Defend Your Web Apps for Free with ModSecurity
Everyone uses web apps these days. They're so easy to access, you can use them on your phone! But their openness and accessibility also means they're constantly being probed for vulnerabilities by web scanners. In order to avoid being the next company to go through an expensive data breach, you need a WAF!
This course will go through the process of protecting a generic web application using the free, open source WAF called mod_security. We'll demonstrate how to run mod_security on a Linux host running the Apache web server and give an outline of the types of common attacks that are prevented with just an hour or two of work.
This course will cover the following topics:
- Intro - Web applications & WAFs
- mod_security - introduction & features
- Demonstration of mod_security on a Linux server
- Advanced usage & customisation