SpiderLabs Blog

February 25, 2006 | SpiderLabs Anterior

I spent some time this week at the EUSecWest conference here in London. ...

January 26, 2006 | SpiderLabs Anterior

(IN)SECURE Magazine Issue 1.5 has just been published. I wrote the cover story, ...

January 09, 2006 | SpiderLabs Anterior

If you are a ModSecurity user you may have noticed that I am distributing ...

December 23, 2005 | SpiderLabs Anterior

Some ModSecurity users like to run really large rule sets, where the number of ...

December 02, 2005 | SpiderLabs Anterior

My article ("What's New in ModSecurity"), which describes the most important ...

November 28, 2005 | SpiderLabs Anterior

One of the major improvements in the next release of ModSecurity (v2.0) will be ...

September 21, 2005 | SpiderLabs Anterior

A small number of new features made it into 1.9 at the very last minute. ...

September 13, 2005 | SpiderLabs Anterior

A new beta version of the Apache web server has been released. This release is ...

September 08, 2005 | SpiderLabs Anterior

You may have noticed it's been a while since ModSecurity has had a major ...

August 19, 2005 | SpiderLabs Anterior

This version implements the final batch of major improvements to the 1.9.x ...

August 08, 2005 | SpiderLabs Anterior

A while ago Greg Murray (the Servlet specification lead) asked for ideas for ...

July 12, 2005 | SpiderLabs Anterior

I have been keeping a list of web security improvement ideas for some time now. ...

June 13, 2005 | SpiderLabs Anterior

I have made the PHP chapter from Apache Security available for free download. ...

June 10, 2005 | SpiderLabs Anterior

Recently there has been increased interest in the impedance mismatch problem, ...

June 07, 2005 | SpiderLabs Anterior

It always pays off to visit Richard Bejtlich's blog once in a while. (Or, even ...

March 09, 2005 | SpiderLabs Anterior

Web application firewalls have a difficult job trying to make sense of data ...

February 28, 2005 | SpiderLabs Anterior

Second release candidate for mod_security 1.8.7 is available for download. I ...

January 05, 2005 | SpiderLabs Anterior

I have just released an updated version of ModSecurity for Java. This version ...

December 22, 2004 | Admin

I have been asked to design a mod_security rule to protect sites from the ...

September 03, 2004 | Trustwave SpiderLabs

For some time now I've been working on a portable web firewall rule format as ...

July 29, 2004 | Admin

They've been very quiet for a number of months and now you know what they have ...

June 16, 2004 | Admin

Application Vulnerability Description Language (AVDL) has been approved as an ...

May 04, 2004 | Admin

O'Reilly have a new book out: Network Security Hacks. It is a really good book ...

April 15, 2004 | SpiderLabs Anterior

Dhillon A. K. has written a new article about mod_security. The article is ...

April 08, 2004 | Admin

Last night I updated the code that provides the internal chroot functionality ...

February 26, 2004 | Admin

A new organisation has just been announced: the Web Application Security ...

February 07, 2004 | Admin

This morning I got news of AVDL becoming a Committee Draft; you can get it ...

February 04, 2004 | Admin

I am very happy to announce that I've been granted a free JIRA license to use ...