WAF: Web Application Firewall
A WAF filters malicious HTTP/HTTPS traffic, protecting against the OWASP Top 10 (SQL injection, XSS, etc). It can be cloud-based (Cloudflare, AWS WAF), on-prem (ModSecurity) or hybrid, using the OWASP Core Rule Set and specific customizations.
