Exam SY0-601 topic 1 question 560 discussion

A Web Application Firewall (WAF) is a security solution specifically designed to protect web applications and APIs from various attacks, including those that attempt to manipulate parameters and exploit vulnerabilities in the application layer. It sits between the clients (users or third parties) and the web server, inspecting the HTTP/HTTPS traffic and filtering out malicious requests. In this scenario, the security analyst has identified that the web API is being abused by an unknown third party attempting to manipulate the parameters being passed to the API endpoint. A WAF would be able to analyze and validate the incoming requests to the API, blocking any requests that contain suspicious or malicious parameters. It can enforce security policies, perform input validation, and protect against common web application attacks like SQL injection, cross-site scripting (XSS), and parameter tampering.

D. Honestly, with this one, it was the process of elimination for me. A. DLP (Data Loss Prevention..nothing to do with api) B. SIEM (produces logs/saboards for Correlation..etc) C. NIDS (Intrusion detection system...It will only detect, and the analyst discovers that one of the web APIs is being abused..so they have already detected.