F5 Rules for AWS WAF
80 TopicsF5 Rules for AWS WAF
Good Morning, F5 support case 00650702 redirected here, we are subscribers of "AWS WAF - Web Exploits Rules by F5", this is under AWS Classic WAF - WebAcl. Our App Sec team is requesting list of protections under "AWS WAF - Web Exploits Rules by F5", can you help with list of protections under "AWS WAF - Web Exploits Rules by F5". Thank You.Solved64Views0likes2CommentsF5 x-chunk
sorry for the simplicity in this but i keep getting a 'http request body unparsed payload'. it's a user file upload. multiple types, pdf zip txt. theres no content type in the post and i tried a do nothing for multipart/form-data under the uri. there's nothing that should be conflicting w it. the xchunk is identifying the file type uploaded but theres not much to go off of. i just have a list of individual attack sigs to tune for on the user end. kinda lost. any help is appreciated TIA24Views0likes1CommentF5 Rules for AWS WAF - CVE-2021-22118 & CVE-2016-1000027
Hello, We're checking in the AWS marketplace for theF5 Rules for AWS WAF - Common Vulnerabilities and Exposures (CVE) Rulesand want to check if the following CVEs are covered by this rule set? CVE-2021-22118: Local Privilege Escalation within Spring Webflux Multipart Request Handling CVE-2016-1000027:Pivotal Spring Framework through 5.3.16 suffers from a potential remote code execution (RCE) issue if used for Java deserialization of untrusted data. Thanks.Solved2.3KViews0likes18CommentsF5 Rules for AWS WAF CVE-2021-40438
Hello, We're checking in the AWS marketplace for theF5 Rules for AWS WAF - Common Vulnerabilities and Exposures (CVE) Rulesand want to check ifCVE-2021-40438 is covered by this rule set? https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-40438327Views1like4CommentsPossible False Positive for OWASP rule in AWS - div_tag_parameter_AllQueryArguments_Body
We have a WordPress website and we just recently enabled the F5-OWASP_Managed Rule set in AWS. I noticed we had had over 50 requests blocked from users within our network. It looks like they were attempting to save the page among other valid type requests. The rule that is blocking the request is "rule_div_tag__behavior__Parameter__AllQueryArguments_Body" I've currently set the blocking rule to "Override to Allow" but I would prefer to not have this rule set to this, but I do not wish to have our site editors blocked from making valid site updates. I have a downloaded CSV from Cloudwatch of all the blocked requests with the parameters, etc.635Views0likes1CommentF5 Rules for AWS WAF - API Security Rules (Requesting a Trial)
Hi, We have deployed the AWS WAF in our AWS account and we would like to enable and evaluate the API Security Ruleset available in the AWS Marketplace on a SOAP API environment. We would like to know whether it is possible to evaluate the rules before purchasing by requesting a trial for a short time period so that we can evaluate the efficacy of the rules against targeted attacks towards SOAP APIs. This will be greatly helpful to us in making purchasing decisions.465Views0likes2CommentsAWS WAF Rule F5-OWASP_Managed custom response
Hi! We are using AWS WAF managed rule 'F5-OWASP_Managed'. I would like to create a WAF custom response when requests are blocked by this rule. To do so I need to change the rule from block to count, and capture labels assigned by this rule in a WAF custom rule. When looking into the AWS WAF console I cannot see any labels assigned to this WAF rule? Can somebody please tell me if this rule assigns labels, and, which one? Thanks874Views0likes3Comments