Felipe Zimmerle zimmerle
☠️
zimmerle
/ gist:a5574df6a76e8b5a7d625c36225dc9b4
Created
November 14, 2017 17:53
Nginx configuration example #2
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| http { | |
| server { | |
| listen 80; | |
| server_name localhost; | |
| error_page 404 /40x.html; | |
| location = /40x.html { | |
| root /srv/http; | |
| internal; | |
| } |
zimmerle
/ gist:12b063251a38ffd31c7d2755bb7e1b73
Created
January 3, 2018 13:02
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .file "vlad.cc" | |
| .section .rodata | |
| .type _ZStL19piecewise_construct, @object | |
| .size _ZStL19piecewise_construct, 1 | |
| _ZStL19piecewise_construct: | |
| .zero 1 | |
| .local _ZStL8__ioinit | |
| .comm _ZStL8__ioinit,1,1 | |
| .LC0: | |
| .string "%{" |
zimmerle
/ gist:64f6ecc69edd06dec00c509f1219691b
Created
January 3, 2018 13:04
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .file "orig.cc" | |
| .section .rodata | |
| .type _ZStL19piecewise_construct, @object | |
| .size _ZStL19piecewise_construct, 1 | |
| _ZStL19piecewise_construct: | |
| .zero 1 | |
| .local _ZStL8__ioinit | |
| .comm _ZStL8__ioinit,1,1 | |
| .LC0: | |
| .string "%{" |
zimmerle
/ gist:59dbc60604454e99fbf1d7279ae8e12d
Created
January 8, 2018 14:30
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ([^%\']|(\\\')|([^\\\\]+\\\%\{)|(%[^{]))+ |
zimmerle
/ gist:634d14fe55c64aa786a4ac5954d547cf
Created
January 11, 2018 16:54
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| From b129d1fb16a2a9873ee56125d2dd51cf7f5a3c9f Mon Sep 17 00:00:00 2001 | |
| From: Felipe Zimmerle <[email protected]> | |
| Date: Thu, 11 Jan 2018 13:48:38 -0300 | |
| Subject: [PATCH] Uses MULTIPART_MISSING_SEMICOLON instead of | |
| MULTIPART_SEMICOLON_MISSING | |
| MULTIPART_SEMICOLON_MISSING does not exists in SecLang nor in ModSec. | |
| --- | |
| rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf | 2 +- | |
| 1 file changed, 1 insertion(+), 1 deletion(-) |
zimmerle
/ gist:b8be2a60fbf4efe0670fc27beb5ab69d
Last active
April 24, 2018 13:49
confused to be read
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| TESTS=test/test-cases/regression/issue-1591.json test/test-cases/regression/variable-RESPONSE_HEADERS.json test/test-cases/regression/config-include.json test/test-cases/regression/variable-WEBSERVER_ERROR_LOG.json test/test-cases/regression/operator-fuzzyhash.json test/test-cases/regression/config-xml_external_entity.json test/test-cases/regression/transformation-none.json test/test-cases/regression/action-allow.json test/test-cases/regression/action-ctl_rule_remove_by_tag.json test/test-cases/regression/operator-verifycc.json test/test-cases/regression/variable-variation-exclusion.json test/test-cases/regression/variable-MULTIPART_UNMATCHED_BOUNDARY.json test/test-cases/regression/action-ctl_rule_remove_target_by_id.json test/test-cases/regression/variable-USERID.json test/test-cases/regression/variable-PATH_INFO.json test/test-cases/regression/variable-STATUS.json test/test-cases/regression/operator-detectsqli.json test/test-cases/regression/collection-case-insensitive.json test/test-cases/regression/confi |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| TESTS+=test/test-cases/regression/issue-1591.json | |
| TESTS+=test/test-cases/regression/variable-RESPONSE_HEADERS.json | |
| TESTS+=test/test-cases/regression/config-include.json | |
| TESTS+=test/test-cases/regression/variable-WEBSERVER_ERROR_LOG.json | |
| TESTS+=test/test-cases/regression/operator-fuzzyhash.json | |
| TESTS+=test/test-cases/regression/config-xml_external_entity.json | |
| TESTS+=test/test-cases/regression/transformation-none.json | |
| TESTS+=test/test-cases/regression/action-allow.json | |
| TESTS+=test/test-cases/regression/action-ctl_rule_remove_by_tag.json | |
| TESTS+=test/test-cases/regression/operator-verifycc.json |
zimmerle
/ gist:e90054b7630099e7aceceb8f0431f754
Created
June 25, 2018 20:30
Testing ModSecurity speed while loading the rules.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| * ModSecurity, http://www.modsecurity.org/ | |
| * Copyright (c) 2018 Trustwave Holdings, Inc. (http://www.trustwave.com/) | |
| * | |
| * You may not use this file except in compliance with | |
| * the License. You may obtain a copy of the License at | |
| * | |
| * http://www.apache.org/licenses/LICENSE-2.0 | |
| * | |
| * If any of the files related to licensing are missing or if you have any |
zimmerle
/ gist:7cd25538a7f2a1b7fa977d4b0b8dc5e3
Created
June 26, 2018 19:10
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [ | |
| { | |
| "enabled": 1, | |
| "version_min": 209000, | |
| "version_max": -1, | |
| "title": "Should libmodsec pass action clear m_actions?", | |
| "url": "https:\/\/github.com\/SpiderLabs\/ModSecurity\/issues\/1767", | |
| "client": { | |
| "ip": "200.249.12.31", | |
| "port": 2313 |
zimmerle
/ gist:2e047fb9f60bce10a5596d1d2995bac4
Created
June 28, 2018 19:19
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [ | |
| { | |
| "enabled":1, | |
| "version_min":300000, | |
| "title":"ctl:requestBodyProcessor=URLENCODED", | |
| "client":{ | |
| "ip":"200.249.12.31", | |
| "port":123 | |
| }, | |
| "server":{ |