Search Imperva Community for
Hey Steve,Thanks for posting. I checked in with our team and this was their response...
The WAF will detect suspicious activity over http/https (80/443)There are many cases where the attacker/user can send FTP(20/21) over HTTP, in that case, the WAF will flag brute force activity. Imperva WAF also protects against manual brute force attacks. When a user makes repeated attempts to access a system, or successively attempts different credentials following a pattern, Imperva will detect this anomalous activity, block the user and alert security staff.We can also create an Incaprule for bruteforcing.https://www.imperva.com/blog/incaprules-brute-force-protection/I hope this helps. Let me know if you have any more questions.
or Contact Us
Copyright @ 2019 Imperva. All rights reserved