Myra WAF is a Web Application Firewall (WAF) solution that helps organizations protect their websites, web applications, and APIs against a broad range of application-layer threats, including SQL injections, cross-site scripting (XSS), directory traversals, zero-day exploits, and other risks listed in the OWASP Top 10. The solution operates as an upstream reverse proxy, intercepting and filtering HTTP/S requests before they reach the origin server. It requires no additional hardware or software – integration is handled via a DNS CNAME adjustment or through the Myra API. This makes Myra WAF compatible with web applications hosted in private data centers, at hosting providers, or across public and private cloud environments. Developed by a German-based provider, Myra WAF is designed for organizations in regulated industries such as finance, healthcare, insurance, government, and critical infrastructure (KRITIS) that require certified, GDPR-compliant security with full data sovereignty. The platform holds ISO 27001 (BSI IT-Grundschutz), BSI C5 Type 2, PCI DSS, and BSI KRITIS qualifications, and supports compliance with NIS-2 and DORA requirements. Key features and capabilities include: - Scalable HTTP/S Traffic Filtering: Immediate scaling to manage variable web traffic loads. - Rule Management: Integration of Myra-specific rule sets based on OWASP threats to ensure basic protection based on attack patterns recommended by our experts, with options for additional customer-specific rules. - GEO- IP Blocking : WAF rules can be created using the conditions to select the Countries and Continents to allow and block the traffic respectively - API & Automation Support: Programmatic access for integration with CI/CD pipelines and management systems Myra WAF guarantees up to 99.9% service availability via SLA, backed by automated alerting via email, API, or SMS. The platform blocks an average of over 8 million malicious Layer 7 requests per customer annually.