Overview
RASP is a defensive technology that 'lives' inside the application. Unlike a Web Application Firewall (WAF), which sits in front of the app, RASP has full visibility into the application's internal state, allowing it to distinguish between legitimate traffic and malicious attacks with high precision.
How it Works
RASP intercepts calls from the application to the underlying system (e.g., database queries, file system access). If it detects an attack (like an SQL injection attempt), it can block the specific request, alert security teams, or even terminate the user's session.
Benefits
- Protects against both known and zero-day vulnerabilities.
- Very low false-positive rate due to internal visibility.
- Provides protection even if the underlying code is vulnerable.