Cyber Security and Privacy Foundation (CSPF), a non-profit organisation which provides solution to tackle cyber security and privacy issues, has developed a set of rules to protect servers from malicious hackers.
It has come up with modsecurity rules for public, wrote Manish Tanwar and Suriya Prakash of CSPF.
Although, OWASP Core Rule Set (CRS), a project which aims to provide an easily pluggable set of generic attack detection rules that provide a base level of protection for any web application, has been solving several kind of vulnerabilities, it has failed to protect backdoor’s attacks and latest bypasses.
So, CSPF's rules are aimed to protect against the latest bypasses and back doors. It is all set to release the rules for the public.
According to the organization, these can be easily expanded.
Here are the functions of the rules:
- The rules can block sensitive files and folders from being accessed.
- The rules can block b374k shell variants along with some other popular shells.
- The rules also disable directory listing and phpinfo.
- The rules block SQL Injection.
1. Normal SQL Injection
2. Blind and Time Based SQL Injection
3. All types of SQLI
You can get the rules and procedure to use them from here:
http://securityresearch.cysecurity.org/?p=568
