These summaries highlight various aspects of improving web application security, focusing on trends, tools, and technologies used for protection. Summary 1 discusses the alarming increase in web application vulnerabilities, with a significant rise in attacks reported in 2022. It emphasizes common vulnerabilities such as Cross-Site Scripting (XSS) and SQL injection and introduces a WordPress plugin that integrates Security Information and Event Management (SIEM) with a proxy-based Web Application Firewall (WAF) to block malicious requests effectively. Summary 2 addresses the rise of data leakage incidents in Indonesia, including a notable breach in 2021. This summary describes the development of a WAF using ModSecurity and OWASP Core Rule Set, achieving high detection rates for SQL Injection and XSS attacks. The focus is on using UML for system analysis and testing with platforms like DVWA and WordPress, emphasizing real-time attack logs and WAF integration to bolster cybersecurity. Summary 3 explores the use of machine learning to automate WAF configuration, contrasting it with traditional rule-based firewalls. The method leverages anomaly detection for identifying normal request patterns and creating whitelists, though it highlights the need for labeled datasets. It discusses automatic dataset generation and presents test results, showing improved performance over classic firewalls, particularly with WordPress implementations. Overall, the summaries underscore the importance of evolving security measures and technologies in response to increasing web application vulnerabilities and attacks.