LinuxTools Hacking

ModSecurity Framework FTW

ModSecurity Framework

ModSecurity Framework FTW


The ModSecurity Framework FTW project was launched by researchers from ModSecurity and Fastly to provide rigorous testing of WAF rules. It uses OWASP Core Ruleset V3 as a basis for testing rules on a WAF.

Each rule in the rule set is loaded into a YAML file that issues HTTP requests that trigger those rules.

Users can check the execution of the rule after the tests are issued to ensure that the expected response is received by an attack.


Installation ModSecurity Framework FTW

git clone

cd ftw

virtualenv env && source ./env/bin/activate

  • pip install -r requirements.txt
  • py.test -s -v test/ –ruledir=test/yaml

ModSecurity Framework FTW link Github

WAScan – Web Application Scanner

Install Varnish cache HTTP CentOS 7

Janusec Application Gateway



Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button