Walter Hop

icon indicating a website link https://lifeforms.nl/

icon company @SlikNL icon location The Netherlands icon location Slik CTO / OWASP Core Rule Set co-lead

Results 16 issues of Walter Hop

Detect obfuscator.io Javascript output

2 comment

### Description https://obfuscator.io converts readable Javascript to an obfuscated mess. We can try to detect its output. Some strings that appear often in the output: - `parseInt(...)` - `_0xabcdef` (9-char...

good first issue
Feature Request

feat(LFI): Detect Windows style filepaths

### Description Bug Bounty issue: U8Z0MSCP Earlier pull request: https://github.com/coreruleset/coreruleset/pull/2595 This issue may be harder than it looks (or maybe not). I am confused because as far as I know,...

False Negative - Evasion
bug bounty

Opportunistic JSON detection and decoding of variables

12 comment

## Summary JSON is often used for request bodies, and this is scanned properly. However, the use of JSON is quickly growing in the contents of variables such as: -...

enhancement
v4

Asynchronous Order Finalization: will this require a change?

2 comment

Let's Encrypt posted the following yesterday. Is acme-tiny already up-to-date for this change? I seem to see some polling code so I think we should be safe, but just to...

Merge new stuff from restricted-files.data into lfi-os-files.data

2 comment

#1292 brought us some new credentials/config file names for `restricted-files.data`. All or most of these entries (depending a short review for FP) should also be added to `lfi-os-files.data`. As discussed...

Good first issue

LFI path traversal rules using REQUEST_BODY cannot be excluded

10 comment

I'm tuning for WordPress FP right now, and I want to exclude some fields. For instance, I'd like to allow people to use the `../` sequence (LFI, rule 930110) in...

False Positive