A company hosts a web application on Amazon EC2 instances behind an Application Load Balancer (ALB). The security team has detected SQL injection attempts against the application.<br/><br/>Which AWS service should a solutions architect deploy to block these attacks?

Answer options:

AWS Shield Standard

AWS Network Firewall

AWS WAF

Amazon GuardDuty

How to approach this question

Identify the service that protects against Layer 7 web exploits.

Full Answer

C.AWS WAF✓ Correct

AWS WAF can be attached to an ALB, API Gateway, or CloudFront distribution to filter web traffic based on rules you define, such as blocking SQL injection (SQLi) patterns.

Common mistakes

Confusing AWS Shield (DDoS) with AWS WAF (Web exploits).

Question 07 All questions Question 09

Practice the full AWS SAA-C03 Practice Exam 6

65 questions · hints · full answers · grading

More questions from this exam

Q01A company has multiple AWS accounts in an AWS Organizations organization. The security team wants...Medium Q02A company has two AWS accounts: Account A for development and Account B for production. Developer...Medium Q03A mobile application needs to authenticate users using their social media accounts (Facebook, Goo...Easy Q04A company is running an application on Amazon EC2 instances. The application needs to connect to ...Medium Q05A company has 50 AWS accounts managed by AWS Organizations. The IT team wants to implement a cent...Easy

View all 65 questions →