SpiderLabs Blog

Improvements to the Servlet specification

August 09, 2005 SpiderLabs Anterior

A while ago Greg Murray (the Servlet specification lead) asked for ideas for Servlet improvements. ...

Web Security Improvement Ideas

July 13, 2005 SpiderLabs Anterior

I have been keeping a list of web security improvement ideas for some time now. It's a list that ...

PHP chapter from Apache Security available for download

June 13, 2005 SpiderLabs Anterior

I have made the PHP chapter from Apache Security available for free download. When we made the ...

More on impedance mismatch

June 10, 2005 SpiderLabs Anterior

Recently there has been increased interest in the impedance mismatch problem, which occurs between ...

The future of web application firewalls

June 08, 2005 SpiderLabs Anterior

It always pays off to visit Richard Bejtlich's blog once in a while. (Or, even better, subscribe to ...

External Web Application Protection: Impedance Mismatch

March 10, 2005 SpiderLabs Anterior

Web application firewalls have a difficult job trying to make sense of data that passes by, without ...

Mod_security 1.8.7RC2 available

March 01, 2005 SpiderLabs Anterior

Second release candidate for mod_security 1.8.7 is available for download. I performed a detailed ...

ModSecurity for Java Milestone 3 now available

January 06, 2005 SpiderLabs Anterior

I have just released an updated version of ModSecurity for Java. This version implements the core ...

ModSecurity audit log to MySQL parser

April 15, 2004 SpiderLabs Anterior

Dhillon A. K. has written a new article about mod_security. The article is essentially a brief ...

Converted Snort rules to mod_security rules

October 08, 2003 SpiderLabs Anterior

I wrote a simple Perl script to convert Snort rules to mod_security rules and published the ...

Enhanced rules now available

September 23, 2003 SpiderLabs Anterior

The last change before the 1.7 release is now in the CVS. I have refactored the code dealing with ...

Masking your web server

September 15, 2003 SpiderLabs Anterior

There is a new feature available in the CVS, and it allows you to mask your web server and instruct ...

Added Unicode encoding validation

July 24, 2003 SpiderLabs Anterior

I've just committed the Unicode validation feature to the CVS. It is a very good thing to have if ...

URL decoding bug fixed

June 06, 2003 SpiderLabs Anterior

I just fixed a small bug in the URL decoding routine. Apparently, I forgot to add code to convert ...

Porting mod_security to Windows

June 04, 2003 SpiderLabs Anterior

With module functioning well on Unix-based platforms I decided to start with the Windows port. The ...

Experiencing a security breach?

Experiencing a security breach?

BLOGS

SpiderLabs Blog

Improvements to the Servlet specification

Web Security Improvement Ideas

PHP chapter from Apache Security available for download

More on impedance mismatch

The future of web application firewalls

External Web Application Protection: Impedance Mismatch

Mod_security 1.8.7RC2 available

ModSecurity for Java Milestone 3 now available

ModSecurity audit log to MySQL parser

Converted Snort rules to mod_security rules

Enhanced rules now available

Masking your web server

Added Unicode encoding validation

URL decoding bug fixed

Porting mod_security to Windows

Stay Informed

Sign up to receive the latest security news and trends straight to your inbox from Trustwave.