AWS Managed Rules Rule Groups List - AWS Documentation

AWS Managed Rules rule groups list - AWS WAF, AWS Firewall Manager, AWS Shield Advanced, and AWS Shield network security directorDocumentationAWS WAFDeveloper Guide

Introducing a new console experience for AWS WAF

You can now use the updated experience to access AWS WAF functionality anywhere in the console. For more details, see Working with the console.

This section provides a list of available AWS Managed Rules rule groups.

This section describes the most recent versions of the AWS Managed Rules rule groups. You see these on the console when you add a managed rule group to your protection pack (web ACL). Through the API, you can retrieve this list along with the AWS Marketplace rule groups that you're subscribed to by calling ListAvailableManagedRuleGroups.

Note

For information about retrieving an AWS Managed Rules rule group's versions, see Retrieving the available versions for a managed rule group.

All AWS Managed Rules rule groups support labeling, and the rule listings in this section include label specifications. You can retrieve the labels for a managed rule group through the API by calling DescribeManagedRuleGroup. The labels are listed in the AvailableLabels property in the response. For information about labeling, see Web request labeling in AWS WAF.

Test and tune any changes to your AWS WAF protections before you use them for production traffic. For information, see Testing and tuning your AWS WAF protections.

AWS Managed Rules rule groups

• Baseline rule groups

  • Core rule set (CRS) managed rule group

  • Admin protection managed rule group

  • Known bad inputs managed rule group

• Use-case specific rule groups

  • SQL database managed rule group

  • Linux operating system managed rule group

  • POSIX operating system managed rule group

  • Windows operating system managed rule group

  • PHP application managed rule group

  • WordPress application managed rule group

• IP reputation rule groups

  • Amazon IP reputation list managed rule group

  • Anonymous IP list managed rule group

• AWS WAF Fraud Control account creation fraud prevention (ACFP) rule group

  • Considerations for using this rule group

  • Labels added by this rule group

    • Token labels

    • ACFP labels

  • Account creation fraud prevention rules listing

• AWS WAF Fraud Control account takeover prevention (ATP) rule group

  • Considerations for using this rule group

  • Labels added by this rule group

    • Token labels

    • ATP labels

  • Account takeover prevention rules listing

• AWS WAF Bot Control rule group

  • Protection levels

  • Considerations for using this rule group

  • Labels added by this rule group

    • Token labels

    • Bot Control labels

  • Bot Control rules listing

• AWS WAF Distributed Denial of Service (DDoS) prevention rule group

  • Considerations for using this rule group

  • Labels added by this rule group

    • Token labels

    • Anti-DDoS labels

  • Anti-DDoS rules listing

Document ConventionsAWS Managed Rules for AWS WAFBaseline rule groupsDid this page help you? - Yes

Thanks for letting us know we're doing a good job!

If you've got a moment, please tell us what we did right so we can do more of it.

Did this page help you? - No

Thanks for letting us know this page needs work. We're sorry we let you down.

If you've got a moment, please tell us how we can make the documentation better.