Congratulations, Ervin.
This is a very welcome addition to our toolbox. Not the least for CRS
development.
Ervin is also presenting the tool at the OWASP ModSecurity Core Rule Set
community summit next Wednesday in Amsterdam. If anybody has not hooked up
so far and wants to join, please get in touch.
Best,
Christian
On Thu, Sep 19, 2019 at 08:45:00AM +0200, Ervin Hegedüs wrote:
> Hi all,
>
> (sorry for the cross posting)
>
> let me announce the ftwrunner tool, a libmodsecurity3 testing helper.
> Ftwrunner can use the existing CRS tests (which made for ftw), but of
> course you can write your own rules. The tool uses libmodsecurity3 API,
> instead of sending HTTP requests to the configured webserver. You can check
> your whole config (base modsecurity.conf, your rulesets) as ftw.
>
> I think this tool also can helps you to check the library - similar to
> existing regression test framework.
>
> If you have any question, issue, bugreport or other feedback, please
> contact me at the given e-mail address in README, or open an issue on
> Github (do not disturb this list).
>
> The tool available here:
> https://github.com/digitalwave/ftwrunner
>
>
> a.
> _______________________________________________
> mod-security-developers mailing list
> mod...@li...
> https://lists.sourceforge.net/lists/listinfo/mod-security-developers
> ModSecurity Services from Trustwave's SpiderLabs:
> https://www.trustwave.com/spiderLabs.php
|
