YoVDO

Core Rule Set for the Masses: Lessons from Taming ModSecurity Rules at Massive Scale - 2017

Offered By: LASCON via YouTube

Tags

ModSecurity Courses Risk Management Courses Web Application Firewalls Courses

Course Description

Overview

Explore lessons learned from fine-tuning OWASP ModSecurity Core Rule Set (CRS) at massive scale in this 50-minute LASCON conference talk. Gain insights into the challenges and strategies for optimizing ModSecurity rules across thousands of servers and over 100 locations at Verizon Edgecast CDN. Learn about techniques to reduce alert noise levels by up to 90% using lesser-known ModSecurity features. Discover the experiences and considerations involved in transitioning from CRS 2.2.9 to 3.0. Walk away with practical knowledge on how to effectively implement and customize the Core Rule Set for large-scale deployments, balancing risk management and false positive reduction for diverse customer needs.

Syllabus

2017 - Core Rule Set for the Masses: Lessons from taming ModSec Rules at Massive Scale - Tin Zaw


Taught by

LASCON

Related Courses

Security Event Triage: Revealing Attacker Methodology in Web Application Events
Pluralsight
Securing Applications in Microsoft Azure
Pluralsight
AWS Administration: Security Fundamentals
LinkedIn Learning
AWS Certified Solutions Architect - Associate (SAA-C02): 7 Application Deployment
LinkedIn Learning
Azure Administration: Load Balancers and Application Gateways
LinkedIn Learning