ModSecurity (WAF) – Pitfalls during security rule development

Published on Author gryzliLeave a comment

ModSecurity rule development … pitfalls ! Recently I’m more and more involved in development of web application firewall (waf)  rules, for blocking diverse attack vectors and protecting web applications. In the course of rule writing, there were some little faults, which caused me to loose tens of hours for debugging, testing and deep duck into… Continue reading ModSecurity (WAF) – Pitfalls during security rule development

ModSecurity (WAF) – Parsing the response body or what you need to know about it

Published on Author gryzliLeave a comment

Sooner or later, people decide that they need to parse response body in order to detect or prevent some malicious activity. Web application firewalls are useful for exactly the same goal. Whenever it comes to WAF, Mod security is the DIY tool for many people. It has nice integration for parsing response body, but there… Continue reading ModSecurity (WAF) – Parsing the response body or what you need to know about it

Scan uploaded files with Apache + mod_security + scanner script

Published on Author gryzliLeave a comment

A lot of people start thinking about scanning the uploaded files in order to improve their site security. Giving the fact that Apache is the most used web server out there, one way to achieve such thing is by using the powerfull mod_security.   Mod_Security has option, where you can tell it to scan certain… Continue reading Scan uploaded files with Apache + mod_security + scanner script