Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!


modsecurity rules
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

modsecurity rules

Does anyone have a link source for good, regularly updated mod security rules?

thanks

Comments

  • SpiritSpirit Member
    edited January 2014

    Most people use OWASP or Atomic ModSecurity Rules (but free version of Atomic rule set isn't completely up to date if I remember correct).

  • Not from the top of my head, I am not on my main box, but you could use the WAF by Comodo and "borrow" their rules, or just use their service:
    https://waf.comodo.com/

  • I used to use the Atomic delayed rules, but they don't offer them for free anymore - and are quite out of date now.

    I found the OWASP rules, just wondering what else others used / recommended.

    Keep the suggestions coming :)

  • One of my clients pays for the spiderlabs commercial ruleset. Daily updates, fast support, rsyncable.

Sign In or Register to comment.