WAF-for-Automate is an add-on integration to our reverse proxy service to provide web application firewalling for ConnectWise Automate.

Security is of the utmost importance for RMM systems, as MSPs continue to be the targets of cybersecurity attacks. New software vulnerabilities are found at an accelerating pace, and zero-day attacks are on the rise. This leaves many MSPs concerned about potential attacks on ConnectWise Automate, which in the past has had remotely exploitable SQL injection and XXE vulnerabilities. A WAF is an ideal solution to such attacks, but they are typically complex to implement and tend to have a high rate of false positives.

Here at Automation Theory, we’ve created a WAF module for our reverse proxy service that’s tuned for ConnectWise Automate. This allows for a drop-in deployment of a WAF where traffic passing through the reverse proxy instance is sent to the WAF for scoring (much like a spam filter). Based on the score, the proxy will pass or block the traffic, seamlessly integrating into the other security layers provided by the reverse proxy.

Features

  • Deep inspection of inbound traffic
    • Blocking of common exploits (including OWASP Top 10)
    • Blocking of suspicious requests (including bots, malformed requests, and protocol violations)
  • Fully managed service
  • Rules tuned for CW products
  • Seamless integration with Reverse-Proxy-as-a-Service

A typical Automate server has no native protections against application exploits, and a bad actor with a zero-day vulnerability could trivially launch an attack. A WAF can address this issue and add further layers of security to protect against attack. Below is a recorded webinar displaying this feature set.

WAF attack prevention example

Below is an example of the WAF blocking a SQL injection attempt. When the request is sent, the attack is detected, the proxy responds with a 405 error, and the malicious request never reaches the Automate server.

Getting started

We offer a 30-day trial of our WAF; use the form below to request a trial instance:


    Need a quote?

    Use our self-service quote form below to get a quote delivered directly to your inbox.