Show threadMichela Marie πŸ‡¨πŸ‡¦Dec 24

@DrewNaylor Hi! False-positives can happen in any web application firewall, but we try to keep them to a minimum in CRS (the most popular rule set for ModSecurity). Feel free to ask if you need help with tuning β€” the team is on Slack, and I check messages here from time to time.

You can also learn more about false positives in #coreruleset in the documentation, and in this blog article. More documentation is coming soon as well.

https://coreruleset.org/docs/1-getting-started/

https://coreruleset.org/20250415/false-negatives-false-positives-how-the-crs-team-decide-when-to-add-or-modify-rules-and-when-we-decide-not-to-add-them/

Getting Started :: CRS Documentation

CRS Documentation
Pentagrid AGDec 11, 2024
A story about looking at the effectiveness of web application firewalls and finding bypasses for the filter ruleset. https://www.pentagrid.ch/en/blog/airlock-web-application-firewall-ruleset-testing-and-waf-bypasses/ #WAF #OWASP #coreruleset #ergon #airlock
An excursion into Airlock WAF ruleset testing

A story about looking at the effectiveness of web application firewalls (WAFs) and finding bypasses for the filter ruleset.

Pentagrid AG
Show threadMichela Marie πŸ‡¨πŸ‡¦Feb 8, 2024
@lemeteore I highly recommend #modsecurity web application firewall, and the #coreruleset for it. You’ve got a number of other great suggestions as well!
Andrew HoweJan 9, 2024
Exciting news in the web application security world: the #ModSecurity #WAF project is officially changing hands and moving under the #OWASP umbrella. It will become a community-driven free and open-source project once again! And, best of all, it will now live alongside the OWASP #CRS (formerly #CoreRuleSet), the de-facto set of open-source WAF rules. Having it all in one place will be very beneficial to both projects! https://owasp.org/blog/2024/01/09/ModSecurity.html
Trustwave Transfers ModSecurity Custodianship to OWASP | OWASP Foundation

Trustwave Transfers ModSecurity Custodianship to OWASP on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.

Andrew HoweNov 14, 2023
I recently got to do an interview as part of the #OWASP #CoreRuleSet project πŸ˜€ The idea is 'meet the people behind the code'. We're a cool open source project run by a fun bunch of real people, honest! πŸ˜…β€‹ Check out the other developer portraits, too! πŸ•Ί https://coreruleset.org/20231109/meet-the-crs-team-andrew-the-technical-writer-who-loves-eurovision-and-doom-ii/ #FOSS #WAF #CRS #opensource #security
Meet the CRS team: Andrew, the technical writer who loves Eurovision and Doom II – OWASP ModSecurity Core Rule Set

Christian Folini ⛑️ Dec 9, 2022

In case you are into #ModSecurity / #OWASP #CoreRuleSet, add this to your weekend watchlist:

My 3rd ModSec / CRS webcast:
https://www.youtube.com/watch?v=x0u49q8HAQQ

Topics:

* News: CRS developer retreat in Varese, Italy. An overview of all the things running in parallel on planet CRS.

* Tech: Introduction to CRS plugins

* Operation: Live analysis of production logs

* C-Rex: Tight integration with False Positive Analysis script

* Upcoming course date: Public onsite course March 2023

Christian Folini's ModSecurity / CRS Webcast #3

YouTube
Christian Folini ⛑️ Nov 16, 2022
I'm looking forward to teach #ModSecurity and #OWASP #CoreRuleSet for two days. Trying out a simple digital teaching assistant that supports the students when editing stuff. I hope it makes it easier for them and for me.
Christian Folini ⛑️ Nov 15, 2022

Last call for my #ModSecurit / #CoreRuleSet webcast with news from the #CRS3 project.

We'll look into CRS plugins and live analysis of #WAF logs. Brief and to the point. Starting in 45min, 2pm CET.

https://www.meetup.com/meetup-group-ungjkskv/events/289074360/

Christian Folini's ModSecurity / CRS Webcast (November 2022), Tue, Nov 15, 2022, 2:00 PM | Meetup

This is the 2nd edition of my monthly webcast dedicated to 30min of practical ModSecurity / Core Rule Set. **Tuesday, November 15, 14:00 CET** Here is the plan: * ModSec

Meetup
Christian Folini ⛑️ Nov 14, 2022
Talking to one of the #CoreRuleSet sponsors today. As Open Source #WAF developer, we lack the (diverse) traffic to observe our rules in the wild. The big integrators see the traffic and talking to them is super interesting for our project.
Show threadChristian Folini ⛑️ Nov 10, 2022

@JoshCGrossman That's some cool stuff.

I might add that #OWASP #ModSecurity #CoreRuleSet is absolutely one to watch as well. No web application security setup is complete without a decent WAF in front to take out the easy stuff.