SpiderLabs Blog
Explore the latest threats, critical vulnerability disclosures, cutting-edge research, and intelligence from our elite global threat experts.
PHP chapter from Apache Security available for download
June 13, 2005 | SpiderLabs Anterior
I have made the PHP chapter from Apache Security available for free download. ...
More on impedance mismatch
June 10, 2005 | SpiderLabs Anterior
Recently there has been increased interest in the impedance mismatch problem, ...
The future of web application firewalls
June 07, 2005 | SpiderLabs Anterior
It always pays off to visit Richard Bejtlich's blog once in a while. (Or, even ...
External Web Application Protection: Impedance Mismatch
March 09, 2005 | SpiderLabs Anterior
Web application firewalls have a difficult job trying to make sense of data ...
Mod_security 1.8.7RC2 available
February 28, 2005 | SpiderLabs Anterior
Second release candidate for mod_security 1.8.7 is available for download. I ...
ModSecurity for Java Milestone 3 now available
January 05, 2005 | SpiderLabs Anterior
I have just released an updated version of ModSecurity for Java. This version ...
mod_security and the PHPBB worm (Santy.A)
December 22, 2004
I have been asked to design a mod_security rule to protect sites from the ...
Portable web firewall rule format
September 03, 2004 | Trustwave SpiderLabs
For some time now I've been working on a portable web firewall rule format as ...
WASC releases Threat Classification
July 29, 2004
They've been very quiet for a number of months and now you know what they have ...
AVDL becomes a standard
June 16, 2004
Application Vulnerability Description Language (AVDL) has been approved as an ...
Network Security Hack #93: mod_security
May 04, 2004
O'Reilly have a new book out: Network Security Hacks. It is a really good book ...
ModSecurity audit log to MySQL parser
April 15, 2004 | SpiderLabs Anterior
Dhillon A. K. has written a new article about mod_security. The article is ...
Chroot support significantly improved in v1.8
April 08, 2004
Last night I updated the code that provides the internal chroot functionality ...
Web Application Security Consortium Announced
February 26, 2004
A new organisation has just been announced: the Web Application Security ...
Paper on passive information gathering
February 11, 2004
TechicalInfo.Net is an excellent resource for Web Security information. Gunter ...
AVDL Committee Draft is out
February 07, 2004
This morning I got news of AVDL becoming a Committee Draft; you can get it ...
JIRA license for ModSecurity
February 04, 2004
I am very happy to announce that I've been granted a free JIRA license to use ...
Free Apache hardening utility
February 03, 2004
Syhunt, a security tool company from Brazil, have released a free Apache ...
New Apache module: mod_log_forensic
January 21, 2004
A new module has been added to the Apache CVS repository: mod_log_forensic. It ...
End of year post!
November 15, 2003
I thought a post to mark the end of the year would be in order. It has been a ...
File interception supported
November 14, 2003
Building on the multipart/form-data support I added to mod_security the other ...
Multipart support added
November 11, 2003
Over the weekend I worked on adding the multipart/form-data support to ...
A milestone reached
October 30, 2003
I feel like I've reached a new milestone with mod_security. First of all, it is ...
Updated the Snort rules conversion script
October 20, 2003
The new version of the script to convert Snort rules into mod_security rules is ...
Converted Snort rules to mod_security rules
October 08, 2003 | SpiderLabs Anterior
I wrote a simple Perl script to convert Snort rules to mod_security rules and ...
Enhanced rules now available
September 23, 2003 | SpiderLabs Anterior
The last change before the 1.7 release is now in the CVS. I have refactored the ...
Cookie parsing added
September 20, 2003 | Trustwave SpiderLabs
Now you can analyse cookies using new selective filtering variables ...
Masking your web server
September 15, 2003 | SpiderLabs Anterior
There is a new feature available in the CVS, and it allows you to mask your web ...