Forum Discussion

Altostratus

Dec 14, 2022

Wildcard Parameter signature attack

Hi, I have a wildcard * Parameter and it's not found signature attack. Tried to make an SQL injection with only the wildcard Parameter and the request didn't show the violation, but when adding the...

asm

security

Clk
Dec 15, 2022
Thank you for your answers.
The problem was in the Parameter data type, it was in Email type ( i figured that this is the default entity when new policy is created).
In Email type there's no signature enforce.

Omar2

Cirrus

Dec 14, 2022

Hello CLK,

Is the wildcard Parameter not blocking signature attack >>> No

just make sure that the policy was in blocking mode, Wildcard Parameter was not in staging mode and finally that your attack signatures also were not in staging mode.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Wildcard Parameter signature attack

Recent Discussions

Client SSL Profile set to Require Client Certificate breaks RDP in APM

TS Declarations for DNS

APM file and registry key date check 8 days old

SSL bridging without SSL proxy forward

Should config via cli rather than gui?

Related Content

WildCard Parameters

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

F5 ASM/AWAF Remote File Inclusion signatures do not block http:// or https:// in the form parameter

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Brute Force protection for single parameter like OTP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS