ModSecurity
ModSecurity copied to clipboard
owasp-modsecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range o...
Version info: version: libmodsecurity.so.3.0.3 name: nginx-ingress repository: https://kubernetes-charts.storage.googleapis.com version: 1.33.5 kubectl version Server Version: version.Info{Major:"1", Minor:"16", GitVersion:"v1.16.9", GitCommit:"a17149e1a189050796ced469dbd78d380f2ed5ef", GitTreeState:"clean", BuildDate:"2020-04-16T23:15:50Z", GoVersion:"go1.13.9", Compiler:"gc", Platform:"linux/amd64"} ===> cross-post from https://github.com/kubernetes/ingress-nginx/issues/5723 Summary Observations: PATCH...
Main problem: ctl:removeTargetById doesn't know how to work with regex . For instance: ctl:ruleRemoveTargetByID=981248;ARGS:widget-text[4][text] - OK ctl:ruleRemoveTargetByID=981248;ARGS:/^widget/ - BAD
Store "sanitizeMatched" & "sanitizeMatchedBytes" as "sanitiseMatched" & "sanitiseMatchedBytes" to avoid double processing at run-time (only 1 table scan instead of 2). It also fixes a potential NULL pointer problem (last...
The United States Social Security Number area code used to startwith a number less than 740 bt this is no longer the case: https://www.ssa.gov/history/ssn/geocard.html There are now routinely SSNs with...
Issue https://github.com/SpiderLabs/ModSecurity/issues/588 was raised against ModSecurity v2.9.x. In those versions ctl:ruleRemoveTargetByTag does support regular expressions, but the raised issue noted that some regex metacharacters cause difficulties. This new issue is...
**Describe the bug** Instead of failing safely, ModSec triggers a status 500. ``` $ cat example.json { "id" : "123" $ curl -v http://localhost -H "Content-Type: application/json" -d @example.json ......
SecRuleUpdateActionById can successfully be used to: - add actions where multiple of the same action is allowed in a rule (e.g. setvar) - overwrite disruptive actions (e.g. change 'deny' to...
ModSecurity should include a new feature to parse graphQL queries. Nowadays, many big companies are using graphQL. It involves complex configurations that may expose the applications to various security vulnerabilities,...
Nginx build with connector modsecurity-nginx. Modsecurity build with lmdb support (`--with-lmdb`) ``` server /etc/nginx # ls -al ... -rw-r--r-- 1 root root 3957 Aug 10 2017 mime.types drwxr-xr-x 2 root...
When switching between many different open source code bases, it can be cumbersome to constantly change editor settings in order to respect a given project's basic style preferences. EditorConfig is...
Metadata
Owner
Metadata
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range o...