Protect your apps and APIs across multi-cloud

Get robust security with a proven web app firewall

Your applications and APIs are your most valuable—and vulnerable—assets. Citrix Web App Firewall keeps them secure by protecting against both known and unknown application attacks and providing insights for faster remediation. So you can be confident in your security posture and app performance across multi-cloud.

Meet governance and compliance requirements, including PCI-DSS

Defend your applications and APIs against OWASP top 10 threats and zero-day attacks.

Only Citrix Web App Firewall uses a single code base across all ADC form factors, so you can consistently apply and enforce security policies across any environment. It’s easy to deploy and available as a single license, giving you simplified configuration, bot management, and holistic visibility and control with a single pane of glass.

Trust your applications and APIs to a proven WAF leader

Citrix Web App Firewall certified by ICSA Labs as meeting the entire set of security testing criteria.

Read the report


The Citrix ADC WAF 14020 met all of the requirements in the ICSA Labs Web Application Firewall (WAF) testing criteria. As a result of successful security testing, the Citrix ADC WAF 14020 retained ICSA Labs WAF Security Certification.

ICSA Labs Web Application Firewall Certification Testing Report
May 2021

Get more information

Top 6 WAF essentials for application security

Protect yourself against the new wave of cyber threats with an ADC that has proven security features.

Tech company protects customers from zero-day exploits

See how Rohde & Schwarz uses Citrix Web App Firewall to secure its customer portal applications.

Citrix Web App Firewall data sheet

Explore the features of Citrix Web App Firewall that deliver comprehensive app and API protection.