[Mod-security-developers] Protection against Bash injection
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[Mod-security-developers] Protection against Bash injection
|
From: Marc S. <mar...@ap...> - 2018-11-08 14:30:19
|
For those who remember, we (Approach Belgium) published in 2011 the "cmdLine" transformation that handles most Windows cmd injections (and some basic bash injections). The "cmdLine" transformation is now officially part of ModSecurity for years. We were also using, to protect our customers for some years, an additional transformation blocking several other bash injections. We decided to also give it to the community. The source code and the explanations are available on https://www.approach.be/en/modsecurity.html Enjoy [cid:par...@ap...] Marc Stern Cyber-Security Consulting Director Approach Belgium<https://www.approach.be> Axis Park - Rue Edouard Belin 7 - 1435 Mont-Saint-Guibert - Belgium Follow us: [cid:par...@ap...] <https://www.linkedin.com/company/16513/> [cid:par...@ap...] <https://twitter.com/ApproachBe> Inspiring the cyber-security community This e-mail and any attachment are confidential and intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient, please contact the sender and delete this message and any attachment from your system. Unauthorised publication, use, dissemination, forwarding, printing or copying of this e-mail and its associated attachments is strictly prohibited. |
