Skip to content

rescaled WAF

Our Web Application Firewall (WAF) has been developed due to the high demand for on-premise solutions for the ongoing issue of active exploitation of web application vulnerabilities as well as due to the increased load caused by LLM bots, although the site owners may not want to have any AI-related traffic on their website.

Existing solutions often require delegating the DNS records to a third party, hence scrubbing the traffic in centralized datacenters under undisclosed circumstances while terminating confidential TLS traffic flows. In times of increasing demand for digital sovereignty, we believe that most of the websites and application can handle their traffic locally in their own datacenters.

rescaled WAF is a powerful, highly configurable and resource efficient solution that can be deployed on every environment - no matter if your services are hosted on a virtual or dedicated server, in a container, in a Kubernetes cluster or even in a hybrid cloud environment.

It has been designed to run together with Envoy Proxy, a high-performance edge proxy written in C++ that is used by large scale enterprises to process and route traffic. rescaled WAF extends Envoy Proxy by acting an external gRPC processor. It is written in Go and receives and processes all request metadata in real-time.

WAF Feature Overview

Common Use Cases

Together with our customers, we have deployed a number of different use cases, including - but not limited to - the following:

  • Prevent visitors from entire countries to access (e.g. from China when the website is not focused on the Chinese market)
  • Prevent users from the Tor anonymity network to access
  • Prevent LLM bots from scraping the content of the website by enforcing complex challenges only a human visitor's browser can solve
  • Protect against directory enumeration attacks by employing custom WAF rules
  • Protect against common patterns of SQL injection attacks and cross-site scripting (XSS)
  • Protect against actively exploited vulnerabilities (e.g. ReactJS's CVE-2025-55182) while resolving them
  • Enforce the restrictions set in the robots.txt by blocking bots ignoring restrictions and rules

Sales

If you are interested in employing rescaled WAF for your own projects, please contact our sales team at info@rescaled.com and provide us with the following information:

  • Contact information (Company & Your Name)
  • How many websites you plan to protect and how many requests per second you expect to handle?
  • Which features are the most important to you / which goals you want to achieve?
  • What's your current hosting landscape?

We're happy to provie a free consultation call to discuss your use case in detail and how rescaled WAF can support your requirements as well as a free trial period to evaluate our solution.

Our hosting partner servinga also offers hosted rescaled WAF services at their 9 datacenter locations worldwide (ISO/IEC 27001:2022 and PCI-DSS certified, Tier 2+).