General availability: Web Application Firewall (WAF) bot protection on Application Gateway
Try the bot protection rule set alongside your OWASP core rule set (CRS), now generally available for Azure Web Application Firewall running on Application Gateway.