Category:OWASP ModSecurity Core Rule Set Project
From OWASP
- About
- Download
- Bug Tracker
- Installation
- Documentation
- Presentations and Whitepapers
- Related Projects
- Latest News and Mail List
- Contributors, Users and Adopters
- Project Details
|
Overview ModSecurity is an Apache web server module that provides a web application firewall engine. The ModSecurity Rules Language engine is extrememly flexible and robust and has been referred to as the "Swiss Army Knife of web application firewalls." While this is certainly true, it doesn't do much implicitly on its own and requires rules to tell it what to do. In order to enable users to take full advantage of ModSecurity out of the box, we have developed the Core Rule Set (CRS) which provides critical protections against attacks across most every web architecture. Unlike intrusion detection and prevention systems, which rely on signatures specific to known vulnerabilities, the CRS is based on generic rules which focus on attack payload identification in order to provide protection from zero day and unknown vulnerabilities often found in web applications, which are in most cases custom coded. Why The Core Rule Set? The focus of the core rule set is to be a "rule set" rather than a set of rules. What makes a rule set different than a set of rules?
|
In order to provide generic web applications protection, the Core Rules use the following techniques:
|
The CRS is an open source rule set licensed under GPLv2. ModSecurity Core Rule Set works with ModSecurity 2.5 and above.
This category currently contains no pages or media.


