Cloudbric Managed Rules for AWS WAF - OWASP Top 10 Rule Set Reviews & Product Details

What do you like best about Cloudbric Managed Rules for AWS WAF - OWASP Top 10 Rule Set?

I’ve been using one of their rule sets already, and decided to give this one a try as part of a test run before potentially migrating, based on an offer I received.

Just like the others, it was simple to set up, smoothly integrated, and packed with all the essentials—especially key protections aligned with OWASP standards.

What really stood out, though, was the support team—quick to respond, incredibly helpful, and genuinely considerate. I really value that kind of human touch and attention to detail. It’s rare, and it makes a difference.

At this point, I’m seriously leaning toward accepting their offer and migrating permanently. Very satisfying overall. Kudos to them! Review collected by and hosted on G2.com.

What do you dislike about Cloudbric Managed Rules for AWS WAF - OWASP Top 10 Rule Set?

Nothing major.

Just had to adjust a few initial settings during setup. But with support that solid, it wasn’t a big deal at all. Review collected by and hosted on G2.com.

What do you like best about Cloudbric Managed Rules for AWS WAF - OWASP Top 10 Rule Set?

I was looking for a managed rule group to use for my AWS WAF, and Cloudbric Managed Rules - OWASP Top 10 rule set showed the best detection rate. It was very easy to implement, as it only required me to subscribe to the product and associate it with the web ACL. It seems to be covering most of the criteria of OWASP Top 10 web vulnerabilities, and it seems to be working well. When I had a question about the rules, the customer support responded quickly and provided me with thorough information. Review collected by and hosted on G2.com.

What do you dislike about Cloudbric Managed Rules for AWS WAF - OWASP Top 10 Rule Set?

I don't have much complaints, other than the fact that it tends to over detect from time to time. However, this could be solved just by overriding the rule or changing the rule action to count, which is much less of a work than having to create a new rule to respond to threats that are not detected. Review collected by and hosted on G2.com.