating permanently. Very satisfying overall. Kudos to them!
What do you dislike about the product?
Nothing major.
Just had to adjust a few initial settings during setup. But with support that solid, it wasn’t a big deal at all.
Just had to adjust a few initial settings during setup. But with support that solid, it wasn’t a big deal at all.
What problems is the product solving and how is that benefiting you?
This product helps protect our web apps from common security threats, like the ones listed by OWASP.
Maya C.
Easy to implement, high detection rate.
Reviewed on Apr 03, 2025
Review provided by G2
What do you like best about the product?
I was looking for a managed rule group to use for my AWS WAF, and Cloudbric Managed Rules - OWASP Top 10 rule set showed the best detection rate. It was very easy to implement, as it only required me to subscribe to the product and associate it with the web ACL. It seems to be covering most of the criteria of OWASP Top 10 web vulnerabilities, and it seems to be working well. When I had a question about the rules, the customer support responded quickly and provided me with thorough information.
What do you dislike about the product?
I don't have much complaints, other than the fact that it tends to over detect from time to time. However, this could be solved just by overriding the rule or changing the rule action to count, which is much less of a work than having to create a new rule to respond to threats that are not detected.
What problems is the product solving and how is that benefiting you?
It provides easy and cost-effective security. Unlike most security solutions, it is quite affordable, perfect for small to medium sized organizations.
mgs
perform well
Reviewed on Aug 16, 2022
Purchase verified by AWS
I used this product this time. perform well It seems to prevent hacking well.
It looks better and better than other products.
Daniel
It's good at detecting and it's very useful
Reviewed on Aug 15, 2022
Purchase verified by AWS
It is easy to apply and has a high detection rate.
It is difficult to organize and use WAF rules directly.
Cloudbric OWASP is great for easy and affordable use of high-performance AWS Rules.