# Nginx WAF rules for SHELLS
# Automatically generated from OWASP rules.
# Include this file in your server or location block.
map $request_uri $waf_block_shells {
default 0;
"~*Symlink_Sa [0-9.]+" 1;
"~*^n n azrail [0-9.]+ by C-W-M" 1;
"~*s72 Shell v[0-9.]+ Codinf by Cr@zy_King" 1;
"~*^ nnnng00nshell v[0-9.]+" 1;
"~*^<html>rn<head>rn<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">rn<title>PhpSpy Ver [0-9]+" 1;
"~*SimAttacker - (?:Version|Vrsion) : [0-9.]+ -" 1;
"~*@contains <title>punkholicshell" 1;
"~*NGHshell [0-9.]+ by Cr4shn$" 1;
"~*CasuS [0-9.]+ by MafiABoY" 1;
"~*lama's'hell v. [0-9.]+" 1;
"~*^ :: b374k m1n1 [0-9.]+ ::" 1;
"~*^nnRu24PostWebShell -" 1;
"~*^ *<html>n[ ]+<head>n[ ]+<title>lostDC -" 1;
"~*(<title>r57 Shell Version [0-9.]+|r57 shell)" 1;
"~*^nnInput command :
n