|
Articles/Thoughts
Related Links
|
jwall.orgThis site is mainly dedicated to some of the helper-tools I develop during my diploma thesis at the University of Dortmund. The thesis is about anomaly detection in web-applications. Since I am currently working on the topic and most of the tools aren't finished yet, none of the stuff is available right now.
Latest NewsWeb Application Profiles 7/14/08This project aims at the specification of rule sets in an application specific but overall abstract manner. The idea is to allow for the creation of rule sets (aka profiles) without having to deal with the low-level ModSecurity realization of the intended behaviour. The project can be found at Web Profiles.Visualization of the Core-Rules Ruleset 7/2/08Yet another side project which transforms a simple idea into a hopefully useful tool: CoreRules2Html. This little tool can be used to transform the core-rules provided with the ModSecurity module into a nice looking HTML visualization. An example output of the tool as well as the software itself can be found at CoreRules2Html!Preview: WebApplicationProfiler 5/26/08Yet another hopefully useful tools is available. The WebApplicationProfiler tries to extract the static components of your application (resources, parameters, allowed methods,...). The key idea is to generate a simple and easy to use XML description of your application. This can either displayed using the integrated editor or transformed to ModSecurity rules by an XSLT tranformation. See WebApplicationProfiler for details...
$Id: index.jsp 38 2008-07-14 12:26:12Z chris $
|
