This session provides a step-by-step guide to creating a functional test lab in Azure for evaluating Azure Web Application Firewall (WAF). The demonstration includes setting up a virtual network, deploying Kali Linux VM for simulated attack scenarios, configuring OWASP Juice Shop as a vulnerable web application, and integrating Application Gateway with WAF. The session will focus on how WAF protects against common web application threats, such as Cross-Site Scripting (XSS) and SQL Injection, by actively detecting and blocking simulated attacks in the lab environment.