Felipe Zipitría
Felipe Zipitría
@client9 Hey Nick! Can we add a some documentation so the community knows there is a new fork (from https://github.com/client9/libinjection/issues/150#issuecomment-668179739)? Also archiving this repo might make sense, so people won't...
### Description Some application servers will ignore additional garbage after `[]` and treat it as an array parameter. We need to think implementable solutions: - can we count foo[]aa, foo[]bb...
### Motivation Now that we have banned all pcre2 only regexps, we need to keep this line forward. ### Proposed solution Use a new pipeline test. it will extract regular...
Signed-off-by: Felipe Zipitria This are the changes made to the regexp: - create prefix for js properties - add all js properties - create prefix for html properties - add...
Signed-off-by: Felipe Zipitria Updates the second part of the regexp using unix-shell.data commands.
Signed-off-by: Felipe Zipitria Updated data list based on unix-shell.data. I've also added some regexes for programming languages with versions. Fixes #2673 .
### Motivation Per [meeting decision](https://github.com/coreruleset/coreruleset/issues/2330#issuecomment-1004310622), we are going to transfer these rules to a new DoS plugin. ### Proposed solution - [x] Create new plugin structure and move files -...
### Motivation The regexes contained in the data file can easily be generated with the new assemble directives. It will make them clear and easy to update. Also, we need...
There is no information on where this list comes from. We need to get some sources and update the list. This looks like a good place to start: https://github.com/JayBizzle/Crawler-Detect ([other...