Threat intelligence helps you automatically block access requests from common vulnerability scanners or from IP addresses in the Alibaba Cloud library of identified port scan attackers.
Prerequisites
- You have bought a monthly or yearly subscription WAF service. For more information, see Activate Alibaba Cloud WAF.
- You have added your domain to WAF for protection. For more information, see Add domain names.
- You have enabled Web application protection and HTTP flood protection. For more information, see Web application protection and HTTP flood protection.
Background information
You can enable the threat intelligence feature to automatically block access requests from common vulnerability scanners, including sqlmap, Acunetix Web vulnerability scanner (AWVS), Nessus, AppScan, WebInspect, Netsparker, Nikto, and RSAS. You can also use the collaborative defense function of this feature to automatically block access requests from all IP addresses in the Alibaba Cloud global library of identified port scan attackers.