Abstract-Web Application Firewalls (WAFs) have been characterized as essential in defending web-based systems against standard attacks of the application-layer (SQL injection and cross-site scripting). In order to consider the progress and current research tendencies in this area, this paper provides a broad bibliometric search through the literature on the topic of WAF articles during the 2010-2025 period. On 6 August 2025, the query (Web Application Firewall) OR (WAF) AND (cybersecurity OR web security OR web application security) was selected, and bibliographic data were fetched in the Scopus database. A hit list of 100 publications was eventually processed after screening 412 retrieved records at metadata level using the following filter terms; authorship, citations, keywords, abstracts, titles, year of publication, language of publication, DOI, and institution or organization of publication. Keywords co-occurrence and network effect Co-occurrence statistical analysis was done with using VOSviewer v1.6.20 and R Bibliometrix package to analyze networks and patterns of collaboration between authors and countries and citation. The findings demystify that WAF research has been continuously growing since 2016, and it becomes apparent that lack of interest in the traditional signature-based models has shifted to the machine-learning and cloud-native methods. India, China, and United States are the major contributors. Continuing gaps in research were found in encrypted-traffic inspection, real-time adaptive defence and lack of standard benchmark databases. Reproducibility resources are also given such as exported metadata, keyword mappings, and analysis scripts in the paper to assist other bibliometric research to come, and encourage the openness of future research activity.
Singh et al. (Fri,) studied this question.