Web Application Firewalls: Analysis of Detection Logic

by Vladimir Ivanov Sept. 17, 2017 via www.blackhat.com submitted by belen_caty

The presentation will highlight the core of Web Application Firewall (WAF): detection logic, with an accent on regular expressions detection mechanism. The security of 6 trending opensource WAFs (OWASP CRS 2,3 - ModSecurity, Comodo WAF, PHPIDS, QuickDefense, Libinjection) will be called into question.


Steven Ulm 1 month ago

Tangled. Really tangled. I appreciate the effort but hard to read...