Re: [Mod-security-developers] Hyperscan

[Felipe C. <FC...@tr...>]

Hi Breno,

In fact that is an interesting replacement for the libpcre. We may be able to
make the regex engine inside ModSecurity v3 something pluggable. So it will be
easy to integrate and test a new regex engine.

During the elaboration of ModSecurity v3 we have considered to replace the regex
engine. Chaim suggested another engine that was capable to deal with utf-8
string more easily, I don’t recall the name. Chaim?

Considering that I've created this wrapper for the regex utilization:
https://github.com/SpiderLabs/ModSecurity/blob/libmodsecurity/src/utils/regex.cc

https://github.com/SpiderLabs/ModSecurity/blob/libmodsecurity/src/utils/regex.h


To replace the engine we just have to change the code in those files.

Are you interested to make a contribution on that area? If so, we can help you.


Br.,
Felipe “Zimmerle” Costa
Security Researcher, Lead Developer ModSecurity.

Trustwave | SMART SECURITY ON DEMAND
www.trustwave.com <http://www.trustwave.com/>






From:  Breno Silva <bre...@gm...>
Reply-To:  "mod...@li..." <mod...@li...>
Date:  Thursday, March 31, 2016 at 6:27 PM
To:  mod-security-developers <mod...@li...>
Subject:  [Mod-security-developers] Hyperscan


Interesting project to be considered by modsecurity
https://01.org/hyperscan <http://scanmail.trustwave.com/?c=4062&d=oab91mRoxVs_Ad9K3z51iYss857g0PdnLYNBfKNJYg&s=5&u=https%3a%2f%2f01%2eorg%2fhyperscan>
Breno

________________________________

This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.