Today, we are releasing the next tutorial in our Apache / ModSecurity series: Extending and Analyzing the Access Log “What’s the big deal?” I hear you say. I admit, it may sound a bit boring, but log files are primordial. Configuring the right logfile makes the difference between ignorance and insight into you server. There […]
The release of the OWASP ModSecurity Core Rule Set 3.0 is drawing closer and closer. This made me think about a way to introduce new users to ModSecurity and the Core Rules. Despite online documentation and blog posts and google and stack overflow and what not: There is no one stop place to learn it […]
There is a spare time activity which I enjoy in off hours. I go to reddit or twitter or some other site where web attack ideas are traded. I look for new exploits or evasions and try and run them against a local webserver to see if the OWASP ModSecurity Core Rules would block the […]
This is one for the pen-testers. We all know it’s fairly simple to fingerprint a webserver and fingerprinting a web application firewall like ModSecurity is probably even easier. It takes a bit of knowledge though and if you want to drill down on the ruleset, you should now the ruleset a bit. So here is […]
The ModSecurity Web Application Firewall is hard. It’s a complex piece of software with a complicated configuration language. There are rough edges and if you happen to run the OWASP ModSecurity Core Rules, then you are likely to get more false alarms, than you are prepared for. There is Ivan Ristić’s ModSecurity Handbook which serves […]
