https://0d2d0d50.website-1u6.pages.dev/tags/devslop/Recent content in CRS Projecthttps://0d2d0d50.website-1u6.pages.dev/20190909/how-the-crs-protects-the-vulnerable-web-application-pixi-by-owasp-devslop/Mon, 09 Sep 2019 10:37:38 +0200<p>How could the functionality of a WAF be better demonstrated than with a vulnerable web application?</p> <p>In this blog post I introduce Pixi, an intentionally vulnerable web application by the OWASP project DevSlop. I show its known vulnerabilities and examine how the CRS protects against these vulnerabilities.</p> <p>What is Pixi?</p> <p>Pixi is a deliberately vulnerable web application that is part of the <a href="https://devslop.co">OWASP DevSlop project</a>. Beside Tanya Janca, Nicole Becher and Nancy Gariché I am also part of this project. DevSlop is a training ground for DevSecOps. In addition to Pixi, DevSlop also offers many <a href="https://www.youtube.com/channel/UCSmjcWvgVBqF3x_7e5rfe3A">YouTube shows</a>, blog posts and different <a href="https://devslop.co/Home/Module">modules</a> on various security topics!</p>