From: K K Mookhey (ctonii.co.in)
Date: Mon Nov 28 2005 - 23:32:55 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Maybe this is what you're looking for:

http://www.securityfocus.com/infocus/1768
http://www.nii.co.in/resources/blackhat.ppt

One caveat though: those regexes were written more than a year back, and
much water has flown under the bridge since then.

KK

K. K. Mookhey
Founder
NII Consulting
Web: www.nii.co.in
------------------------------------
Comprehensive Security Assessment Software
http://www.nii.co.in/products.html
------------------------------------

This message may contain privileged and confidential information and is
solely for the use of intended recipient. If you are not the intended
recipient you should not disseminate, distribute, store, print, copy or
deliver this message. Please notify the sender immediately by e-mail if
you have received this e-mail by mistake and delete this e-mail from
your system.

Serg B. wrote:
> No, really? I would have never thought of that Erez. Geezzz
>
> I asked for something specific, ready made expressions - perhaps you
> need to read the manual before you post?
>
> I hate when people reply with unjustified RTFM
>
> Serg
>
> On Wed, 2005-11-16 at 00:33 -0800, Erez Schwarz wrote:
>
>>Use the mod_security manual, you'll get all the info you need, it's on
>>the web site,
>>
>>Best regards,
>>Erez
>>
>>-----Original Message-----
>>From: Serg Belokamen [mailto:serg.belokamengmail.com]
>>Sent: Tuesday, November 15, 2005 4:24 PM
>>To: webappsecsecurityfocus.com
>>Subject: Apache mode_security
>>
>>I am look at mod_security module for Apache... looks interesting so far.
>>
>>Can anyone point me in the right direction, URL perhaps, in regards to
>>regular expression list (if one exists) to detect common attacks over
>>HTTP (SQL injections, XSS, etc.)
>>
>> Thanks,
>> Serg
>
>
>
>

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]