Stack Overflow
Stack Overflow

Questions tagged [web-application-firewall]

A web application firewall is an appliance, server plugin, or filter that applies a set of rules to an HTTP conversation.

From owasp:

A web application firewall is an appliance, server plugin, or filter that applies a set of rules to an HTTP conversation. Generally, these rules cover common attacks such as cross-site scripting (XSS) and SQL injection. By customizing the rules to your application, many attacks can be identified and blocked. The effort to perform this customization can be significant and needs to be maintained as the application is modified.

A far more detailed description is available at Wikipedia.

261 questions
-1
votes
3 answers

How to set IP address on an interface in Fortigate CLI?

I want to set IP address on Port1 of Fortinet Fortigate CLI. I am trying to use the following command: set ip 192.168.176.0 255.255.255.0 but I am getting the following error before 255.255.255.0: IP address is illegal Value parse the error I have…
Rizwan
  • 1
  • 1
  • 1
  • 1
-1
votes
1 answer

Modsecurity - REQUEST_URI allow rule is not working

We have following rules that are not working and we wanted to white list this warning ( in event viewer ), which contains "testinguri" in URI. SecRule REQUEST_URI "@contains testinguri\?op\=message"…
Question and Answer
  • 83
  • 1
  • 7
-2
votes
1 answer

Web application firewall (WAF) rules validation by javascript

WAF Rules applied to web application which is already developed. To overcome WAF blocking inputs , need to convert format of input or encode input before form submitting got failed. If any possibility to validate WAF rules using javascript , pls…
Udhayavanan
  • 1
  • 1
-2
votes
1 answer

Using iptables, how to limit connections for IP range and browser's string?

Daily once, the following IP range is sending multiple requests per second. During the attack a strange browser is being used that is mentioned below: IP Range: 192.168.1.100-192.168.1.200 Port: 80 (Apache web server) Browser Name: X11:…
jehan
  • 107
  • 3
  • 15
-2
votes
1 answer

Which keyword can be used to replace "FROM" in SQL?

I am trying to bypass a waf, and which keyword can be used to replace FROM in SQL?
Nick
  • 26
  • 3
-3
votes
1 answer

403 access forbidden web application firewall security

i get "403 access forbidden web application firewall security alarm triggered" when i try to update products on virtue mart. i have tried to change different product prices but i still got 403 access forbidden. i have tried logging in with different…
user3709854
  • 1
  • 2
1 2 3
17
18