Ec2metadatassrf_body5/4/2023 Inspects for requests whose query arguments contain system file extensions that areĪwswaf:managed:aws:core-rule-set:RestrictedExtensions_QueryArguments Example patterns includeĪwswaf:managed:aws:core-rule-set:RestrictedExtensions_URIPath Inspects for requests whose URI paths contain system file extensions that are For more information, seeĪwswaf:managed:aws:core-rule-set:GenericLFI_Body This rule uses the Continue option for oversize content handling. For CloudFront web ACLs only, you can increase it up to 64 KB in your web ACL configuration. The limit is 8 KB for regional web ACLs and 16 KB for CloudFront web ACLs. This rule only inspects the request body up the body size limit for the web ACL. Path traversal attempts using techniques likeĪwswaf:managed:aws:core-rule-set:GenericLFI_URIPath Include path traversal attempts using techniquesĪwswaf:managed:aws:core-rule-set:GenericLFI_QueryArguments Inspects for the presence of Local File Inclusion Inspects for attempts to exfiltrate Amazon EC2 metadataĪwswaf:managed:aws:core-rule-set:EC2MetaDataSSRF_URIPathĪwswaf:managed:aws:core-rule-set:EC2MetaDataSSRF_QueryArguments For more information, seeĪwswaf:managed:aws:core-rule-set:EC2MetaDataSSRF_Cookie This rule only inspects the first 8 KB of the request cookies or the first 200 cookies, whichever limit is reached first, and it uses the Continue option for oversize content handling.
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |