Response Filter Denial of Service (RFDoS): shut down a website by triggering WAF rule

blog.sicuranext.com

cross-posted to:
netsec

Response Filter Denial of Service (RFDoS): shut down a website by triggering WAF rule

blog.sicuranext.com

@bOtM to For [Blue|Purple] Teams in Cyber Defence • 7 months ago

cross-posted to:
netsec

TL;DR: Basically, if a target website is protected by a WAF using the OWASP Core Rule Set or Comodo Rule Set or Atomicorp Rule Set, you can send the string ORA-1234 or OracleDrive or ASL-CONFIG-FILE in a comment, product review, registration form, e-commerce order details, etc... to prevent the

The original post: /r/blueteamsec by /u/jnazario on 2024-05-15 15:11:37.

You must log in or register to comment.

Chat