Victor Hora
e3b9f7c913
Fix SecUnicodeMapFile support
...
Makes SecUnicodeMapFile read the file and adjust transformation to use the
right variable.
2018-10-31 22:57:39 -03:00
Victor Hora
84ece3edcb
Add test case for SecUnicodeMap
2018-10-31 22:19:27 -03:00
Felipe Zimmerle
065c2e67b6
Adds test case for #1850
2018-10-30 18:25:46 -03:00
Felipe Zimmerle
3f0ea90970
Test case skeleton for #1941
2018-10-29 11:14:31 -03:00
Felipe Zimmerle
973c1f1028
Fix rule line number
...
Issue #1844
2018-10-24 21:02:35 -03:00
Felipe Zimmerle
ef7f65db90
Changes debuglogs schema to avoid unecessary str allocation
2018-10-23 17:00:16 -03:00
Felipe Zimmerle
69cd61439d
Changes the timing to save the rule message
2018-10-23 16:58:42 -03:00
Felipe Zimmerle
120108fd33
Adds support for /32 in @ipMatch cidr notation.
...
/32 is the representation of the ip itself. Not sure if it is needed,
but there is a complaint for that: #849
2018-10-23 16:37:53 -03:00
Felipe Zimmerle
7c50fa7c00
Small fix on @detectXSS test case
2018-10-23 16:26:11 -03:00
Felipe Zimmerle
85ecd190d9
Adds full support to UpdateActionById.
...
Issue #1800
2018-10-23 16:26:11 -03:00
Felipe Zimmerle
554251bade
Refactoring on the Rule class
2018-10-23 16:26:10 -03:00
Felipe Zimmerle
bc3d3f1915
Adds support to setenv action
...
Issue #1044
2018-09-25 10:19:52 -03:00
Felipe Zimmerle
cdf2da1a09
Adds test case related to issue #1725
2018-09-24 16:39:57 -03:00
Felipe Zimmerle
ee50fea266
Handling key exceptions on the variable itself
...
This is the first step towords to solve #1697
2018-09-24 16:16:30 -03:00
Victor Hora
5aa79c17f2
Add test cases for m.setvar in Lua scripts
2018-09-19 19:47:05 -04:00
Victor Hora
a719871458
Fix matching condition and adjust test case
2018-09-11 20:53:17 -03:00
Felipe Zimmerle
dfbff090be
test case: Adds test case related to #1831
2018-09-11 15:40:41 -03:00
Felipe Zimmerle
d302b99ec5
Adds test case for: #1812
2018-09-05 16:00:42 -03:00
Felipe Zimmerle
4585216ae6
Adds more tests to REQUEST_BASENAME
...
Meant to test #1795
2018-09-04 22:02:56 -03:00
Victor Hora
aa158ceef3
Set the correct variable (m_requestBodyType) and add test case
2018-08-22 22:46:37 -03:00
michaelgranzow-avi
d810de9166
#1818 : Variable names must match fully, not partially; also revert to hash table lookup instead of linear search; add test case
2018-06-26 10:47:03 -03:00
Victor Hora
fd8e72fd97
Allow empty strings to be evaluated by regex::searchAll
2018-06-18 22:11:48 -03:00
Ervin Hegedus
76887b8b22
Added new tests, aligned to new UNMATCHED_BOUNDARY flag value
2018-06-12 01:09:37 -03:00
Ervin Hegedus
af4afd348c
Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors
2018-06-12 01:09:36 -03:00
Felipe Zimmerle
202a15bea8
Changes the behavior of the default sec actions
...
Fix #1629
2018-05-31 14:52:53 -03:00
Felipe Zimmerle
42a472adbd
Check if response body inspection is enabled before process it
2018-05-08 10:59:30 -03:00
Robert Paprocki
d0a63aac03
Define m_secmarker_skipped as an integer type
...
There's no reason to treat this this as a double, since it
represents a human-readable data value that is only meaningful
as an integer. In doing so we write cleaner audit logs and save
a small amount of space.
2018-04-24 11:49:13 -03:00
Robert Paprocki
f7beb17570
Fix broken @detectxss operator regression test
2018-04-23 22:11:00 -03:00
Andrei Belov
3d06e1b8b6
Fix github_issue reference in regression test
2018-04-23 22:09:03 -03:00
Andrei Belov
5e65d560f8
Fix utils::string::ssplit() to handle delimiter in the end of string
...
This closes #1743 .
2018-04-22 11:37:30 -03:00
Felipe Zimmerle
ff0d451a5c
Fix maxmind test case
2018-03-29 17:24:32 -03:00
Felipe Zimmerle
0ca5994744
Adds support for ctl:ruleRemoveByTag action
2018-03-26 17:01:53 -03:00
Andrei Belov
601e0d7040
Adjust tests for @inspectFile operator
2018-03-22 23:06:42 -03:00
Felipe Zimmerle
df169ea108
Adds support for libMaxMind
2018-03-22 19:11:42 -03:00
Victor Hora
22334c9bb6
Adds capture action to detectXSS
2018-03-12 22:10:56 -03:00
Felipe Zimmerle
70ace0faa4
Adds capture action to detectSQLi
2018-03-09 12:58:00 -03:00
Felipe Zimmerle
df25c48f53
Adds capture action to verifyCC
2018-03-09 11:26:24 -03:00
Felipe Zimmerle
77a885da5f
Adds capture action to verifySSN
2018-03-09 09:42:05 -03:00
Felipe Zimmerle
0b494c4cdc
Adds capture action to verifyCPF
2018-03-08 19:05:31 -03:00
Felipe Zimmerle
c8666fae31
Check for disruptive action on SecDefaultAction
2018-02-28 14:02:47 -03:00
Felipe Zimmerle
3539c59a67
Adds regression for base64 transformation
2018-02-23 10:46:28 -03:00
Felipe Zimmerle
e3b6b4ccff
Fix resource load on ip match from file
2018-02-22 21:23:20 -03:00
Felipe Zimmerle
de7c5c89bb
Using shared var for variables names
2018-02-20 13:40:01 -03:00
Felipe Zimmerle
a299997e02
Using run time string on the operators
2018-02-20 13:40:00 -03:00
Felipe Zimmerle
68152d8d29
Adds test case for issue #1576
2017-11-13 22:32:55 -03:00
Felipe Zimmerle
023e7acbad
Refactoring on the JSON parser
...
It also address the issue #1576 and #1577
2017-11-10 17:26:23 -03:00
Felipe Zimmerle
23cf656f93
Adds support to WEBAPPID variable
2017-11-08 10:28:56 -03:00
Felipe Zimmerle
082a3e3287
Adds support to SecWebAppID
2017-11-08 09:33:14 -03:00
Felipe Zimmerle
ec667a4609
Adds support for SecRuleRemoveByTag
2017-11-07 14:52:50 -03:00
Felipe Zimmerle
4d7fd5c30a
Adds support for update target by message
2017-11-06 23:29:25 -03:00