Modsecurity – Open Source Web Application Firewall

Modsecurity a firewall that protects and detects web application.

Modsecurity is an Apache web server module that aims to protect your web application from known and unknown attacks like: SQL injection attacks, cross-site scripting, path traversal attacks and many more by providing a web application firewall engine.

A Modsecurity CRS (Core Rules Set ) prevents information leakage and is based on generic rules that actually focus on attack payload identification to provide protection. The rules determine the performance, quality, regression, real traffic testing, generic detection, event information, plug and play.

The Core Rule Set uses certain technologies to protect the web application such as

* Protocol compliance: HTTP request validation, HTTP protocol anomalies, Global constraints, HTTP Usage policy
* Attack Detection: Malicious client software detection, Generic Attack Detection, Trojans and Backdoor Detection,
* Error Detection
* XML Protection
* Search engine Monitoring

Initially you need to install the Modsecurity and configure Apache for Modsecurity

Go4 Modesecurity