Skip to content

Commit 7477e9e

Browse files
pedrosousapedrosousa
committed
Update WAF attack score field table
1 parent 7e3e0b2 commit 7477e9e

File tree

1 file changed

+8
-8
lines changed

1 file changed

+8
-8
lines changed

src/content/docs/waf/detections/attack-score.mdx

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ sidebar:
66
label: Attack score
77
---
88

9-
import { GlossaryTooltip } from "~/components";
9+
import { GlossaryTooltip, Type } from "~/components";
1010

1111
The attack score [traffic detection](/waf/concepts/#detection-versus-mitigation) helps identify variations of known attacks and their malicious payloads. This detection complements [WAF Managed Rules](/waf/managed-rules/).
1212

@@ -24,13 +24,13 @@ This feature is available to Enterprise customers. Business plans have access to
2424

2525
The Cloudflare WAF provides the following attack score fields:
2626

27-
| Score | Data type | Minimum plan required | Attack vector | Field |
28-
| ---------------------- | --------- | --------------------- | -------------------------------- | ------------------------------------------------------------------------------------------- |
29-
| WAF Attack Score | Number | Enterprise | N/A (global score) | [`cf.waf.score`](/ruleset-engine/rules-language/fields/reference/cf.waf.score/) |
30-
| WAF SQLi Attack Score | Number | Enterprise | [SQL injection][1] (SQLi) | [`cf.waf.score.sqli`](/ruleset-engine/rules-language/fields/reference/cf.waf.score.sqli/) |
31-
| WAF XSS Attack Score | Number | Enterprise | [Cross-site scripting][2] (XSS) | [`cf.waf.score.xss`](/ruleset-engine/rules-language/fields/reference/cf.waf.score.xss/) |
32-
| WAF RCE Attack Score | Number | Enterprise | [Remote code execution][3] (RCE) | [`cf.waf.score.rce`](/ruleset-engine/rules-language/fields/reference/cf.waf.score.rce/) |
33-
| WAF Attack Score Class | String | Business | N/A (global classification) | [`cf.waf.score.class`](/ruleset-engine/rules-language/fields/reference/cf.waf.score.class/) |
27+
| Name in the dashboard | Field + Data type | Required plan | Description |
28+
| ---------------------- | ------------------------------------------------------------------------------------------------------------------------ | ----------------- | ------------------------------------------------------------------------------------------------------ |
29+
| WAF Attack Score | [`cf.waf.score`](/ruleset-engine/rules-language/fields/reference/cf.waf.score/) <br/> <Type text="Number" /> | Enterprise | A global score from 1–99 that combines the score of each WAF attack vector into a single score. |
30+
| WAF SQLi Attack Score | [`cf.waf.score.sqli`](/ruleset-engine/rules-language/fields/reference/cf.waf.score.sqli/) <br/> <Type text="Number" /> | Enterprise | A score from 1–99 classifying the [SQL injection][1] (SQLi) attack vector. |
31+
| WAF XSS Attack Score | [`cf.waf.score.xss`](/ruleset-engine/rules-language/fields/reference/cf.waf.score.xss/) <br/> <Type text="Number" /> | Enterprise | A score from 1–99 classifying the [cross-site scripting][2] (XSS) attack vector. |
32+
| WAF RCE Attack Score | [`cf.waf.score.rce`](/ruleset-engine/rules-language/fields/reference/cf.waf.score.rce/) <br/> <Type text="Number" /> | Enterprise | A score from 1–99 classifying the command injection or [remote code execution][3] (RCE) attack vector. |
33+
| WAF Attack Score Class | [`cf.waf.score.class`](/ruleset-engine/rules-language/fields/reference/cf.waf.score.class/) <br/> <Type text="String" /> | Business or above | The attack score class of the current request, based on the WAF attack score. |
3434

3535
[1]: https://www.cloudflare.com/learning/security/threats/sql-injection/
3636
[2]: https://www.cloudflare.com/learning/security/threats/cross-site-scripting/

0 commit comments

Comments
 (0)