ModSecurity rules verification
ModSecurity is open-source WAF. It protects web applications with libinjection and regular expressions. The first...
We found 0 articles by this tag...
Part 2. libinjection: different databases fuzzing
It is sequel of previous article, where I was fuzzing MariaDB 10.2.5, trying...
libinjection: fuzz to bypass
libinjection is a library that parses parameter value to SQL elements (tokens) and check if...
Review: wtt OWASP CRS 3.0 bypass
A while ago I had to make comparison of different Web Application Firewalls based on...
Review: WAFNinja
WAFNinja was presented by Khalil Bijjou at OWASP Stammtisch Frankfurt 2015 and PHDays 2016. This...
Review: WAF Testing Framework
WAF Testing Framework is developed by Imperva employees (Yaniv Azaria, Amichai Shulman) and was presented...