open-appsec WAF tutorial for Kong on Kubernetes

In this tutorial, we will show you how to protect Web Applications & APIs running in a Kubernetes cluster, by deploying a Kong Gateway with open-appsec, an automatic machine-learning security engine.

We will use employee details API - a service that will help us demonstrate open-appsec’s capabilities.
You will learn how to:
• Attack the employee-details API
• Deploy open-appsec for Kong Gateway to protect the API
• Attack the API again to see that the protection is effective
• And finally connect your deployment to the Web-Based Management (SaaS)