AWAF request-log triage
Paste an ASM request-log entry (syslog key-value or CEF) and it extracts the policy, the support ID for log correlation, the request status, the violation rating, the client IP, method, and URI, classifies each violation, and gives F5's rating-based verdict, then bridges to the false-positive triage tool. Runs entirely in your browser.
Security & WAF🔒 Parsed in your browser. Nothing you paste is uploaded.
Paste an ASM request-log line (key-value or CEF) to parse it and triage its violations.
API endpointGEThttps://ronutz.com/api/v1/f5-awaf-request-log-triageDocumented, not served. Opens the specification.
References
- F5 BIG-IP ASM logging fields (syslog key-value and CEF: policy_name, violations, support_id, violation_rating, request_status, ip_client, method, uri)
- F5 BIG-IP ASM: Displaying Reports and Monitoring ASM (violation rating 4-5 attack, 1-2 false positive; the Requests List)
- F5 K47045262: Troubleshooting BIG-IP ASM (support ID for request/log correlation)