This is a series of Apache web server tutorials that will span from the basics to advanced topics like ModSecurity and logfile visualization. There is a blogpost introducing the series and explaining the concept we have in mind.
- Tutorial 1: Compiling Apache (Video Walk-Through)
- Tutorial 2: Configuring a Minimal Apache Web Server
- Tutorial 3: Configuring an Apache/PHP Application Server
- Tutorial 4: Enabling Encryption with SSL/TLS
- Tutorial 5: Extending and Analyzing the Access Log
- Tutorial 6: Embedding ModSecurity
- Tutorial 7: Including OWASP ModSecurity Core Rule Set
- Tutorial 8: Handling False Positives with the OWASP ModSecurity Core Rule Set
- Tutorial 9: Setting up a Reverse Proxy Server
- Tutorial 10: Efficiently Configuring and Debugging Apache and ModSecurity in the Shell
- Tutorial 11: Visualization of Apache / ModSecurity log information
- Tutorial 12: Capturing and Decrypting the Entire Traffic
The advanced tutorials make use of several scripts and aliases which are listed below:
- .apache-modsec.alias
- apachex
- arbigraph
- basicstats.awk
- do-binning.rb
- lastrequestsummary
- modsec-positive-stats.rb
- modsec-rulereport.rb
- parse-apache-logs.rb
- percent.awk
- watch-lastrequestsummary
- 10K-traffic-generator.sh
There is also a German branch of these tutorials.