A company has a web application hosted on an EC2 Instance behind an AWS load balancer. The application has become a recent target for attacks from the Internet. The attacks are making use of malformed HTTP requests. Which of the following service can help mitigate this attack?

Answer options:

A.AWS Application Load balancer
B.AWS Autoscaling
C.Network Access Control Lists
D.AWS WAF

Correct Answer: D
The AWS Documentation mentions the following.
AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF gives you control over which traffic to allow or block your web applications by defining customizable web security rules. You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules designed for your specific application. 
Option A is incorrect since the Load balancer service is only used to distribute traffic.
Option B is incorrect since this service is used to scale the architecture.
Option C is incorrect since this feature cannot be used to block application level attacks.
For more information on AWS WAF, please refer to the below URL-
https://aws.amazon.com/waf/