Attack Query

Attack Query

Attack Queries are exchanges between Advanced Bot Protection and WAF or a FortiADC/FortiWeb device, providing data on user activity within the protected application.

Blocked AttackQuery: The number of times ABP suggested FortiADC/ FortiWeb/ WAF to block the action detailed in the AttackQuery.
Blocked Bot AttackQuery: The number of times ABP suggested FortiADC/ FortiWeb/ WAF to block the action detailed in the AttackQuery, due to detected malicious bot behavior.

History graph

Hover over History Graph to view the value(s) corresponding to the area on the bar or line chart.

Attack Query Table

Table field	Description
Timestamp	The timestamp indicating when the Attack Query was triggered.
Account Name	The username collected by the Attack Query, representing the account name entered by the user in the browser during actions such as login, registration, or payment on the customer's website.
Risk Score	A numerical score (0–100) calculated by Advanced Bot Protection to indicate the likelihood that a user is a bot. For details on the calculation factors, refer to Advanced Bot Protection.
IP	The IP address associated with the user activity that triggered the attack query.
URL	The URL on your website where the user activity that triggered the Attack Query took place.
Transaction ID	Unique system-generated identifier.

Clicking on an attack query in the table expands the following details:

Value	Description
OS	The client Operating System (OS) associated with the user activity that triggered the attack query.
Country	Country of Client IP associated with the user activity that triggered the attack query.
Browser	The browser associated with the user activity that triggered the attack query.
ASN	ASN (Autonomous System Numbers) of Client IP
Suggestion	Suggested action by FortiAppSec Cloud Advanced Bot Protection: Block or Allow.
CauseBy	Reason for the suggested action.
UserAgent	User Aagent in the HTTP request of the user activity that triggered the attack query.
Method	The HTTP request method, such as GET, POST, or PUT, used in the user activity that triggered the attack query.
Label	Request labels, such as signin, payment, or signup, associated with the user activity that triggered the attack query.

Attack Query

Attack Queries are exchanges between Advanced Bot Protection and WAF or a FortiADC/FortiWeb device, providing data on user activity within the protected application.

Blocked AttackQuery: The number of times ABP suggested FortiADC/ FortiWeb/ WAF to block the action detailed in the AttackQuery.
Blocked Bot AttackQuery: The number of times ABP suggested FortiADC/ FortiWeb/ WAF to block the action detailed in the AttackQuery, due to detected malicious bot behavior.

History graph

Hover over History Graph to view the value(s) corresponding to the area on the bar or line chart.

Attack Query Table

Table field	Description
Timestamp	The timestamp indicating when the Attack Query was triggered.
Account Name	The username collected by the Attack Query, representing the account name entered by the user in the browser during actions such as login, registration, or payment on the customer's website.
Risk Score	A numerical score (0–100) calculated by Advanced Bot Protection to indicate the likelihood that a user is a bot. For details on the calculation factors, refer to Advanced Bot Protection.
IP	The IP address associated with the user activity that triggered the attack query.
URL	The URL on your website where the user activity that triggered the Attack Query took place.
Transaction ID	Unique system-generated identifier.

Clicking on an attack query in the table expands the following details:

Value	Description
OS	The client Operating System (OS) associated with the user activity that triggered the attack query.
Country	Country of Client IP associated with the user activity that triggered the attack query.
Browser	The browser associated with the user activity that triggered the attack query.
ASN	ASN (Autonomous System Numbers) of Client IP
Suggestion	Suggested action by FortiAppSec Cloud Advanced Bot Protection: Block or Allow.
CauseBy	Reason for the suggested action.
UserAgent	User Aagent in the HTTP request of the user activity that triggered the attack query.
Method	The HTTP request method, such as GET, POST, or PUT, used in the user activity that triggered the attack query.
Label	Request labels, such as signin, payment, or signup, associated with the user activity that triggered the attack query.

Secure Networking

Hybrid Mesh Firewall

NOC Management

LAN

WAN

Unified SASE

Single Vendor SASE

Cloud Network Security

Secure Endpoint Connectivity

Web Application / API Protection

Security Operations

Security Operations Automation

Identity

Early Detection & Prevention

Secure Networking

Hybrid Mesh Firewall

NOC Management

LAN

WAN

Communication & Surveillance

Unified SASE

Single Vendor SASE

Secure Endpoint Connectivity

Cloud Network Security

Cloud-Native Security

Web Application / API Protection

Security Operations

Security Operations Automation

Endpoint

Data Protection

Identity

Email

Early Detection & Prevention

Expert Services

Edge Firewall

Orchestration & management

SD Branch

Application Delivery

Single Vendor SASE

Secure Endpoint Connectivity

Secure Private Access

Thin Edge

Identity

Application Gateway

Enterprise Asset Management

Endpoint Agent

Agentless Security Posture

Identity

Wireless

Switching

Identity

Privilege Acccess Management

Next Generation Firewall

Orchestration & management

Expert Services

Web Application / API Protection

All

All

Account Management

SAAS Management

SAAS Application Security

Managed Services

Platform as a service (PAAS)

Other SAAS Services

4D Pillars

Cloud

Popular Solutions

All Products

User Guide

Attack Query

History graph

Attack Query Table

Attack Query

Attack Query

History graph

Attack Query Table