Thread: [mod-security-users] Generate Nessus rules for mod_security
Brought to you by:
victorhora,
zimmerletw
From: Javier Fernandez-S. <jfe...@ge...> - 2004-10-28 16:07:14
Attachments:
nessus2modsec.pl
nessusmodsec-rules.txt.gz
|
In the line of the snort2modsec script I've written a nessus2modsec script. There are some differences between both (there are now so many Nessus plugins, for example, that it is necessary to provide the directory as an argument instead of plugins/*) Attached is both the script (comments and testing welcome!) and rules generated based on the latest Nessus plugins. Regards Javier BTW: I think I did see some rules for mod_security based on Snort plugins but I don't remember where I found them.. |
From: Ivan R. <iv...@we...> - 2004-10-31 12:06:46
|
Javier Fernandez-Sanguino wrote: > In the line of the snort2modsec script I've written a nessus2modsec > script. There are some differences between both (there are now so many > Nessus plugins, for example, that it is necessary to provide the > directory as an argument instead of plugins/*) > > Attached is both the script (comments and testing welcome!) and rules > generated based on the latest Nessus plugins. Thanks Javier, I will test the script and the generated rules next week. I will be happy to include your script into the distribution if you are happy with the GPL licence. Please let me know. -- ModSecurity (http://www.modsecurity.org) [ Open source IDS for Web applications ] |
From: Javier Fernandez-S. <jfe...@ge...> - 2004-11-02 08:03:35
|
> > Thanks Javier, I will test the script and the generated rules > next week. I will be happy to include your script into the > distribution if you are happy with the GPL licence. Please let > me know. > Sorry, I forgot to the add the appropiate license to the file. Of course, its GPLd. Feel free to add it to the distribution. Regards Javier |