Is F5 ASM has XSSJacking protection

Question

Dear F5 Experts,&nbsp;
Is F5 ASM has XSSJacking protection ?&nbsp;
References: 
https://gbhackers.com/new-attack-called-xssjackingdiscovered-that-combined-of-clickjacking-pastejacking-and-self-xss-attacks/ 
https://github.com/dxa4481/XSSJacking &nbsp;
Web application based Attack - "XSSJacking" Combines Clickjacking, Pastejacking, and Self-XSS has been discovered.  
&nbsp;
I see that F5 has Clickjacking protection  from F5 11.4, with which I assume F5 is not vulnerable to this.  However, I could not find any direct reference for  XSSJacking or Pastejacking vulnerability in F5 forums. 
Looking forward for your inputs..&nbsp;

samstep · Answer

The name "XSSJacking" has been coined only a few days ago by researcher Dylan Ayrey. The attack is a combination of XSS, ClickJacking and CSRF - all these attacks are mitigated by F5 ASM individually and together.

Forum Discussion

Is F5 ASM has XSSJacking protection

1 Reply

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Get associated pool name from VIP IP using F5-LTM

Disacard SSL::cert mode to ignore when default SSLClient profile is set to request or require

About custome Response Blocking Page

About IPI check ip list

Related Content

Knowledge sharing: Order of precedence for BIG-IP modules, ASM DDOS Protection, Bot Protection

Beyond REST: Protecting GraphQL

F5 ICAP over SSL/TLS (Secure ICAP) with F5 ASM/AWAF Antivirus Protection feature

L7 DoS Protection with NGINX App Protect DoS

Managing NGINX App Protect WAF for Beginners