Stats
Actions
Tags
From cybersec-toolkit
Configures ModSecurity WAF with OWASP CRS for web application logging, tunes rules to reduce false positives, analyzes audit logs for attack detection, and implements custom SecRules for application-specific threats.
How this skill is triggered — by the user, by Claude, or both
Slash command
/cybersec-toolkit:implementing-web-application-logging-with-modsecurityThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
ModSecurity is an open-source WAF engine that works with Apache, Nginx, and IIS. The OWASP
ModSecurity is an open-source WAF engine that works with Apache, Nginx, and IIS. The OWASP Core Rule Set (CRS) provides generic attack detection rules covering SQL injection, XSS, RCE, LFI, and other OWASP Top 10 attacks. ModSecurity logs full request/response data in audit logs for forensic analysis and generates alerts that feed into SIEM platforms.
ModSecurity: Warning. Pattern match "(?:union\s+select)" [file "/etc/modsecurity/crs/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [msg "SQL Injection Attack Detected via libinjection"] [severity "CRITICAL"]
npx claudepluginhub 26zl/cybersec-toolkit --plugin cybersec-toolkitConfigures ModSecurity WAF with OWASP CRS for web application logging, tunes rules to reduce false positives, analyzes audit logs for attack detection, and implements custom SecRules for application-specific threats.
Configures ModSecurity WAF with OWASP CRS for web application logging, tunes rules to reduce false positives, analyzes audit logs for attacks, and implements custom SecRules.
Configures ModSecurity WAF with OWASP CRS for web app logging, tunes rules to reduce false positives, analyzes audit logs for attacks, and implements custom SecRules for app-specific threats.