ModSecurity for Apache 2.x,http://www.modsecurity.org/Copyright (c) 2004-2013 Trustwave Holdings, Inc. (http://www.trustwave.com/)You may not use this file except in compliance withthe License.  You may obtain a copy of the License at   http://www.apache.org/licenses/LICENSE-2.0If any of the files related to licensing are missing or if you have anyother questions related to licensing please contact Trustwave Holdings, Inc.directly using the email address security@modsecurity.org.DOCUMENTATIONPlease refer to the documentation folder (/doc) forthe reference manual.##############################################----------------------------------OWASP ModSecurity Core Rule Set (CRS)Project Site:https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_ProjectDownload:https://github.com/SpiderLabs/owasp-modsecurity-crs----------------------------------ModSecurity™ is a web application firewall engine that provides verylittle protection on its own. In order to become useful, ModSecurity™ mustbe configured with rules. In order to enable users to take full advantageof ModSecurity™ out of the box, Trustwave's SpiderLabs is providing a freecertified rule set for ModSecurity™ 2.x. Unlike intrusion detection andprevention systems, which rely on signatures specific to knownvulnerabilities, the Core Rules provide generic protection from unknownvulnerabilities often found in web applications, which are in most casescustom coded. The Core Rules are heavily commented to allow it to be usedas a step-by-step deployment guide for ModSecurity™.Core Rules ContentIn order to provide generic web applications protection, the Core Rulesuse the following techniques:* HTTP Protection - detecting violations of the HTTP protocol and alocally defined usage policy.* Real-time Blacklist Lookups - utilizes 3rd Party IP Reputation* Web-based Malware Detection - identifies malicious web content by checkagainst the Google Safe Browsing API.* HTTP Denial of Service Protections - defense against HTTP Flooding andSlow HTTP DoS Attacks.* Common Web Attacks Protection - detecting common web applicationsecurity attack.* Automation Detection - Detecting bots, crawlers, scanners and othersurface malicious activity.* Integration with AV Scanning for File Uploads - detects malicious filesuploaded through the web application.* Tracking Sensitive Data - Tracks Credit Card usage and blocks leakages.* Trojan Protection - Detecting access to Trojans horses.* Identification of Application Defects - alerts on applicationmisconfigurations.* Error Detection and Hiding - Disguising error messages sent by theserver.----------------------------------ModSecurity Rules from Trustwave SpiderLabsProject Site:https://www.trustwave.com/modsecurity-rules-support.phpDownload:https://ssl.trustwave.com/web-application-firewall----------------------------------Trustwave now provides a commercial certified rule set for ModSecurity 2.xthat protects against known attacks that target vulnerabilities in publicsoftware and are based on intelligence gathered from real-worldinvestigations, honeypot data and research.1. More than 16,000 specific rules, broken out into the following attackcategories: * SQL injection * Cross-site Scripting (XSS) * Local File Include * Remote File Include2. User option for application specific rules, covering the samevulnerability classes for applications such as: * WordPress * cPanel * osCommerce * Joomla * For a complete listing of application coverage, please refer to thislink (which is updated daily).https://modsecurity.org/application_coverage.html3. Complements and integrates with the OWASP Core Rule Set4. IP Reputation capabilities which provide protection against maliciousclients identified by the Trustwave SpiderLabs Distributed Web Honeypots5. Malware Detection capabilities which prevent your web site fromdistributing malicious code to clients.##############################################