Regarding Automating Modsec rules

[Ray Blitz]

Hello, 

I am currently doing an study on automating ModSec Rules is there any script/api/tool that can be used to Convert my zap report file to modsec rules.

I had used zap2modsec.pl perl script but it does only convert 6 vulnerabilities to rules.

So is there any other way to automate other vulnerabilities to rules.

[kingthorin+owaspzap]

I'm not aware of any such script.

It also doesn't address the issue, just because you block the specific things that ZAP tries doesn't mean you're no longer vulnerable to the types of issues that Zap identifies.