Web Application Firewalls: Analysis of Detection Logic

by Vladimir Ivanov
Sept. 17, 2017 1 comment www.blackhat.com belen_caty Apps & Hardening firewall

The presentation will highlight the core of Web Application Firewall (WAF): detection logic, with an accent on regular expressions detection mechanism. The security of 6 trending opensource WAFs (OWASP CRS 2,3 - ModSecurity, Comodo WAF, PHPIDS, QuickDefense, Libinjection) will be called into question.


Steven Ulm 6 months ago

Tangled. Really tangled. I appreciate the effort but hard to read...