Currently we only track what rule was last hit per session. This issue is to track the effort to improve the session tracking and also store into requests what session they belonged to.
One thing this should enable is to query a session and see what requests matched a rule and which ones didn't. The latter could be the most interesting. (e.g. in a case where you have a bunch of rules to emulate an app so any additional request has a higher probability of being an atack)
Currently we only track what rule was last hit per session. This issue is to track the effort to improve the session tracking and also store into requests what session they belonged to.
One thing this should enable is to query a session and see what requests matched a rule and which ones didn't. The latter could be the most interesting. (e.g. in a case where you have a bunch of rules to emulate an app so any additional request has a higher probability of being an atack)