bauthard
GitHub
commit
87e4b03915
|
|
@ -1,7 +1,7 @@
|
|||
id: what-waf-detect
|
||||
id: waf-detect
|
||||
|
||||
info:
|
||||
name: What WAF Detection
|
||||
name: WAF Detection
|
||||
author: dwisiswant0
|
||||
severity: info
|
||||
|
||||
|
|
@ -116,8 +116,6 @@ requests:
|
|||
- type: regex
|
||||
name: varnish
|
||||
regex:
|
||||
- '(?i)\bxid. \d+'
|
||||
- '(?i)varnish$'
|
||||
- '(?i)varnish'
|
||||
- '(?i).>.?security.by.cachewall.?<.'
|
||||
- '(?i)cachewall'
|
||||
|
|
@ -240,10 +238,8 @@ requests:
|
|||
regex:
|
||||
- '(?i)<RequestId>[0-9a-zA-Z]{16,25}<.RequestId>'
|
||||
- '(?i)<Error><Code>AccessDenied<.Code>'
|
||||
- '(?i)\baws(alb)?.'
|
||||
- '(?i)x.amz.id.\d+'
|
||||
- '(?i)x.amz.request.id'
|
||||
- '(?i)amazon(aws.com)?(\d+)?'
|
||||
condition: or
|
||||
part: all
|
||||
- type: regex
|
||||
|
|
@ -305,6 +301,7 @@ requests:
|
|||
- '(?i).>attention.required!.\|.cloudflare<.+'
|
||||
- '(?i)http(s)?.//report.(uri.)?cloudflare.com(/cdn.cgi(.beacon/expect.ct)?)?'
|
||||
- '(?i)ray.id'
|
||||
- '(?i)__cfduid'
|
||||
condition: or
|
||||
part: all
|
||||
- type: regex
|
||||
|
|
@ -373,7 +370,6 @@ requests:
|
|||
- '(?i)x.binarysec.via'
|
||||
- '(?i)x.binarysec.nocache'
|
||||
- '(?i)binarysec'
|
||||
- '(?i)\bbinarysec\b'
|
||||
condition: or
|
||||
part: all
|
||||
- type: regex
|
||||
Loading…
Reference in New Issue