I am getting all violations from the policy except "Attack signature detected". Are there any way to get "Attack signature detected" violation with ASM->Policy->get_violation_flags() or any other method?
I haven't used iControl with ASM before, but maybe it looks like you can set an Attack Sig via iControl on an Object parameter. I don't see anything in the iControl ASM wiki for the attack sigs that would be applied to headers or URLs though. Nor do I see any references to attack sig sets (not the updates of the global attack signatures but the collection of signatures that can be assigned to a policy in groups). Anyone have ideas on this?