Web applications by embedding URLs that contain IPv4Īddresses. Inspects the values of all query parameters forĪttempts to exploit RFI (Remote File Inclusion) in Inspects for requests whose query arguments contain system file extensions that areĪwswaf:managed:aws:core-rule-set:RestrictedExtensions_QueryArguments Example patterns includeĪwswaf:managed:aws:core-rule-set:RestrictedExtensions_URIPath Inspects for requests whose URI paths contain system file extensions that are For more information, seeĪwswaf:managed:aws:core-rule-set:GenericLFI_Body This rule uses the Continue option for oversize content handling. For CloudFront web ACLs only, you can increase it up to 64 KB in your web ACL configuration. The limit is 8 KB for regional web ACLs and 16 KB for CloudFront web ACLs. This rule only inspects the request body up the body size limit for the web ACL. Path traversal attempts using techniques likeĪwswaf:managed:aws:core-rule-set:GenericLFI_URIPath
Include path traversal attempts using techniquesĪwswaf:managed:aws:core-rule-set:GenericLFI_QueryArguments Inspects for the presence of Local File Inclusion Inspects for attempts to exfiltrate Amazon EC2 metadataĪwswaf:managed:aws:core-rule-set:EC2MetaDataSSRF_URIPathĪwswaf:managed:aws:core-rule-set:EC2MetaDataSSRF_QueryArguments
For more information, seeĪwswaf:managed:aws:core-rule-set:EC2MetaDataSSRF_Cookie This rule only inspects the first 8 KB of the request cookies or the first 200 cookies, whichever limit is reached first, and it uses the Continue option for oversize content handling.
0 kommentar(er)
