Meta tags:
description= Let’s Make False Positives Extinct!;
author= netnea;
Headings (most frequently used words):
rex, the, false, positives, your, integration, fangs, for, you, arms, rule, exclusions, crs, let, make, extinct, suite, features, identifies, writes, data, premises, full, from, experts, knows, nitty, gritty, details, ready, to, extinguish, parsing,
Text of the page (most frequently used words):
the (38), rex (33), you (20), and (15), your (15), rule (13), false (11), positives (11), crs (11), waf (9), with (7), modsecurity (7), for (6), when (6), into (6), this (5), exclusions (5), arms (5), german (4), more (4), get (4), knows (4), suite (4), will (4), #exclusion (4), integration (4), fangs (4), let (3), pci (3), dss (3), reasons (3), about (3), setup (3), that (3), are (3), alerts (3), address (3), all (3), make (2), extinct (2), english (2), what (2), heart (2), since (2), writing (2), can (2), lead (2), but (2), there (2), how (2), deal (2), netnea (2), has (2), christian (2), folini (2), owasp (2), use (2), they (2), many (2), from (2), configuration (2), developers (2), without (2), allows (2), full (2), alert (2), gui (2), home (2), internet (2), individual (2), these (2), four (2), them (2), supports (2), wizard (2), style (2), day (2), where (2), users (2), out (2), haystack (2), intuitive (2), features (2), version (2), call, action, included, infos, touch, ready, extinguish, important, total, bypass, disable, wrong, accident, 949110, side, nothing, worry, warn, too, close, quicksand, instead, tell, situation, appropriately, nitty, gritty, details, been, doing, 2005, our, wrote, 2nd, edition, handbook, meanwhile, grown, one, public, faces, core, set, project, most, people, speak, also, powers, than, half, commercial, market, natural, product, years, practical, experts, advanced, jump, right, within, logviewer, feed, pipeline, afterwards, gives, seamless, therefore, enables, tune, away, extensive, understanding, syntax, asking, network, security, team, support, toolset, successfully, integrate, devops, methodology, minimal, copy, message, its, thing, then, paste, output, back, everything, runs, container, server, cloud, phone, not, even, connection, required, data, premises, instructs, skip, context, assistant, canonical, types, two, really, hard, write, hand, crucial, step, helps, create, tweak, needs, graphical, interface, writes, service, exposed, constantly, under, attack, produce, huge, amount, every, interleaved, attacks, might, mis, identified, legitimate, attackers, need, handle, unblock, singling, like, searching, needles, applies, series, filters, order, minimize, size, default, reduces, triage, volume, over, often, identifies, created, special, cases, parses, variety, messages, across, multiple, versions, parsing, integrates, easily, existing, log, viewer, setups, classic, methods, single, click, guides, user, via, singles, large, haystacks, through, elaborate, filtering, process, wish, consultation, demo, quote, did, know, relevant, give, five, good, deploy, organisation, learn, buy, read, modules, biggest, challenge, running, strict, web, application, firewall, enterprise, ruin, enters, scene, administrators, identify, way, started, contact,
Text of the page (random words):
c rex netnea home contact get started let s make false positives extinct false positives are the biggest challenge when running a strict web application firewall in an enterprise setup deal with them or they will ruin your day this is where c rex enters the scene the c rex suite allows administrators and developers to identify and address modsecurity owasp crs false positives in an intuitive way read more about c rex modules and features learn what you get when you buy c rex we give you five good reasons to deploy c rex as an organisation german version did you know that c rex is relevant for pci dss 4 0 1 german version do you wish a consultation a demo or a quote c rex suite features c rex fangs c rex fangs singles out false positives in large haystacks through an elaborate filtering process c rex arms c rex arms guides the user to address individual false positives via an intuitive wizard style gui rule exclusions c rex supports all four classic rule exclusion methods with a single click integration c rex integrates easily with existing log viewer and ci cd setups parsing c rex parses the full variety of all modsecurity alert messages across multiple versions crs integration created by crs co lead christian folini c rex knows crs by heart and it knows how to address all special cases c rex fangs identifies the false positives for you a service exposed on the internet is constantly under attack the waf will produce a huge amount of alerts every day interleaved with the attacks might be false positives where the waf mis identified your legitimate users as attackers you need to handle these false positives to unblock your users but singling out the alerts is like searching needles in a haystack c rex fangs applies series of filters to the alerts in order to minimize the size of the haystack by default this reduces the triage volume by over 90 often 99 c rex arms writes the rule exclusions for you a rule exclusion instructs the waf to skip a rule in an individual context and c rex arms is your assistant when writing these rule exclusions there are four canonical types of modsecurity rule exclusions and two of them are really hard to write by hand c rex arms supports this crucial step it helps you create a rule exclusion that you can tweak to your needs with a wizard style graphical interface your data your premises in a minimal setup you copy the alert message into the gui let c rex do its thing and then you paste the output back into your waf configuration everything runs in a container on your server no cloud no phone home not even an internet connection is required full integration in a more advanced setup you jump into c rex right from within your logviewer and you feed the rule exclusion into your ci cd pipeline afterwards this gives you a seamless integration of the waf configuration and the ci cd it therefore enables your developers to tune away false positives without an extensive understanding of modsecurity syntax and without asking the waf or network security team for support the c rex suite is the toolset that allows you to successfully integrate the waf into your devops methodology from the crs experts netnea has been doing modsecurity since 2005 and our christian folini wrote the 2nd edition of the modsecurity handbook meanwhile he has grown into one of the public faces of the owasp core rule set project crs most people use crs when they speak of crs and crs also powers more than half of the commercial waf market c rex is a natural product of many many years of practical modsecurity use c rex knows the nitty gritty details c rex knows crs by heart this is important since writing crs rule exclusions can lead to a total waf bypass when you disable the wrong rule by accident rule id 949110 but with the c rex suite by your side there is nothing to worry about c rex will warn you when you get too close to the quicksand instead it will tell you how to deal with the situation appropriately ready to extinguish your false positives get in touch about us more infos what s included 5 reasons for c rex english 5 reasons for c rex german pci dss and c rex english pci dss and c rex german call to action let s make false positives extinct
|