-
[`930110-7` test](https://github.com/coreruleset/coreruleset/blob/67a4d5e5b93d9b4067970d2dc712b6eac83214af/tests/regression/tests/REQUEST-930-APPLICATION-ATTACK-LFI/930110.yaml#L107-L122) is performed…
-
i have install coraza-proxy-wasm on envoy 1.27. i am build with go version 1.20 gotiny 0.28.
but i have something error blocker
[2023-08-10 16:17:37.729][81856][error][wasm] [source/extensions/commo…
-
Everything we have tested with haproxy and coraza spoa has been detected and marked/blocked accordingly including various mysql injection tests.
However, we have a website form that we know was sql…
-
Hi you've removed the tx.ProcessRequest, which directly took the Request object from net/http as a parameter, which means that your library isn't adapted to gin. Would it be possible to add the possib…
-
Hello everyone,
as already announced in your Slack channel, I am currently facing issues with Websocket connections in conjunction with coraza-caddy.
These connections work fine if I set `SecRuleE…
-
I see that the samples are all using coraza wasm through envoyfilter
However, when users access k8s, they will first go through the istio-ingressgateway, and then go to envoy
1. In actual scenario…
-
I'm testing some multipart/related XML POST requests on the Coraza WAF with Caddy right now, and the requests I'm sending are getting blocked by rule 921150 (Detect newlines in argument names). After …
-
I think that this `internal` folder that hides most of exported modules is an unfortunate situation.
Consider a use-case when someone wants to make a rules parser to help migrate off `libmodsecurit…
-
Hello,
currently, ftw is looking for the IDs of the triggered rules after sending a request. What we are facing running Coraza on Envoy is that the phase when the rule is triggered may differ from th…
-
The WAF level should expose Prometheus metrics the same way Caddy does, some useful base metrics would be:
- Total number of rules loaded
- Total number of times a request was blocked