openappsec Collection by openappsec

Installation

cscli collections install openappsec/openappsec

Source code

A collection for open-appsec that allow to ban IPs that made requests that open-appsec blocked in the waf. This collection handle most of the waapIncidentType that open-appsec can generate.

SQL Injection
Path Traversal
LDAP Injection
Remote Code Execution
Vulnerability Scanning
Cross Site Scripting
XML External Entity
Evasion Techniques
General
URL instead of file
Cross Site Request Forgery
Cross Site Redirect
Open Redirect
Schema Validation
Bot Protection
Error Disclosure
Error Limit
Illegal http method violation
Http limit violation
Request Rate Limit

Example acquisition for this collection :

1source: file
2filenames:
3  - /var/log/nano_agent/cp-nano-http-transaction-handler.log*
4labels:
5  type: openappsec

Content

Hub collection

« open-appsec - Log Analysis »Collection
v0.2 by openappsec

openappsec-logs

openappsec-ldap-injection

openappsec-path-traversal

openappsec-probing

openappsec-rce

openappsec-sql-injection

openappsec-xss

openappsec-xxe

openappsec-url-instead-of-file

openappsec-schema-validation

openappsec-request-rate-limit

openappsec-open-redirect

openappsec-http-method-violation

openappsec-http-limit-violation

openappsec-general

openappsec-evasion-techniques

openappsec-error-disclosure