A Web application firewall may actively defend a Web application by:
Invalidating the application session
Intercepting data flowing to and from a Web application
Running in a separate process and memory space
Learning about the application behavior