Edge WAF Pipeline

A hardened delivery layer: Cloudflare in front, Nginx as origin proxy, firewall and WAF rules tuned for common OWASP categories. Traffic is filtered, rate-limited and inspected before it ever hits application code.

Practiced with Burp Suite and Kali Linux to simulate attacks, then iterated the ruleset until logs stayed clean. The same pattern is reused as a baseline for every project I ship.