github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-11-15 17:12:14 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,565 Commits 55 Branches 109 Tags
cb8d0b068d0fc23c9f026ec6d8229281e25fd84e
Commit Graph

2565 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Izik Abramov
cb8d0b068d fixed compilation error with disable_debug_log flag 2017-12-11 14:20:17 -03:00
Felipe Zimmerle
cb182b0dc5 highlight: Fix JSON structure 2017-12-04 12:16:21 -03:00
Felipe Zimmerle
445b4aee7c Fix on the m_buf generation: avoid padding before request body 2017-12-04 12:16:19 -03:00
Felipe Zimmerle
41040d5104 Adds request_headers_names.conf to reading_logs_via_rule_message example 2017-12-04 12:16:13 -03:00
Felipe Zimmerle
3c8e22ad3a Having a better error handler for the highlight feature 2017-12-04 12:16:09 -03:00
Felipe Zimmerle
f06d09dd49 Changes the line terminator to fixed value: \n 
\r is no longer take into consideration
 2017-12-04 12:16:00 -03:00
Felipe Zimmerle
cc897b0c44 Adjusts the line terminator in the RuleMessage::m_buf variable 2017-12-04 12:15:08 -03:00
Felipe Zimmerle
e8cdefb8c6 Adds support to m_highlightJSON in RuleMessage class 
This variable helds a JSON with information regarding all matches.
Only filled when IncludeFullHighlightLog property is set.
 2017-12-04 12:10:38 -03:00
Felipe Zimmerle
ea8d9c0e82 First version of the inline highlight calculation 2017-12-04 12:10:13 -03:00
Felipe Zimmerle
81e1cdced3 Adds info about issue 1615 on the changes file 2017-11-17 14:11:27 -03:00
michaelgranzow-avi
8bcef41878 Improve benchmark tool 
Benchmark tool: proper initialization of intervention,
get number of iterations from cmd-line, add help message.
 2017-11-17 09:57:31 -03:00
Felipe Zimmerle
e98be6dc55 Adds info about issue 1622 on the changes file 2017-11-17 09:53:24 -03:00
Minasu
af7e6ee169 Correction lua header 2017-11-17 09:52:33 -03:00
Felipe Zimmerle
9c0ed6109d Fix assorted minor memory management issues 2017-11-14 09:36:32 -03:00
Felipe Zimmerle
b7698d6899 Fix memory leak in @fuzzyHash 2017-11-13 23:54:30 -03:00
Felipe Zimmerle
68152d8d29 Adds test case for issue #1576 2017-11-13 22:32:55 -03:00
Felipe Zimmerle
3fb71f32d8 Coding style fixes 2017-11-13 22:32:11 -03:00
Felipe Zimmerle
023e7acbad Refactoring on the JSON parser 
It also address the issue #1576 and #1577
 2017-11-10 17:26:23 -03:00
Felipe Zimmerle
23cf656f93 Adds support to WEBAPPID variable 2017-11-08 10:28:56 -03:00
Felipe Zimmerle
082a3e3287 Adds support to SecWebAppID 2017-11-08 09:33:14 -03:00
Felipe Zimmerle
37c34f3e65 Adds missing cflags for LUA and SSDEEP 2017-11-07 23:30:48 -03:00
Felipe Zimmerle
ec667a4609 Adds support for SecRuleRemoveByTag 2017-11-07 14:52:50 -03:00
Felipe Zimmerle
381cf8ac21 Makes ssdeep enabled by default on the build scripts 2017-11-07 09:15:14 -03:00
Felipe Zimmerle
4d7fd5c30a Adds support for update target by message 2017-11-06 23:29:25 -03:00
Felipe Zimmerle
7d7c0c03c5 Adds missing SecRuleScript test case 2017-11-06 23:27:00 -03:00
Felipe Zimmerle
bff326e80e Adds lua as a travis option 2017-11-06 00:49:25 -03:00
Felipe Zimmerle
7fa5ca9ba0 Makes lua optional 2017-11-06 00:44:54 -03:00
Felipe Zimmerle
e52bd7d635 Adds support to SecRuleScript directive 2017-11-05 23:31:16 -03:00
Felipe Zimmerle
cb3363c7d5 Adds support for the exec action 2017-11-05 23:31:07 -03:00
Felipe Zimmerle
7bec78a5a5 Adds support for transformations inside Lua engine 2017-11-05 23:31:07 -03:00
Felipe Zimmerle
a676f313c3 Initial support for Lua script engine 2017-11-05 23:30:50 -03:00
Felipe Zimmerle
1866a3a9eb Adds support for the @inspectFile operator 2017-10-31 09:59:17 -03:00
Felipe Zimmerle
1189e9b0ef Adds support to LUA in configure scripts 2017-10-31 09:59:12 -03:00
Felipe Zimmerle
9369efcb90 Adds support to the collection RESOURCE 2017-10-30 09:07:49 -03:00
Felipe Zimmerle
a9d54c30a1 Fix on ssdeep search script 2017-10-27 16:57:26 -03:00
Felipe Zimmerle
e6106ae0eb Fix regression tests for fuzzyHash 2017-10-27 14:47:04 -03:00
Felipe Zimmerle
9c83b39ea0 travis: Adds ssdeep option to our regression soup 2017-10-26 17:44:23 -03:00
Felipe Zimmerle
7622866f97 Adds support for @fuzzyHash 
Issue #997
 2017-10-26 17:44:17 -03:00
Felipe Zimmerle
4ecfed3163 Adds CHANGES info about #1598 2017-10-25 16:47:36 -03:00
Athmane Madjoudj
968d83f1ff Fix build on non x86 arch build failed on ppc64/ppc64le/arch64/armv7hl/s390x due to how this arch represent chars 2017-10-25 16:44:27 -03:00
Felipe Zimmerle
371fc03218 Fix memory issue while changing rule target dynamic 
Issue #1590
 2017-10-24 00:03:13 -03:00
Felipe Zimmerle
351beb0567 Adds missing info to the CHANGES file 2017-10-20 21:49:00 -03:00
Felipe Zimmerle
c4fcb36f4c Fix log while displaying the name of a dict selection by regex 2017-10-20 21:46:24 -03:00
Felipe Zimmerle
93e18ca5ea Support pipes inside quoted variable selection 
As of #1591 the pipe support was disable in the general selection which
was also affecting the quoted selection. This pactch adds the support
for pipes inside the quoted selection only.
 2017-10-20 11:02:42 -03:00
Felipe Zimmerle
34e8b140e5 Setting http response code on the auditlog 2017-10-19 23:27:30 -03:00
Felipe Zimmerle
274f9e5aa1 Refactoring on RuleMessage class, now accepting http code as parameter 2017-10-19 23:00:47 -03:00
Felipe Zimmerle
39fb75c34d Having disruptive msgs as disruptive [instead of warnings] on audit log 
Issue #1592
 2017-10-17 14:58:04 -03:00
Felipe Zimmerle
30797a458b Parser: Pipes are no longer welcomed inside regex dict element selection. 
Issue #1591
 2017-10-17 11:46:44 -03:00
Felipe Zimmerle
1518c43d61 Adds test case for issue #1565 2017-10-11 23:19:20 -03:00
Felipe Zimmerle
1ad95254cd Avoids unicode initialization on every rules block 
ModSecurity-nginx/#67
ModSecurity/#1563
 2017-10-11 12:40:48 -03:00