Get Started

One Time Services

  • Home
  • Single Service
F5 ASM
OWASP
IPI

Not every business needs ongoing support, sometimes you just need expert help, fast. Our one-time F5 ASM services are perfect for focused improvements without the commitment of a subscription. The services are high quality, non intrusive and are completed with a full report of what wafy has done.

You might have an ASM module that has out dated signatures and no time to update them and progress them through the staging process. You might need a policy adjusting due to an application grade or change, or maybe the policy has not been build to the standard your business requires. We can do this, we do it most days and we know how to do it risk free and without outage.

Get in touch, we will have an inital meeting, discuss the requirments / access, agree the dates and stages of the task(s) and then we can start


Policy Builds

We build custom F5 ASM policies based on live application traffic and tailored to your specific needs. Whether you're starting from scratch or replacing a broken config, we deliver clean, structured policies ready for enforcement. Each build aligns with OWASP standards, accounts for how your application delivers updates, and is tuned to your risk level, deployment model, and traffic patterns.

We can build policies in development or production environments, but it’s strongly recommended to use live production traffic to ensure accuracy and effectiveness.

We've delivered over 40 custom policy builds in 2025 alone.
Find out more →


Policy Enhancements

Already have a policy in place? We enhance existing F5 ASM policies to improve protection, increase OWASP coverage, reduce false positives, and align with best practices. Whether your policy is too loose, too noisy, or just outdated, we’ll fine-tune it based on live traffic, your current risk profile, and how your application delivers updates.

From tightening attack signatures to refining learning settings, every enhancement is targeted, measurable, and designed to get your policy closer to enforcement, all without a single outage or false positive.

We've performed 60+ targeted policy enhancement projects so far in 2025.
Find out more →


ASM Attack Signature Update

Outdated attack signatures leave your applications exposed. We perform one-time updates of your F5 ASM attack signatures, ensuring you’re protected against the latest threats without introducing noise or instability.

We don’t just click ‘update’, we apply a controlled process that prevents false positives and ensures stability. New signatures are staged properly and passed through the Enforcement Readiness Period (ERP), giving your policies full exposure to live traffic to confirm compatibility before enforcement.

The scope of the update depends on how many policies you have in place. We tailor the effort to match your environment, whether it’s a single critical policy or a large deployment with multiple profiles.

We've delivered over 100 one-time F5 ASM services in 2025, including signature updates, staging and enforcing.
Find out more →


Policy Review / Report

Want to know how secure your current ASM policy really is? Our detailed policy reviews give you a clear picture of where you stand. We assess configuration, coverage, risk areas, false positive potential, and alignment with OWASP and F5 best practices.

You’ll receive a written report with key findings, risk indicators, and specific recommendations — whether your policy needs minor tweaks or a full rebuild. Ideal for audits, migrations, or peace of mind.

We've completed over 30 in-depth policy reviews across various industries in 2025.
Find out more →