Introduction to the OWASP ModSecurity Core Rule Set | Christian Folini | Nullcon Webinar

Abstract:
—————-
The OWASP ModSecurity Core Rule Set (CRS) is a set of generic attack detection rules for use with ModSecurity or compatible web application firewalls. The CRS aims to protect web applications from a wide range of attacks, including the ones described by the OWASP Top Ten project, with a minimum of false alerts.

This presentation introduces the audience to the concept of a web application firewall (WAF) and describes the open-source WAF engine ModSecurity. The talk presents CRS with its key features like paranoia levels, the concept of stricter siblings, and anomaly scoring. It demonstrates the excellent detection abilities of the ruleset.

Bio:
————
Christian Folini is a Swiss security engineer and open source enthusiast. He holds a Ph.D. in medieval history and enjoys defending castles across Europe. Unfortunately, defending medieval castles is not a big business anymore and so he turned to defend web servers, which he finds equally challenging. He brings 15 years of experience with ModSecurity configuration in high-security environments, DDoS defense, and threat modeling.

Christian Folini is the author of the second edition of the ModSecurity Handbook and the best-known teacher on the subject. He co-leads the OWASP ModSecurity Core Rule Set project and serves as the program chair of the “Swiss Cyber Storm” conference. In 2020, the Swiss government invited him to moderate a dialogue with 25 scientists on questions of online voting security.

Christian Folini is a frequent speaker at conferences, where he tries to use his background in the humanities to explain hardcore technical topics to audiences of different backgrounds.

#Owasp #Modsecurity #Coreruleset #Nullcon
—————————————————————————
Follow nullcon on Facebook:
Twitter:
LinkedIn:
Website:

[ad_2]

source