Test the WAF Policy by Replicating the SQL Injection Attack

  1. Now that the WAF policy is applied, retry the SQL injection attack to see if the attempt is blocked. Click on the Arcadia Finance (DIY) bookmark or navigate to https://diy.arcadia-finance.org/.
../../../_images/arcadia_diy.png
  1. Click the Login button to load the login screen.
../../../_images/arcadia_login_prompt1.png
  1. For the username, paste the following value:
' or 1=1-- '

and click Log me in.

../../../_images/sql_inj_login.png
  1. You should see the custom block page as shown below, showing that the attempt was blocked. Notice that, once again, a support ID is generated when the page loads. Select and copy this value so that you can search for it in NMS-SM.
../../../_images/select_copy_support_id1.gif
  1. Return to NMS and navigate to Security Monitoring by clicking the drop-down in the top left of the screen and selecting Security Monitoring.
../../../_images/NMS-SM-tile1.png
  1. You’ll be presented with the Security Monitoring landing page, as shown below:
../../../_images/NMS-SM_overview1.png
  1. On the left menu, select Support ID Details.
../../../_images/NMS-SM_support_id_link1.png
  1. You’ll be prompted for your support ID.
../../../_images/NMS-SM_support_id_prompt1.png
  1. Enter your support ID into the search field and click the arrow to search.
../../../_images/NMS-SM_support_id_entry1.png
  1. Once the security event has loaded, you can see details surrounding the violation that is blocking images on your app.
../../../_images/NMS-SM_support_id_details1.png

NGINX App Protect WAF is now enforcing protection for the site.