mod-security-users

[mod-security-users] Generate Nessus rules for mod_security

[Javier Fernandez-S. <jfe...@ge...>]

In the line of the snort2modsec script I've written a nessus2modsec 
script. There are some differences between both (there are now so many 
Nessus plugins, for example, that it is necessary to provide the 
directory as an argument instead of plugins/*)

Attached is both the script (comments and testing welcome!) and rules 
generated based on the latest Nessus plugins.

Regards

Javier

BTW: I think I did see some rules for mod_security based on Snort 
plugins but I don't remember where I found them..

Re: [mod-security-users] Generate Nessus rules for mod_security

[Ivan R. <iv...@we...>]

Javier Fernandez-Sanguino wrote:

> In the line of the snort2modsec script I've written a nessus2modsec
> script. There are some differences between both (there are now so many
> Nessus plugins, for example, that it is necessary to provide the
> directory as an argument instead of plugins/*)
> 
> Attached is both the script (comments and testing welcome!) and rules
> generated based on the latest Nessus plugins.

  Thanks Javier, I will test the script and the generated rules
  next week. I will be happy to include your script into the
  distribution if you are happy with the GPL licence. Please let
  me know.

-- 
ModSecurity (http://www.modsecurity.org)
[ Open source IDS for Web applications ]

Re: [mod-security-users] Generate Nessus rules for mod_security

[Javier Fernandez-S. <jfe...@ge...>]

> 
>   Thanks Javier, I will test the script and the generated rules
>   next week. I will be happy to include your script into the
>   distribution if you are happy with the GPL licence. Please let
>   me know.
> 

Sorry, I forgot to the add the appropiate license to the file. Of 
course, its GPLd. Feel free to add it to the distribution.

Regards

Javier