Login
    Contents x
    ThreatX WAF
    • 24 Mar 2025
    • 1 Minute to read
    • Print
    • Dark
      Light
    Contents

    ThreatX WAF

    • Updated on 24 Mar 2025
    • 1 Minute to read
    • Print
    • Dark
      Light
    Article summary

    The ThreatX Web Application Firewall (WAF) protects web applications and API’s from a wide range of cyber threats. It combines behavioral analysis, threat intelligence, and machine learning to deliver comprehensive protection against known and emerging threats.

    For detailed information, please refer to the ThreatX’s official documentation.

    Integration Method: API

    Tables: HTTP Activity (4002), Detection Finding (2004)

    This integration supports the following events.

    Event

    Description

    Block Event

    Get list of Block Event logs.

    Match Event

    Get list of Match Event logs.

    This integration supports the following versions.

    ThreatX API version

    v1

    Note:

    ThreatX WAF doesn’t follow a traditional versioning system. Instead, it is a continuously updated cloud service.

    Prerequisites

    • The user should have access to ThreatX WAF.

    • The user should have access to the DataBee console.

    Configuration Overview

    1. Create an API Key with required permissions to fetch the data.

    2. Create ThreatX WAF Data Feed in the DataBee console with the required Client credentials.

      DataBee Parameter

      ThreatX Parameter

      Secret Key

      API Key

    ThreatX Configuration

    1. Login to ThreatX WAF.

    2. From the left side bar, navigate to Settings > API KEYS.
       

    3. Click on Add API Key.
       A screenshot of a computer  AI-generated content may be incorrect.

    4. In the “Create New API” Key window:

      1. Enter the ‘Name’ and ‘Description’ for the API Key.

      2. Add ‘Assigned User’.

      3. Check the box for ‘Enabled’, then click on Save.

    5. The API key is generated. Make sure to copy and store it securely, then click OK


      Note:

      Make sure to copy and save API Key as it will not be shown again.

    DataBee Configuration

    1. Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.
       

    2. Search for the ThreatX WAF and click it as shown below.
       

    3. Click on the API Ingest option for collection method.
       

    4. Enter feed contact information and click Next.
       

    5. In the configuration page, confirm the following:

      • Authorization Method: Token Url Auth

      • API Base URL: this is the base URL that DataBee will interact with.

      • Token URL: this is the URL that DataBee will interact with to fetch the token.

      • Secret Key: paste the API Key generated earlier.

      • Event Types: preselected for all the event types that integration pulls.
         

    6. Click Submit.

    Troubleshooting Tips

    • If you are facing an unauthorized or forbidden error, it might be due to incorrect credentials. Please ensure that the API Key is pasted correctly. Since the API Key cannot be viewed after the first time, re-create the API Key, paste it into a text editor to verify that there are no spaces or unexpected characters, and then reconfigure the DataBee feed.

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Eddy AI, facilitating knowledge discovery through conversational intelligence