Powerful insights.

Quant's Web Application Firewall (WAF) provides immediate insights into malicious and suspicious traffic, filterable by IP, region, rule, and much more.

With configurable reporting and alerting you can always be aware of anomalous traffic events without the false positives.


Highly configurable.

Rules integration

Configurable alongside the powerful Quant rules engine to allow for control via a range of options including domain, route, geolocation, cookie names, IP ranges, and much more.

Full OWASP Core Rule Set coverage

Provides support for the OWASP Core Rule Set with configurable overrides and control. Run in report or block mode.

Advanced features at no extra cost

Advanced DDoS protection, rate limiting, bot protection, global block dictionaries, and third party integrations with security and spam services like Project Honey Pot.

Enjoy the benefits of Quant WAF

Thumbs up

Simple setup

Enable via a checkbox on any
rules proxy configuration

Quant puzzle icon

Flexible configuration

Control configuration depending on domain, route, country, and much more

Quant lightning bolt icon

Useful alerting

Email or Slack alerts when certain thresholds are exceeded or anomalous events detected

Quant icon with pencil and ruler

Block dictionaries

Enable block dictionaries to block known bad bots, user-agents, referers, and IP addresses associated with bad actors as seen across our network

Quant speedometer icon to represent speed

Rate limiting support

Block or restrict traffic that exceeds rate limiting thresholds by IP address or certain request headers (e.g. API users)

Quant web browser icon

Powerful log viewer

Full history of events tracked through the WAF including the ability to
filter and search

Useful WAF resources

Learn more about Web Application Firewalls and related concepts.

Quant safer badge icon

OWASP Core Rule Set

The OWASP ModSecurity Core Rule Set (CRS) is a set of generic attack detection rules to protect web applications from attacks.

View OWASP docs
Quant lightning bolt icon


Http:BL lets website administrators leverage Project Honey Pot data to keep suspicious and malicious
web robots off their sites.

View Http:BL info
Quant icon with pencil and ruler

Dictionary Attacks

A dictionary attack is a method of breaking into an account or system by trying every word in a dictionary
as a password.

View Wikipedia article
A climber pressing a flag into the ground like they have reached the summit of a mountain

Set up your site in five minutes

30 day free trial, no credit card required.

Set up now