# Nginx WAF rules for SHELLS
# Automatically generated from OWASP rules.
# Include this file in your server or location block.
map $request_uri $waf_block_shells {
default 0;
"~*B4TM4N SH3LL.*" 1;
"~*^nnRu24PostWebShell -" 1;
"~*^<title>PHP Web Shellrnrnrn " 1;
"~*lama's'hell v. [0-9.]+" 1;
"~*^ :: b374k m1n1 [0-9.]+ ::" 1;
"~*@contains webadmin.php
" 1;
"~*Symlink_Sa [0-9.]+" 1;
"~*NGHshell [0-9.]+ by Cr4shn$" 1;
"~*@contains punkholicshell" 1;
"~*CasuS [0-9.]+ by MafiABoY" 1;
"~*^n n azrail [0-9.]+ by C-W-M" 1;
"~*^rnrnGRP WebShell [0-9.]+" 1;
"~*<title>SimAttacker - (?:Version|Vrsion) : [0-9.]+ -" 1;
"~*<title>s72 Shell v[0-9.]+ Codinf by Cr@zy_King" 1;
"~*(r57 Shell Version [0-9.]+|r57 shell)" 1;
"~*^ nnnng00nshell v[0-9.]+" 1;
"~*<title>Mini Shell.*Developed By LameHacker" 1;
"~*^rnrnrnPhpSpy Ver [0-9]+" 1;
"~*>SmEvK_PaThAn Shell v[0-9]+ coded by n[ ]+n[ ]+lostDC -" 1;
"~*^<html>n<title>.*? ~ Shell Inn