https://0d2d0d50.website-1u6.pages.dev/pages/Recent content in CRS Projecthttps://0d2d0d50.website-1u6.pages.dev/privacy-policy/Mon, 15 Nov 2021 17:42:45 +0100<p>Our project is part of the Open Worldwide Application Security Project (OWASP). This privacy policy will explain how our project uses the personal data we collect from you when you use our website.</p> <p>Topics:</p> <ul> <li>What data do we collect?</li> <li>How do we collect your data?</li> <li>How will we use your data?</li> <li>How do we store your data?</li> <li>How do we use cookies?</li> <li>Subprocessors</li> <li>Changes to our privacy policy</li> <li>How to contact us</li> <li>How to contact the appropriate authorities</li> </ul> <h3 id="what-data-do-we-collect">What data do we collect?</h3> <p>Our project collects the following data:</p>https://0d2d0d50.website-1u6.pages.dev/videos/Thu, 27 Jul 2017 17:14:59 +0200<h4 id="modsecurity-and-nginx-tuning-the-owasp-core-rule-set">ModSecurity and NGINX: Tuning the OWASP Core Rule Set</h4> <lite-youtube class="full-width" videoid="5qW9IUNLGqQ" playlistid="" videotitle="Play Video" videoplay="Play" params="nocookie=1" posterquality="maxresdefault"> <a class="lite-youtube-fallback" href="https://www.youtube.com/watch?v=5qW9IUNLGqQ">Play Video on YouTube</a> </lite-youtube> <h4 id="bsides-winnipeg-2017-for-the-win-finding-waf-evasions-and-verifying-fixes-with-ftw">BSides Winnipeg 2017: For The Win: Finding WAF Evasions and Verifying Fixes with FTW</h4> <lite-youtube class="full-width" videoid="PGcSHN3mNtE" playlistid="" videotitle="Play Video" videoplay="Play" params="nocookie=1" posterquality="maxresdefault"> <a class="lite-youtube-fallback" href="https://www.youtube.com/watch?v=PGcSHN3mNtE">Play Video on YouTube</a> </lite-youtube> <h4 id="appsec-usa-2017-wafs-ftw-a-modern-devops-approach-to-security-testing-your-waf">AppSec USA 2017: WAFs FTW! A modern devops approach to security testing your WAF</h4> <lite-youtube class="full-width" videoid="05Uy0R7UdFw" playlistid="" videotitle="Play Video" videoplay="Play" params="nocookie=1" posterquality="maxresdefault"> <a class="lite-youtube-fallback" href="https://www.youtube.com/watch?v=05Uy0R7UdFw">Play Video on YouTube</a> </lite-youtube> <h4 id="appsec-eu-2017-introducing-the-owasp-modsecurity-core-rule-set-30">AppSec EU 2017: Introducing the OWASP ModSecurity Core Rule Set 3.0</h4> <lite-youtube class="full-width" videoid="eO9gBAmKS58" playlistid="" videotitle="Play Video" videoplay="Play" params="nocookie=1" posterquality="maxresdefault"> <a class="lite-youtube-fallback" href="https://www.youtube.com/watch?v=eO9gBAmKS58">Play Video on YouTube</a> </lite-youtube> <h4 id="nginxconf-17-secure-your-apps-with-nginx-and-the-modsecurity-waf">Nginx.conf 17: Secure your Apps with NGINX and the ModSecurity WAF</h4> <lite-youtube class="full-width" videoid="tWjGwdZ59w4" playlistid="" videotitle="Play Video" videoplay="Play" params="nocookie=1" posterquality="maxresdefault"> <a class="lite-youtube-fallback" href="https://www.youtube.com/watch?v=tWjGwdZ59w4">Play Video on YouTube</a> </lite-youtube> <h4 id="area41-2016-core-rules-paranoia-mode">Area41 2016: Core Rules Paranoia Mode</h4> <lite-youtube class="full-width" videoid="o25wJH169aA" playlistid="" videotitle="Play Video" videoplay="Play" params="nocookie=1" posterquality="maxresdefault"> <a class="lite-youtube-fallback" href="https://www.youtube.com/watch?v=o25wJH169aA">Play Video on YouTube</a> </lite-youtube>https://0d2d0d50.website-1u6.pages.dev/poster/Wed, 26 Jul 2017 22:11:21 +0200<p>The <a href="">CRS3 poster</a> was designed by Hugo Costa, OWASP&rsquo;s graphical designer. It can be reused under a <a href="https://creativecommons.org/licenses/by-nd/4.0/">CC BY-ND</a> license.</p> <figure><img src="https://0d2d0d50.website-1u6.pages.dev/images/2017/07/CRS3-movie-poster.jpg"> </figure>https://0d2d0d50.website-1u6.pages.dev/support/Thu, 08 Jun 2017 18:27:37 +0200<p>We strive to make the OWASP CRS accessible to a wide audience of beginner and experienced users. We are interested in hearing any bug reports, false positive alert reports, evasions, usability issues, and suggestions for new detections.</p> <p><a href="https://github.com/coreruleset/coreruleset/issues">Create an issue on GitHub</a> to report a false positive or false negative (evasion). Please include your installed version and the relevant portions of your engine audit log. We will try and address your issue and potentially ask for additional information in order to reproduce your problem. Please also note that stale issues will be flagged and closed after 120 days. You can search for stale issues with the following <a href="https://github.com/coreruleset/coreruleset/issues?q=label%3A%22Stale&#43;issue%22">search query</a>.</p>