Filter Events

Mitigating Vulnerabilities with NGINX App Protect


Nginx Training Courses Certification


See all Courses


This 2 day course gives participants a functional understanding of how to deploy and operate NGINX App Protect WAF to protect their web applications from the most common web application vulnerabilities and Layer 7 denial of service attacks.

NGINX Core is the foundation of your NGINX training and is a recommended prerequisite. The course assumes a basic understanding of networking, web servers, HTTP, proxying, and related concepts.

Hands on labs are performed in a Linux environment. You will need to be able to navigate the file system from the command line and edit configuration files using VI/VIM. Additional experience with Linux environments will be helpful.

The course features hands-on labs and discussion about detecting and mitigating threats from different threat vectors.

Topics covered in this course include:

  • An application-centered approach to security
  • Overview of HTTP processing
  • Exploiting web application vulnerabilities in a modern application
  • Web application security concepts and terminology
  • Deployment options and use cases for NGINX App Protect
  • Default policy configuration and settings
  • Security event logging
  • Understanding policy elements 
  • Tuning policies for specific needs
  • Working with multiple policies
  • Recommended practices for attack signatures and threat campaigns
  • Defining Behavioral DoS protection
  • Connecting DoS directives and nginx.conf
  • Mitigating DoS
We use cookies to understand how you use our site and to improve your experience. To learn more, click here. Read our revised Privacy Policy and Terms and Conditions.