AWS Web Application Firewall (WAF) for bot control

Implemented WAF rules for Bot Control and SQL injection prevention,enhancing application security, Bot control and SQL injection rules in front of the main application load balancer (ALB) with IP restriction to protect the EC2 target groups. Before setting WAF blocking requests, a "count mode" is activated to save the generated logs in an S3 bucket. Once having enough data, AWS Athena is used to query the logs and determine which terminating rules will be applied on the "blocking mode".