Dark Reading

ModSecurity WAF Gets New Features

CHICAGO (March 30, 2011) – Trustwave, a leading provider of information security and compliance solutions, today announced updates and feature enhancements to ModSecurity, the most widely deployed web ...
Linux Journal

Fortifying Linux Web Applications: Mastering OWASP ZAP and ModSecurity for Optimal Security

In an increasingly interconnected digital world, web applications are the backbone of online services. With this ubiquity comes a significant risk: web applications are prime targets for cyberattacks.
Dark Reading

New Free Web Application Firewall 'Lives' In The App

A researcher plans to release a free, software-based Web application firewall (WAF) that resides in the Web application. The open-source ESAPI WAF is a departure from commercial, network-based ...
Computerworld

New tool gives 150 ways to bypass web app firewalls

A tool for testing if web application firewalls (WAFs) are vulnerable to around 150 protocol-level evasion techniques was released at the Black Hat USA 2010 security conference on Wednesday. The tool ...
Linux Journal

ModSecurity and nginx

nginx is the web server that's replacing Apache in more and more of the world's websites. Until now, nginx has not been able to benefit from the security ModSecurity provides. Here's how to install ...
Infosecurity-magazine.com

Black Hat 2012: ModSecurity open-source firewall now supports Apache, IIS and Nginx

There are two main open-source web firewalls: ModSecurity and IronBee. Ivan Ristic has been involved in both. He first started work on ModSecurity some ten years ago and was soon joined by Ryan ...
CSOonline

Web Application Firewall: a must-have security control or an outdated technology?

A Web Application Firewall (WAF) is probably one of the most popular preventive and/or detective security controls for web applications today. Garter’s Magic Quadrant (MQ) 2015 for Web Application ...