External/patterns
1
0
Fork 0
mirror of https://github.com/fabriziosalmi/patterns.git synced 2025-12-17 09:45:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
patterns/waf_patterns/nginx
History
github-actions[bot] c2306aca23 Update: [Fri Feb 28 10:03:59 UTC 2025]
2025-02-28 10:03:59 +00:00
..
attack.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
bots.conf
Update: [Thu Feb 27 01:41:26 UTC 2025]
2025-02-27 01:41:26 +00:00
correlation.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
enforcement.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
evaluation.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
exceptions.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
fixation.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
generic.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
iis.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
initialization.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
java.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
leakages.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
php.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
rce.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
README.md
feat: Generate Nginx WAF config with separate map and rule files
2025-01-28 22:41:54 +01:00
rfi.conf
Update: [Sun Jan 26 00:25:41 UTC 2025]
2025-01-26 00:25:41 +00:00
shells.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
sql.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
sqli.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
waf_maps.conf
Update: [Fri Feb 28 10:03:59 UTC 2025]
2025-02-28 10:03:59 +00:00
waf_rules.conf
Update: [Fri Feb 28 10:03:59 UTC 2025]
2025-02-28 10:03:59 +00:00
xss.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00

README.md

Nginx WAF Configuration

This directory contains Nginx WAF configuration files generated from OWASP rules. You can include these files in your existing Nginx configuration to enhance security.

Usage

  1. Include the waf_maps.conf file in your nginx.conf inside the http block: 
    http {
    include /path/to/waf_patterns/nginx/waf_maps.conf;
    # ... other http configurations ...
}
  2. Include the waf_rules.conf file in your server block: 
    server {
    # ... other server configurations ...
    include /path/to/waf_patterns/nginx/waf_rules.conf;
}
  3. Reload Nginx to apply the changes: 
    sudo nginx -t && sudo systemctl reload nginx

Notes

  • The rules use map directives for efficient pattern matching. The maps are defined in the waf_maps.conf file.
  • The rules (if statements) are defined in the waf_rules.conf file.
  • Blocked requests return a 403 Forbidden response by default.
  • You can enable logging for blocked requests by uncommenting the access_log line.