Wider attack surface coverage powered by hundreds of integrations and deeper threat visibility powered by thousands of detections.
Version: Fastly CDN, WAF
Fastly is a Content Delivery Network (CDN). This makes content available through users/organizations websites and Internet-accessible (hosted) application programming interfaces (APIs).
Fastly Web Application Firewall (WAF) protects your applications from malicious attacks designed to compromise web servers. The Fastly WAF provides rules that detect and block potential attacks. The rules are collected into a policy and deployed within your Fastly service at the edge.
Netsurion's Open XDR platform integrates with Fastly CDN/WAF, collects log from Fastly CDN/WAF and creates a detailed reports, alerts, dashboards and saved searches. These attributes of Netsurion's Open XDR platform helps users to view the most critical and important information on a single platform.
Reports will contain detailed overview of activities like:
Fastly user login/ logout will include details such as user login/logout time, their device type or user-agent, if user is an admin or not, and their user id’s.
Alerts are provided as soon as any critical event is triggered by Fastly CDN/WAF. With alerts, users will be able to get real time events such as:
“Fastly CDN/WAF - Access events by user agent” dashlet displays the user-agents trying to access any specific domain/ URL.
“Fastly CDN/WAF - User login fail (Audit events by region)” dashlet displays the login failure occurring in Fastly account in a world map by country. Dashlets associated with WAF activity will display information such as, PHP Injections attacks, SQL injection attacks, application attack session fixation, application attack RCE (Remote code execution), etc.
Netsurion's Open XDR platform monitors all the Fastly CDN events from services like system manager, Fastly audit and access events. They are given as below.
After the CyberArk Vault is configured to deliver events to the Netsurion's Open XDR platform, the dashboards and reports can be configured into Netsurion's Open XDR platform.
Some of the Data Source Integrations available in Netsurion are listed below.
The configuration details are consistent with Netsurion's Open XDR platform version 9.x or later, and Fastly CDN.
Download Integration Guide and How-to Guide for more information and to configuration instructions.