Home page logo

nmap-dev logo Nmap Development mailing list archives

Re: http-waf-detect - Script to detect WAF/IDS/IPS solutions
From: Paulino Calderon <paulino () calderonpale com>
Date: Thu, 16 Jun 2011 11:55:34 -0700

On 06/15/2011 11:59 PM, Richard Sammet wrote:
Hey Paulino,

thanks for sharing this. Just one thing you should change in the
description: IDS Systems or IPS Systems which are only in detection
mode are not going to be identified by the script. The script can only
identify solutions which are actively altering the traffic.

Just to point this out before ppl start complaining about it ;)

Thanks for the feedback, I'll add this note before commiting.

So far it has been tested and works correctly against:
* Imperva Web Firewall
* Barracuda Web Firewall
* dotDefender
* Apache Modsecurity


Paulino Calderón Pale
Web: http://calderonpale.com
Twitter: http://www.twitter.com/paulinocaIderon

Sent through the nmap-dev mailing list
Archived at http://seclists.org/nmap-dev/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]