github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-13 21:36:00 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,204 Commits 55 Branches 109 Tags
Commit Graph

2204 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Felipe Zimmerle
714df8db20 Adds support to the action `accuracy' 2016-02-10 13:35:02 -03:00
Felipe Zimmerle
5a2a81a568 Adds support to the action `ver' 2016-02-10 12:53:22 -03:00
Felipe Zimmerle
77900ed4e2 Fix rules `messages' on the auditlog 2016-02-10 12:03:52 -03:00
Felipe Zimmerle
9474373264 General improvements on audit logs information 
Making actions: msg, logdata, tag and others to work in the same
fashion that they work on ModSecurity v2.x
 2016-02-05 15:19:53 -03:00
Chaim Sanders
31117d7577 Fix error on older systems 2016-01-25 10:15:45 -03:00
Felipe Zimmerle
b9b3e82900 Fix AuditLog parts selection 2016-01-21 15:03:47 -03:00
Felipe Zimmerle
9343942398 Adds mutex around the write operation on the auditlogs 2016-01-20 10:21:21 -03:00
Felipe Zimmerle
b4691aa748 Updates python bindings version 2016-01-18 13:53:17 -03:00
Felipe Zimmerle
b46dc34573 Temporarily disable the HTML ENTITY DECODE transformation 2016-01-18 13:48:00 -03:00
Felipe Zimmerle
a102b5ce2c Improves the method fill the ARGS collection 2016-01-15 10:35:24 -03:00
Felipe Zimmerle
98f45f357a Using a better number generator to avoid conflicts 2016-01-15 09:34:51 -03:00
Felipe Zimmerle
36dfe81da0 Adds YAJL_CFLAGS to the project core 2016-01-15 08:12:40 -03:00
Felipe Zimmerle
fc225ff001 Fix whoAmI() call on Transaction 2016-01-15 08:12:27 -03:00
Felipe Zimmerle
b06eaadac7 Places the classes related to audit log into a separate namespace 2016-01-14 14:29:36 -03:00
Felipe Zimmerle
2830525f89 Adds missing file: script.lua 2016-01-14 12:07:59 -03:00
Felipe Zimmerle
aaf995cc71 Adds missing file: transaction.h and removes assay.cc from git 2016-01-14 12:07:25 -03:00
Felipe Zimmerle
e45ad3b08e Updates Python bindings git hash 2016-01-14 12:03:28 -03:00
Felipe Zimmerle
4db5cc7d26 Refactoring on Transaction class: adding comments and renaming variables 2016-01-14 12:02:59 -03:00
Felipe Zimmerle
6f1e6f37d7 Fix trasanction cleanup on the C API 2016-01-14 09:39:11 -03:00
Felipe Zimmerle
a51e707517 Renames class Assay to Transaction 2016-01-13 15:57:00 -03:00
Felipe Zimmerle
f3fd5d6621 Adds owasp/2 experiemntal rules on the test set for benchmark 2016-01-12 14:24:59 -03:00
Felipe Zimmerle
d780fd6290 Fix the parse to distinguish between @pm content and a variable 
Before this patch the parser was not understanding @pm content that
contains a variable.
 2016-01-12 13:59:27 -03:00
Felipe Zimmerle
702551ed42 Adds support to action `exec' to sec lang parser 2016-01-12 10:57:06 -03:00
Felipe Zimmerle
331df90bab Enables OWASP CRS optional_rules on becnhmark test case 2016-01-12 10:50:38 -03:00
Felipe Zimmerle
923620fbd0 Adds support to the action `allow' in the sec parser 2016-01-12 10:42:36 -03:00
Felipe Zimmerle
7901c2c899 Adds the actions SetSID and SetUID to the seclang parser 2016-01-12 10:34:33 -03:00
Felipe Zimmerle
ab92bed6fa Parser improvement: Supporting variables selection with regex 2016-01-12 09:59:33 -03:00
Felipe Zimmerle
3acc013e49 Improves the secrules parser 2016-01-11 17:50:35 -03:00
Felipe Zimmerle
ed13cab9f4 Adds script to download and configure benchmark script to use owasp v[3,2] 2016-01-11 17:50:15 -03:00
Felipe Zimmerle
f23908f145 Improves the secrules parser 2016-01-11 15:14:26 -03:00
Felipe Zimmerle
a4d8dfd5ee Adds ModSecurity recommended configuration file 2016-01-11 13:56:14 -03:00
Chaim Sanders
29680d69aa Updated geoip m4 file to support from path 2016-01-07 10:43:45 -03:00
Felipe Zimmerle
5273258261 Fix libxml configure script 2016-01-07 10:20:34 -03:00
Felipe Zimmerle
8c7b6199f7 Optimization on the tolower function 2016-01-07 09:16:06 -03:00
Felipe Zimmerle
0762892368 Small fix on pull request #982 2016-01-06 17:00:43 -03:00
Chaim Sanders
e38a468a26 Updated with suggestions from @zimmerle for code style 2016-01-06 17:00:43 -03:00
Chaim Sanders
b3ab9a4084 Support for correct implimentation of REQUEST_URI 2016-01-06 17:00:43 -03:00
Felipe Zimmerle
dd35b47764 Removes initcol debug messages 2016-01-06 17:00:43 -03:00
Felipe Zimmerle
a225f8b5b7 Fix SecResponseBodyMimeType test case 2016-01-06 17:00:43 -03:00
Chaim Sanders
6ebe6dfd87 Merge pull request #1038 from pwnbus/update_readme_shell_syntax 
Update readme to use shell syntax
 2015-12-29 15:21:38 -05:00
Brandon Myers
ebf2c88556 Update readme to use shell syntax 2015-12-29 15:19:15 -05:00
Felipe Zimmerle
decf04d264 Adds support to SecResponseBodyMimeType 2015-12-24 11:55:24 -03:00
Felipe Zimmerle
c2d9a153cb Adds support to afl fuzzer in the build system 2015-12-23 00:27:30 -03:00
Felipe Zimmerle
7cebc632e4 Adds Python bindings to the main ModSecurity git repo 2015-12-22 19:29:07 -03:00
Felipe Zimmerle
913e22a77d Adds initial support to initcol action 2015-12-22 12:10:15 -03:00
Felipe Zimmerle
fb3696ac04 Fix a few things to provide an easy interface for script bindings 2015-12-22 11:53:36 -03:00
Felipe Zimmerle
ac10d8863c Changes the operator evaluate method to only support two arguments 
Second argument can be empty if there is not need for it.
 2015-12-22 11:53:31 -03:00
Felipe Zimmerle
215c4d1071 Fix ARGS_POST and ARGS_GET variables order on the parser 2015-12-11 09:26:01 -03:00
Felipe Zimmerle
2a950a435b Fix various minor bugs in the regression test suite 
Now if a test fails it keep testing the others tests from the same
family. The output was also improved.
 2015-12-10 18:36:20 -03:00
Felipe Zimmerle
42ce0475b2 Coding style: changes the namespace in the comments 2015-12-10 13:20:32 -03:00