ModSecurity

mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 13:56:01 +03:00

Author	SHA1	Message	Date
Felipe Zimmerle	4d7fd5c30a	Adds support for update target by message	2017-11-06 23:29:25 -03:00
Felipe Zimmerle	7d7c0c03c5	Adds missing SecRuleScript test case	2017-11-06 23:27:00 -03:00
Felipe Zimmerle	7fa5ca9ba0	Makes lua optional	2017-11-06 00:44:54 -03:00
Felipe Zimmerle	cb3363c7d5	Adds support for the exec action	2017-11-05 23:31:07 -03:00
Felipe Zimmerle	7bec78a5a5	Adds support for transformations inside Lua engine	2017-11-05 23:31:07 -03:00
Felipe Zimmerle	a676f313c3	Initial support for Lua script engine	2017-11-05 23:30:50 -03:00
Felipe Zimmerle	1866a3a9eb	Adds support for the @inspectFile operator	2017-10-31 09:59:17 -03:00
Felipe Zimmerle	1189e9b0ef	Adds support to LUA in configure scripts	2017-10-31 09:59:12 -03:00
Felipe Zimmerle	9369efcb90	Adds support to the collection RESOURCE	2017-10-30 09:07:49 -03:00
Felipe Zimmerle	e6106ae0eb	Fix regression tests for fuzzyHash	2017-10-27 14:47:04 -03:00
Felipe Zimmerle	7622866f97	Adds support for @fuzzyHash Issue #997	2017-10-26 17:44:17 -03:00
Felipe Zimmerle	93e18ca5ea	Support pipes inside quoted variable selection As of #1591 the pipe support was disable in the general selection which was also affecting the quoted selection. This pactch adds the support for pipes inside the quoted selection only.	2017-10-20 11:02:42 -03:00
Felipe Zimmerle	30797a458b	Parser: Pipes are no longer welcomed inside regex dict element selection. Issue #1591	2017-10-17 11:46:44 -03:00
Felipe Zimmerle	1518c43d61	Adds test case for issue #1565	2017-10-11 23:19:20 -03:00
Victor Hora	63bef3d142	Support to JSON stuff on serial logging	2017-10-09 09:02:31 -03:00
asterite	10c4f9b1b2	add a test for macro expansion in @rx	2017-10-06 20:30:04 +00:00
Felipe Zimmerle	210e72aa21	Consideres under quote variable while loading the rules	2017-10-06 20:25:20 +00:00
Felipe Zimmerle	9069a453e5	Revert "Treating ARGS_NAMES as an array instead of scalar" This reverts commit 1d3c4c670db1bb475c83cd2f24455bb5bd6ee6a4.	2017-08-24 00:10:42 -03:00
Felipe Zimmerle	1d3c4c670d	Treating ARGS_NAMES as an array instead of scalar Both value and key are the same.	2017-08-22 18:26:56 -03:00
Felipe Zimmerle	5e76d85636	Update test cases to include test propesed at #1523	2017-08-20 20:08:17 -03:00
asterite	58872e7eda	adds a test for validateByteRange with bytes > 127	2017-08-20 20:07:54 -03:00
Lasse Karstensen	7665d96a13	Improve action-allow test titles	2017-08-20 20:00:28 -03:00
Lasse Karstensen	fc06915cc6	Extend RESPONSE_BODY test case.	2017-08-20 20:00:07 -03:00
Felipe Zimmerle	31655e2c9b	Updates secrules-language-tests	2017-08-20 19:57:58 -03:00
asterite	b8789ab9f4	add a test for negated implicit @rx operator	2017-08-20 19:39:18 -03:00
Felipe Zimmerle	9d4ed52518	test: Counts the disabled tests as skiped on the test summary	2017-08-20 19:33:53 -03:00
Lasse Karstensen	d66f0c7e0d	Add support for disabled test cases. This commit adds support for skipping test cases that have enabled=0 in their JSON body. A separate counter is kept and reported in the final non-automake output, detailing disabled as a separate field. Ref: #1513	2017-08-20 19:28:26 -03:00
Lasse Karstensen	ab14b7c083	Add support for disabling test cases. The JSON test case format has an "enabled" key that is not currently being honored. This trivial patch adds support for skipping test cases that has enabled set to 0.	2017-08-20 19:28:21 -03:00
Felipe Zimmerle	fff5a57656	Changes auditlog type to serial by default	2017-08-20 17:32:44 -03:00
Felipe Zimmerle	b4051246b1	Adds support to SecResponseBodyMimeTypesClear	2017-08-16 22:21:03 -03:00
Felipe Zimmerle	8c66a1b4c2	Adds support to double quotes on debug logs conf	2017-08-15 14:20:39 -03:00
Felipe Zimmerle	56baef5f1f	Fix test case as consequence of the changes at #1514	2017-07-28 22:24:21 -03:00
Felipe Zimmerle	0242646610	Adds test case for the ctl:ruleEngine action	2017-07-27 22:10:58 -03:00
Felipe Zimmerle	337216fd87	fix: remove target by {id,tag} are now considering collections Fix issue #1409	2017-07-25 09:19:21 -03:00
Felipe Zimmerle	e14dc602e5	Adds support to SecRuleUpdateTargetById	2017-07-04 13:13:13 -07:00
Felipe Zimmerle	9ce7d022c2	Fix memory leak in the regression utility	2017-07-04 11:01:11 -07:00
Felipe Zimmerle	52c5631ae7	Adds test case to UpdateTargetByTag	2017-07-04 11:00:11 -07:00
Felipe Zimmerle	74bb022a28	Updates unit test cases	2017-06-28 00:45:12 -03:00
Felipe Zimmerle	787b388f89	Yet another update on the unit test repository	2017-06-28 00:11:35 -03:00
Felipe Zimmerle	ddac1fb6f6	Upgrades the unit test repo to the most recent version This update includes the verify ssn test case	2017-06-27 23:57:49 -03:00
Felipe Zimmerle	9cb3f23b50	Adds support to setrsc action	2017-06-09 16:59:04 -03:00
Felipe Zimmerle	c97db2f361	Adds verbose message when a resource is not found. Fix #1309	2017-05-02 13:39:37 -03:00
Felipe Zimmerle	6421ff087a	Forces disruptive to be first-rule-only ModSecurity version 3 is capable to handle disruptive actions in different rules from the chain. However, lets get it working in the same fashion that we have in version 2.	2017-04-24 21:06:35 -03:00
Felipe Zimmerle	e2bbe9858f	XML Parser: removes unnecessary message from debug logs Fix #44	2017-04-05 09:40:05 -03:00
Felipe Zimmerle	e2af60e765	Expands log_cb to share ruleMessage structure instead text Text version still available and it is the default options	2017-03-06 15:02:04 -03:00
Felipe Zimmerle	027d50b76b	Adds first version of `processContentOffset' This commit also includes an example application on how to use the `processContentOffset' method.	2017-03-06 15:02:02 -03:00
Felipe Zimmerle	616cf84c31	Adds check-static to travis.yaml	2017-03-06 15:02:02 -03:00
Felipe Zimmerle	4ad3574cf2	Adds offset regression tests and assorted fixes on var's offsets	2017-03-06 15:02:02 -03:00
Felipe Zimmerle	795994bb0e	Adds support to error_log in the regression tests	2017-03-06 15:02:02 -03:00
Felipe Zimmerle	44121bdee3	Updates secrules-language-tests	2017-03-06 15:02:01 -03:00

1 2 3 4 5 ...

398 Commits