WAF generic detection signatures

Question

Hi All,I found something strange with the signature set&nbsp;Generic Detection Signatures (High/Medium Accuracy) assigned to the ASM policies.This signature sets claims to include the following systems.Systems:&nbsp;General Database,&nbsp;Various systems,&nbsp;System Independent,&nbsp;JavaScriptHowever when I compare the total of signatures of each system in the attack signature list available on the system it does not match the total of the signatures assigned to the ASM policy.For example2556 System Independent 1932 on ASM policy24 Various systems same on ASM policy708 general database 391 on ASM policyStrange thing that for example signature&nbsp;200022004 was assigned to the ASM policy but after live update of the signatures not anymore.Could someone clarify the content of the generic signature set and why arent all the signatures of sytem independent, various systems and general database included?&nbsp;

marvin · Answer

same for signature&nbsp;200001115

marvin · Answer

I updated from&nbsp;ASM-AttackSignatures_20180508_142725.im and updated to&nbsp;ASM-AttackSignatures_20220421_112652.im

marvin · Answer

.

Forum Discussion

WAF generic detection signatures

Recent Discussions

Can you set Kerberos AAA server via session variable?

HTML Code injection Not detected by ASM

What will be happen to live and existing connections when failover HA BIG IP active-standby

SSL Offload and remove FQDN

High CPU utilization (100%).

Related Content

SSL Orchestrator Advanced Use Cases: Detecting Generative AI

JA4 Part 2: Detecting and Mitigating Based on Dynamic JA4 Reputation

Secure, Deliver and Optimize Your Modern Generative AI Apps with F5

Securing Generative AI: Defending the Future of Innovation and Creativity

Generate API SDK for F5 Distributed Cloud

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS