mirror/caddy-waf
1
0
Fork 0
mirror of https://github.com/fabriziosalmi/caddy-waf.git synced 2025-12-23 22:27:46 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
caddy-waf/rules/data-validation.json
fab 11360573b0 Create data-validation.json
2025-01-13 12:57:46 +01:00

54 lines
1.6 KiB
JSON
Raw Permalink Blame History

[
{
"id": "data-validation-int-overflow",
"phase": 2,
"pattern": "(?i)\\b(?:\\d{15,})\\b",
"targets": ["ARGS", "BODY", "HEADERS"],
"severity": "MEDIUM",
"action": "log",
"score": 4,
"description":"Log large numbers (Potential Integer Overflow)."
},
{
"id":"data-validation-invalid-email",
"phase": 2,
"pattern":"(?i)(?:[^@\\s]+@[^@\\s]+\\.[^@\\s]+){0,}",
"targets":["ARGS", "BODY", "HEADERS"],
"severity":"LOW",
"action":"log",
"score": 2,
"description":"Log data that does not look like valid email address."
},
{
"id":"data-validation-invalid-phone",
"phase":2,
"pattern":"(?i)(?:[^\\d\\+\\(\\)\\-\\s]){1,}",
"targets": ["ARGS", "BODY", "HEADERS"],
"severity":"LOW",
"action":"log",
"score": 2,
"description":"Log data that contains invalid chars in phone numbers"
},
{
"id":"data-validation-invalid-date",
"phase": 2,
"pattern":"(?i)(?:\\d{1,2}[\\/\\-]\\d{1,2}[\\/\\-]\\d{2,4}){0,}",
"targets":["ARGS","BODY", "HEADERS"],
"severity":"LOW",
"action":"log",
"score": 2,
"description":"Log data that does not look like valid date"
},
{
"id":"data-validation-long-string",
"phase": 2,
"pattern":"^.{5000,}$",
"targets":["ARGS","BODY"],
"severity":"LOW",
"action":"log",
"score": 2,
"description":"Log very long strings (can indicate data injection)"
}
]
Reference in New Issue View Git Blame Copy Permalink