I'm curious whether the malware scanning feature on AWS Network Firewall can handle base64 encoded payloads, such as images. Would I need to look into investing in a Marketplace AMI for this functionality?
2 Answers
I can't speak to the specifics of that, but I'm interested in your workflow. I've previously worked on a project involving S3 presigned URLs for uploads and using a staging bucket. We relied on something called GuardDuty for checking for malicious content. Are you using API Gateway along with some compute resources like EC2, ECS, or Lambda?
Yes, I believe Suricata can decode base64 data. However, while Suricata with managed rules can do quite a bit, it may not be as efficient for detecting malware in uploaded files as a dedicated malware scanner. Consider implementing a workflow where uploads are scanned, possibly utilizing S3 or a custom solution.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures