mirror of
https://github.com/fabriziosalmi/patterns.git
synced 2025-12-17 17:55:48 +00:00
47 lines
1.5 KiB
Python
47 lines
1.5 KiB
Python
|
import json
|
||
|
|
import os
|
||
|
|
from collections import defaultdict
|
||
|
|
|
||
|
|
# Paths
|
||
|
|
INPUT_FILE = "owasp_rules.json"
|
||
|
|
OUTPUT_DIR = "waf_patterns/apache"
|
||
|
|
|
||
|
|
# Ensure output directory exists
|
||
|
|
os.makedirs(OUTPUT_DIR, exist_ok=True)
|
||
|
|
|
||
|
|
def load_owasp_rules(file_path):
|
||
|
|
with open(file_path, "r") as f:
|
||
|
|
return json.load(f)
|
||
|
|
|
||
|
|
def generate_apache_waf(rules):
|
||
|
|
categorized_rules = defaultdict(list)
|
||
|
|
|
||
|
|
# Group rules by category
|
||
|
|
for rule in rules:
|
||
|
|
category = rule.get("category", "generic").lower()
|
||
|
|
categorized_rules[category].append(rule["pattern"])
|
||
|
|
|
||
|
|
# Convert to Apache conf files
|
||
|
|
for category, patterns in categorized_rules.items():
|
||
|
|
output_file = os.path.join(OUTPUT_DIR, f"{category}.conf")
|
||
|
|
|
||
|
|
with open(output_file, "w") as f:
|
||
|
|
f.write(f"# Apache ModSecurity rules for {category.upper()}\n")
|
||
|
|
f.write(f"SecRuleEngine On\n\n")
|
||
|
|
|
||
|
|
# Write rules as ModSecurity SecRules
|
||
|
|
for pattern in patterns:
|
||
|
|
rule = f"SecRule REQUEST_URI \"{pattern}\" \"id:1000,phase:1,deny,status:403,log,msg:'{category} attack detected'\"\n"
|
||
|
|
f.write(rule)
|
||
|
|
|
||
|
|
print(f"[+] Generated {output_file} ({len(patterns)} patterns)")
|
||
|
|
|
||
|
|
if __name__ == "__main__":
|
||
|
|
print("[*] Loading OWASP rules...")
|
||
|
|
owasp_rules = load_owasp_rules(INPUT_FILE)
|
||
|
|
|
||
|
|
print(f"[*] Generating Apache WAF configs from {len(owasp_rules)} rules...")
|
||
|
|
generate_apache_waf(owasp_rules)
|
||
|
|
|
||
|
|
print("[✔] Apache ModSecurity configurations generated successfully.")
|