-
Investigate for POST request if is doable to add no-transform header.
https://developers.cloudflare.com/waf/tools/scrape-shield/email-address-obfuscation/
-
I took a peek at https://github.com/nemesida-waf/waf-bypass
It runs a great many payloads against WAFs and reports bypasses and also a few FPs.
CRS does OK, but still quite a few bypasses, namel…
-
## Description
In Deny mode the WAF seems to correctly handle the `allow` action, and after triggering an `allow` rule other rules in the same and subsequent phases are ignored and not triggered. I…
-
### Check for previous/existing GitHub issues
- [X] I have checked for previous/existing GitHub issues
### Module specific issue
- [X] I confirm that this issue is about this AVM module and not abo…
-
### 1Panel 版本
v1.10.12-lts
### 请描述您的需求或者改进建议
采纳建议的结果:提升用户体验,减少用户没必要的操作
需要改进的原因:WAF默认有全局设置,然而我理解的全局就是每个网站都沿用全局的设置,这样每个网站不需要一个一个单独去设置waf规则;然而下午在群里咨询了,得到的回答并不是,必须每个网站一个一个再设置一遍同样的规则;我觉得这样的体验有点糟糕,全局就应该…
-
```console
# cd "$(mktemp -d)"
# git clone https://github.com/Abraca/Abraca
# cd Abraca/
# ./waf
Waf: The wscript in '/tmp/tmp.zo0p31WMmM/Abraca' is unreadable
Traceback (most recent call …
-
### Version
1.13.x (beta)
### Is your feature request related to a problem? Please describe.
WAF settings are confusing and overly complex - a simpler CRD with a single message would be easi…
-
Hello,
An access error was occurred when we save basic metadata to register a dataset.
We found our Web Application Firewall blocked the access because the WAF recognized this request with HTML ta…
-
### Description
CAPTCHA JavaScript API integration is not currently supported in the Terraform resource.
Workaround:
```
resource "null_resource" "example" {
provisioner "local-exec" {
…
-
**Describe the bug**
A clear and concise description of what the bug is.
**To Reproduce**
1. Run '...'
2. See error
**Expected behavior**
A clear and concise description of what you expected…