Due to some recent SQL injection attacks, the team has decided to identify an application or appliance that could protect the infrastructure from the following: • SQL injection • DOM-based XSS • HTTP exhaustion Which of the following applications or appliances could protect against those attacks?

A. NIDS
B. WAF
C. HIPS
D. stateful firewall

B
Explanation:
A web application firewall (WAF) performs deep packet inspection of traffic incoming and outgoing from a web server. They look at every request and response within the HTTP/HTTPS/SOAP/XML-RPC/Web service layers. They are programmed with attack signatures that help them identify common attack types, such as SQL injection, DOM based XSS and HTTP exhaustion, which they can do without customization. By customizing the system, you can prevent new attacks as well.