OpenRASP v0.21 released
152 views
Skip to first unread message
OpenRASP
Dec 11, 2017, 10:55:09 AM12/11/17
to OpenRASP
Breaking Changes
- Separation of security baseline vialotion logs
- Make it easier to manage different types of alarm logs
- User must manually remove
rasp/conf/rasp-log4j.xmlprior to agent upgrade
New Features
- Detect LFI/SSRF exploit via jstl-import method
- Add support of DB2 database server
- Only tested on version 9.7 and 10.5
- Security baseline feature enhancements
- Audit database accounts, e.g connect to MySQL with
rootuser
- Audit database accounts, e.g connect to MySQL with
- Add slow query detection, e.g read 500+ rows with SELECT statement
- Support TCP syslog transmission
Algorithm improvemnts
- Publish SQLi detection method No.2 (configurable)
- Detect stacked queries, e.g
SELECT 123; SELECT 456; - Detect hex string representations, e.g
load_file(0x41424344) - Detect OS version number, e.g
/*!12345 - Detect numeric constant comparsion, e.g
SELECT 1 FROM dual WHERE 8778 <> 8778 - Detect usage of blacklisted functions, e.g
load_file,pg_sleep, ...
- Detect stacked queries, e.g
剑心
Mar 5, 2019, 11:22:26 AM3/5/19
to OpenRASP
Not updated yet?
Reply all
Reply to author
Forward
0 new messages