Skip to content

Instantly share code, notes, and snippets.

View zimmerle's full-sized avatar
☠️
Doing something cool :)

Felipe Zimmerle zimmerle

☠️
Doing something cool :)
301 followers · 65 following
View GitHub Profile
@zimmerle
zimmerle / gist:23d5280e58a338fa97799c43ec4800ab
Created January 28, 2019 21:12
;rps_avg,latency_avg,workers_utime_avg,revision,date,commit_log
529.30,98.20,978.30,dc78c0e180d09aa1b2f0ffad1a8d6967e69f984f,2019-01-21 14:44:31 -0300,Fix: Extra whitespace in some configuration directives causing error
502.17,103.73,978.70,df3c3f62b74eb5d8b6e0ac89aeb703335675ca31,2019-01-18 10:48:04 -0300,Cosmetics: coding style
464.73,113.22,977.90,ad28de4f14e47d3c6b479a1d043f2bd0b7a17706,2019-01-17 01:55:17 +0300,Refactor regex code
499.59,105.01,978.60,e0a0fa05cc6a1419f5e7f5085af50ec5b9f1915f,2019-01-14 16:29:48 -0300,CHANGES: Info on #2002
541.67,96.22,982.70,ae020763402c1d4044b6565654f508370a3d58a6,2019-01-14 09:04:45 +0300,Fixed buffer overflow in Utils::Md5::hexdigest()
540.06,96.31,981.60,3c1fba278c14fe9b63cff80a3ae32df82ba042ac,2019-01-08 10:35:33 -0300,CHANGES: Adds info about #1990
509.50,102.28,980.10,7c19ffea64a78f9896dfdad43be195655469e52b,2018-12-25 18:50:24 +0300,Implemented merge_bodylimitaction_value() for BodyLimitAction
530.70,98.01,980.20,3c41751edac579d8d930f91f718dab46f90de3e5,2018-12-
@zimmerle
zimmerle / gist:2e047fb9f60bce10a5596d1d2995bac4
Created June 28, 2018 19:19
[
{
"enabled":1,
"version_min":300000,
"title":"ctl:requestBodyProcessor=URLENCODED",
"client":{
"ip":"200.249.12.31",
"port":123
},
"server":{
@zimmerle
zimmerle / gist:7cd25538a7f2a1b7fa977d4b0b8dc5e3
Created June 26, 2018 19:10
[
{
"enabled": 1,
"version_min": 209000,
"version_max": -1,
"title": "Should libmodsec pass action clear m_actions?",
"url": "https:\/\/github.com\/SpiderLabs\/ModSecurity\/issues\/1767",
"client": {
"ip": "200.249.12.31",
"port": 2313
@zimmerle
zimmerle / gist:e90054b7630099e7aceceb8f0431f754
Created June 25, 2018 20:30
Testing ModSecurity speed while loading the rules.
/*
* ModSecurity, http://www.modsecurity.org/
* Copyright (c) 2018 Trustwave Holdings, Inc. (http://www.trustwave.com/)
*
* You may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* If any of the files related to licensing are missing or if you have any
@zimmerle
zimmerle / gist:051978cb61950d244bbd6edfa3bdf397
Created April 24, 2018 13:50
original output
TESTS+=test/test-cases/regression/issue-1591.json
TESTS+=test/test-cases/regression/variable-RESPONSE_HEADERS.json
TESTS+=test/test-cases/regression/config-include.json
TESTS+=test/test-cases/regression/variable-WEBSERVER_ERROR_LOG.json
TESTS+=test/test-cases/regression/operator-fuzzyhash.json
TESTS+=test/test-cases/regression/config-xml_external_entity.json
TESTS+=test/test-cases/regression/transformation-none.json
TESTS+=test/test-cases/regression/action-allow.json
TESTS+=test/test-cases/regression/action-ctl_rule_remove_by_tag.json
TESTS+=test/test-cases/regression/operator-verifycc.json
@zimmerle
zimmerle / gist:b8be2a60fbf4efe0670fc27beb5ab69d
Last active April 24, 2018 13:49
confused to be read
TESTS=test/test-cases/regression/issue-1591.json test/test-cases/regression/variable-RESPONSE_HEADERS.json test/test-cases/regression/config-include.json test/test-cases/regression/variable-WEBSERVER_ERROR_LOG.json test/test-cases/regression/operator-fuzzyhash.json test/test-cases/regression/config-xml_external_entity.json test/test-cases/regression/transformation-none.json test/test-cases/regression/action-allow.json test/test-cases/regression/action-ctl_rule_remove_by_tag.json test/test-cases/regression/operator-verifycc.json test/test-cases/regression/variable-variation-exclusion.json test/test-cases/regression/variable-MULTIPART_UNMATCHED_BOUNDARY.json test/test-cases/regression/action-ctl_rule_remove_target_by_id.json test/test-cases/regression/variable-USERID.json test/test-cases/regression/variable-PATH_INFO.json test/test-cases/regression/variable-STATUS.json test/test-cases/regression/operator-detectsqli.json test/test-cases/regression/collection-case-insensitive.json test/test-cases/regression/confi
@zimmerle
zimmerle / gist:634d14fe55c64aa786a4ac5954d547cf
Created January 11, 2018 16:54
From b129d1fb16a2a9873ee56125d2dd51cf7f5a3c9f Mon Sep 17 00:00:00 2001
From: Felipe Zimmerle <fcosta@trustwave.com>
Date: Thu, 11 Jan 2018 13:48:38 -0300
Subject: [PATCH] Uses MULTIPART_MISSING_SEMICOLON instead of
MULTIPART_SEMICOLON_MISSING
MULTIPART_SEMICOLON_MISSING does not exists in SecLang nor in ModSec.
---
rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
@zimmerle
zimmerle / gist:59dbc60604454e99fbf1d7279ae8e12d
Created January 8, 2018 14:30
([^%\']|(\\\')|([^\\\\]+\\\%\{)|(%[^{]))+
@zimmerle
zimmerle / gist:64f6ecc69edd06dec00c509f1219691b
Created January 3, 2018 13:04
.file "orig.cc"
.section .rodata
.type _ZStL19piecewise_construct, @object
.size _ZStL19piecewise_construct, 1
_ZStL19piecewise_construct:
.zero 1
.local _ZStL8__ioinit
.comm _ZStL8__ioinit,1,1
.LC0:
.string "%{"
@zimmerle
zimmerle / gist:12b063251a38ffd31c7d2755bb7e1b73
Created January 3, 2018 13:02
.file "vlad.cc"
.section .rodata
.type _ZStL19piecewise_construct, @object
.size _ZStL19piecewise_construct, 1
_ZStL19piecewise_construct:
.zero 1
.local _ZStL8__ioinit
.comm _ZStL8__ioinit,1,1
.LC0:
.string "%{"