Creating Imperva WAF Rules

Dynamic Analysis

The Veracode Imperva integration exports the vulnerabilities found in Dynamic Analysis scan results for import into the Imperva SecureSphere management console. This console converts the vulnerabilities to rules and uploads them to the WAF. These rules are not guaranteed nor designed to fix every vulnerability discovered. Veracode recommends an in-depth defense strategy that also may require code-level remediation.

To create Imperva rules:
  1. From the Dynamic Analysis scan status page, click WAF Integration.
  2. Select Imperva in the Format field.
  3. Click Generate.

    Veracode generates a text file containing the Imperva rules that you can upload to the your WAF.