Breach Security has released ModSecurity Core Rule Set (CRS) 2.0.
There are several changes compare to the previous one (version 1.6.1) :
And CRS 2.0 has the following new features :
- Fine Grained Policy
- Converted Snort Rules
- Anomaly Scoring Mode Option
- Correlated Events
- Updated Severity Ratings
- Creation of Global Collection
- Use of Block Action
And new rules for :
- “Possible HTTP Parameter Pollution Attack: Multiple Parameters with the same Name.”
- RFI detection.
- “Possibly malicious iframe tag in output”
Here is a glimpse of CRS 2.0 content :