NOC WAF Protects
Against XSS

Cross-Site Scripting (XSS) vulnerabilities are a fan favorite for bad actors, and the NOC WAF helps protect against attacks targeting them.

Free 14-Day Trial
**No credit card required.
"Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted websites. XSS attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end user."

- Open Web Application Security Project (OWASP)

XSS Injections

Cross Site Scripting (XSS) vulnerabilities are one of the more well-known vulnerabilities. They are similar to SQLi vulnerabilities in that they fall into a broader bucket - Injection Vulnerabilities as defined by OWASP.

XSS vulnerabilities allow bad actors to manipulate the JavaScript on a web application. There are three types of XSS vulnerabilities:



  1. Reflected XSS (Non-Persistent)
  2. Stored XSS (Persistent)
  3. DOM Based XSS;


The NOC WAF is able to mitigate attacks that try to abuse XSS vulnerabilities.

How The NOC WAF Works

The NOC platform is unique in its proprietary Web Application Firewall (WAF) technology. This technology complements the CDN and ensures that your website is always protected.

Some features include:

  1. Virtual Hardening at the Edge;
  2. Virtual Patching of Application Vulnerabilities;
  3. Mitigation of Remote Exploit Attempts;
  4. Bot Detection and Mitigation;
  5. Access Control Protection (incl. Browser Authentication)