ModSecurity

mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 05:45:59 +03:00

Author	SHA1	Message	Date
Felipe Zimmerle	43bba3f942	Removes the depricated MacroExpansion class	2018-02-20 13:40:01 -03:00
Felipe Zimmerle	f17af95728	Using RunTimeString on setvar action	2018-02-20 13:40:01 -03:00
Felipe Zimmerle	a6830c76f2	parser refactoring: ops no longer carry a payload	2018-02-20 13:40:00 -03:00
Felipe Zimmerle	a299997e02	Using run time string on the operators	2018-02-20 13:40:00 -03:00
Felipe Zimmerle	2d892a3176	Adds support for multipart vars on the parser	2018-02-20 13:40:00 -03:00
Felipe Zimmerle	6fe8655ed9	Adds support for RunTimeString Using RunTimeStrings instead of runtime parser for macro expansion.	2018-02-20 13:40:00 -03:00
Felipe Zimmerle	23cf656f93	Adds support to WEBAPPID variable	2017-11-08 10:28:56 -03:00
Felipe Zimmerle	ec667a4609	Adds support for SecRuleRemoveByTag	2017-11-07 14:52:50 -03:00
Felipe Zimmerle	4d7fd5c30a	Adds support for update target by message	2017-11-06 23:29:25 -03:00
Felipe Zimmerle	cb3363c7d5	Adds support for the exec action	2017-11-05 23:31:07 -03:00
Victor Hora	63bef3d142	Support to JSON stuff on serial logging	2017-10-09 09:02:31 -03:00
Felipe Zimmerle	2cf636cf76	parser: Adds generated parser files after 0xfce65	2017-08-21 23:41:37 -03:00
Felipe Zimmerle	945ee27a85	parser: Adds SecRuleUpdateActionById is not yet supported	2017-08-17 15:08:38 -03:00
Felipe Zimmerle	d7eab6b7a3	Adds support to SecRuleRemoveByMsg	2017-08-16 23:42:13 -03:00
Felipe Zimmerle	b4051246b1	Adds support to SecResponseBodyMimeTypesClear	2017-08-16 22:21:03 -03:00
Felipe Zimmerle	48f1470269	Adds support to SecArgumentSeparator	2017-08-16 18:27:51 -03:00
Felipe Zimmerle	a302538521	parser: Adds SecWebAppId not supported note	2017-08-16 17:31:59 -03:00
Felipe Zimmerle	bb2fe0e039	parser: Adds note saying that SecServerSignature is not supported	2017-08-16 17:14:42 -03:00
Felipe Zimmerle	9abc37157d	parser: Adds msg: ContentInjection is not yet supported	2017-08-16 09:21:23 -03:00
Victor Hora	53ff0e1a57	Adds initial support to SecHttpBlKey	2017-07-29 00:12:14 -03:00
Felipe Zimmerle	4bec6b0019	Adds support to ctl:ruleEngine	2017-07-27 22:05:10 -03:00
Felipe Zimmerle	e14dc602e5	Adds support to SecRuleUpdateTargetById	2017-07-04 13:13:13 -07:00
Felipe Zimmerle	fba9c20ea1	Adds initial support to SecRuleUpdateTargetByTag	2017-07-03 17:42:34 -07:00
Felipe Zimmerle	9cb3f23b50	Adds support to setrsc action	2017-06-09 16:59:04 -03:00
Victor Hora	37868d1534	Add missing feature: t:uppercase transformation	2017-06-02 21:47:54 -03:00
Victor Hora	9d70345d3d	Add missing hexDecode transformation to seclang parser	2017-05-29 22:48:23 -03:00
Felipe Zimmerle	b3c8e97ff7	Parse fix: accepting variables in between quotes	2017-03-30 10:02:36 -03:00
Felipe Zimmerle	f2d149fc5f	Extends the direct access model to other collections	2017-03-06 15:02:00 -03:00
Felipe Zimmerle	ca24b6bb06	PoC: Adds support to direct access on ARGS collection	2017-03-06 15:01:59 -03:00
Felipe Zimmerle	c1f11ab4e5	Cosmetics: assorted fixes on the coding style	2017-03-06 15:01:59 -03:00
Felipe Zimmerle	ba6b972ca8	Makes global collection allowed to be set by setVar	2017-03-06 15:01:59 -03:00
Felipe Zimmerle	e95555132e	Contionuation of 1 time variable patch Now we have almost 100% of the transaction variables hosted on the new schema. Variable modifcators (count and exclusion) are not yet supported on the new schema. Notice that setvar is now using the parser.	2017-03-06 15:01:58 -03:00
Felipe Zimmerle	703da3c4f0	Adds PoC about 1-time variable resolution and draft for offset There is no need for the variable purely associated with the transaction (transient) be part of collection that demands lookups. Also, those variables will held the concept of offset: The offset from the first byte of the request till the start of the variable.	2017-03-06 15:01:52 -03:00
Felipe Zimmerle	3eccfaf1f6	Disables parser generation on all builds The parser generation is now an configure option	2017-03-06 15:01:52 -03:00

34 Commits