Configuring the ModSecurity Firewall with OWASP Rules

by Nikhil Kumar
Oct. 8, 2017 0 comments INFOSEC Institute Detection & Response firewall

In today’s world, over 70% of all attacks carried out over are done so at the web application level, so we need to implement security at multiple levels, as organizations need all the help they can get in making their systems secure. Web application firewalls are deployed to establish an external security layer that increases security and detects and prevents attacks before they reach the web application. One of the more commonly used application layer firewalls is ModSecurity, which is an open source intrusion detection and prevention system. In order to make ModSecurity more useful, it must be configured with rules. These rules can be created by us according to need, or we can use the Open Web Application Security Project (OWASP) rules.