Overview
Explore the implementation of OWASP Core Rule Set (CRS) in high-security environments through this 41-minute conference talk. Delve into the fundamentals of Web Application Firewalls and ModSecurity before focusing on CRS in high-security settings. Learn about crucial aspects such as logging, animal scoring, fail-to-ban mechanisms, and whitelisting techniques. Gain insights into additional rulesets and practical tutorials to enhance your understanding of web application security. This talk, presented by Christian Folini at the OWASP Foundation event, offers valuable knowledge for security professionals seeking to strengthen their web application defenses.
Syllabus
Intro
Welcome
What is a Web Application Firewall
What is ModSecurity
CRS
High Security
High Security Findings
Logging
Tutorials
Animal Scoring
Fail to Ban
Whitelisting
Additional Rulesets
Taught by
OWASP Foundation