Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/jul10l1r4/modsec-vulneravel

Nginx + Modsecurity + Má configuração = Nego invadindo
https://github.com/jul10l1r4/modsec-vulneravel

docker-image modsecurity vulnerable xss-poc

Last synced: 26 days ago
JSON representation

Nginx + Modsecurity + Má configuração = Nego invadindo

Host: GitHub
URL: https://github.com/jul10l1r4/modsec-vulneravel
Owner: Jul10l1r4
Created: 2019-10-09T00:59:46.000Z (over 5 years ago)
Default Branch: master
Last Pushed: 2019-10-17T22:44:19.000Z (over 5 years ago)
Last Synced: 2024-11-19T19:00:13.561Z (3 months ago)
Topics: docker-image, modsecurity, vulnerable, xss-poc
Language: Shell
Homepage: https://medium.com/@vaultcybersec/roubo-de-sessao-bypassando-waf-xss-roubando-sessao-com-1-click-a76d31d93753
Size: 10.7 KB
Stars: 1
Watchers: 2
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

![](https://miro.medium.com/max/1920/1*oE4F2qAYiCvhiCRIRZaQZA.png)
# Aplicação vulneravel
O objetivo dessa imagem é apresentar a importancia de usar configurações voltadas a segurança de forma consciente, e não configurar-lo na mão resolvendo falhas
de segurança como se fosse apenas um bug.

# Imagem
* Ambiente Node (Com Express)
* Nginx compilado com o Modsecurity
* Regra sebosa de XSS (Que será explorada)
* Esse README bonito