Which feature would help protect against SQL injection attacks on web applications?

A Web Application Firewall (WAF) is specifically designed to protect web applications from a variety of threats, including SQL injection attacks. SQL injections occur when malicious SQL code is inserted into an input field for execution, allowing attackers to manipulate the database behind the application. A WAF actively monitors and filters HTTP requests and responses, applying predefined rules to detect and block such harmful inputs before they reach the application.

The WAF analyzes incoming traffic and recognizes patterns indicative of SQL injection attempts, thereby preventing unauthorized access or manipulation of the database. Additionally, WAFs often allow administrators to customize rules and policies that further enhance protection based on the specific requirements of the web application being secured.

While other options like Intrusion Detection Systems can provide important security features, they primarily focus on detecting and responding to threats rather than providing the proactive filtering capabilities necessary to protect web applications specifically from SQL injections. NAT Configuration relates more to network address translation and does not have a direct impact on SQL attack prevention. Traffic shaping, which prioritizes certain types of network traffic, does not provide protection against malicious inputs targeting web applications.

Thus, the role of a Web Application Firewall is vital for defending against SQL injection and enhancing the overall security posture of web applications.