tboemker
Jan 31, 2022Nimbostratus
Analyzing F5 OWASP rule matches
I am seeing lots of requests that match the following rules:
rule_XSS_script_tag__Parameter__AllQueryArguments_Body
rule_div_tag__behavior__Parameter__AllQueryArguments_Body
rule_chmod_execution_attempt__Parameter__AllQueryArguments_Body
rule_SQL_INJ_end_quote_UNION__Parameter__AllQueryArguments_Body
How can I determine why the requests are matching?
#F5 rules for AWS WAF