AWS Shield vs AWS WAF: What are the differences?
What is AWS Shield? Managed DDoS Protection. AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards web applications running on AWS. AWS Shield provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection.
What is AWS WAF? Control which traffic to allow or block to your web application by defining customizable web security rules. AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources.
AWS Shield and AWS WAF can be primarily classified as "Security" tools.