Forum Discussion

Nimbostratus

Jan 31, 2022

Analyzing F5 OWASP rule matches

I am seeing lots of requests that match the following rules: rule_XSS_script_tag__Parameter__AllQueryArguments_Body rule_div_tag__behavior__Parameter__AllQueryArguments_Body rule_chmod_execution_a...

cloud

F5 Rules for AWS WAF

tboemker

Nimbostratus

Jan 31, 2022

These rules are part of the F5 OWASP managed rule set. That's all the documentation I have.

JRahm

Admin

Jan 31, 2022

URL for the product? Want to make sure we're looking at the same thing. Don't have much exposure to the aws waf f5 rules.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Analyzing F5 OWASP rule matches

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

AST Configuration Assistance

F5 HA deployment in Azure using Azure Load Balancer

WAF Block Request

Protocol Profiles in LTM Chains

Illegal Request in Learning Suggestion for 200 OK response

Related Content

Introduction to OWASP API Security Top 10 2023

OWASP 2025 conference, KEV and RCE.

OWASP Automated Threats - OAT-001 Carding

OWASP Automated Threats - Credential Stuffing (OAT-008)

Mitigating OWASP API Security Top 10 Risks – 2023 using F5 BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS