Groups
Sign in
Groups
naxsi-discuss
Conversations
About
Send feedback
Help
naxsi-discuss
Contact owners and managers
1–30 of 295
Mark all as read
Report group
0 selected
Harry Tuttle
, …
F F
12
3/16/23
regex-manual
Hello Sorry for jumping in such old thread, I dont understand the rule 1315 It says it is a rule
unread,
regex-manual
Hello Sorry for jumping in such old thread, I dont understand the rule 1315 It says it is a rule
3/16/23
Twoo
5/17/19
😢 Naxsi Discuss, your last 48 hours!
Last chance! In 48 hours your Twoo account will be removed from our platform. Are we making a mistake
unread,
😢 Naxsi Discuss, your last 48 hours!
Last chance! In 48 hours your Twoo account will be removed from our platform. Are we making a mistake
5/17/19
Twoo
5/5/19
💙 Naxsi Discuss, we're removing your account.
Ok, not yet. But soon! Twoo is all about real people being really active. To keep Twoo fun for
unread,
💙 Naxsi Discuss, we're removing your account.
Ok, not yet. But soon! Twoo is all about real people being really active. To keep Twoo fun for
5/5/19
Twoo
4/19/19
🛫 Naxsi Discuss - Your flight confirmation for your trip around the world
Fasten your seatbelt, Naxsi Discuss! Join us on a virtual trip around the world. An experience you
unread,
🛫 Naxsi Discuss - Your flight confirmation for your trip around the world
Fasten your seatbelt, Naxsi Discuss! Join us on a virtual trip around the world. An experience you
4/19/19
tee...@gmail.com
, …
bod...@gmail.com
4
3/10/18
How to configure naxsi-ui and nxapi ?
Wow, thanks bui, I've missed that one somehow. Works for me on ES5. Seems like recommended web
unread,
How to configure naxsi-ui and nxapi ?
Wow, thanks bui, I've missed that one somehow. Works for me on ES5. Seems like recommended web
3/10/18
Sophie Loe
12/2/17
debian package for nginx-naxsi for Stretch?
Hi, Debian Wheezy had a package called nginx-naxsi that had the WAF NAXSI compiled. I've not seen
unread,
debian package for nginx-naxsi for Stretch?
Hi, Debian Wheezy had a package called nginx-naxsi that had the WAF NAXSI compiled. I've not seen
12/2/17
mex
7/7/17
accessing naxsi-scores from within nginx
hi, is it possible to access naxsi.$SCORE from within nginx as an $var ? Case is, i want to detect
unread,
accessing naxsi-scores from within nginx
hi, is it possible to access naxsi.$SCORE from within nginx as an $var ? Case is, i want to detect
7/7/17
mex
2
5/5/17
https://exploitbox.io/vuln/WordPress-Exploit-4-6-RCE-CODE-EXEC-CVE-2016-10033.html
i'd propose the following: rx:^[a-zA-Z\d-]+\.[a-zA-Z]+$ comments? 2017-05-05 13:44 GMT+02:00 mex
unread,
https://exploitbox.io/vuln/WordPress-Exploit-4-6-RCE-CODE-EXEC-CVE-2016-10033.html
i'd propose the following: rx:^[a-zA-Z\d-]+\.[a-zA-Z]+$ comments? 2017-05-05 13:44 GMT+02:00 mex
5/5/17
Twoo
4/10/17
Welcome to Twoo!
Well done, you are now a member of Twoo. Here are a few tips. Welcome to Twoo Here are a few things
unread,
Welcome to Twoo!
Well done, you are now a member of Twoo. Here are a few tips. Welcome to Twoo Here are a few things
4/10/17
Aina via Twoo
4/9/17
Aina left a message for you
Aina sent you a message! Check out your message ➔ You can immediately reply via chat. Read this mail
unread,
Aina left a message for you
Aina sent you a message! Check out your message ➔ You can immediately reply via chat. Read this mail
4/9/17
heiko.h...@gmail.com
2/13/17
Naxsi whitelist specifc bot user-agent
Hi, I'm new to naxsi, I've included the following rule to keep out all bots: MainRule "
unread,
Naxsi whitelist specifc bot user-agent
Hi, I'm new to naxsi, I've included the following rule to keep out all bots: MainRule "
2/13/17
mex
2/1/17
Doxi Ruleset-Update: WordPress API Content Injection (GET/POST)
Today sucuri reported a new critical vuln in Wordpress, allowing an attacker to alter articles and
unread,
Doxi Ruleset-Update: WordPress API Content Injection (GET/POST)
Today sucuri reported a new critical vuln in Wordpress, allowing an attacker to alter articles and
2/1/17
c0nw...@googlemail.com
2
12/18/16
Naxsi Rule ID : 2 is blocking a large file upload
Is changing Nginx's default client_body_buffer_size to client_body_buffer_size 2000000k ; Even
unread,
Naxsi Rule ID : 2 is blocking a large file upload
Is changing Nginx's default client_body_buffer_size to client_body_buffer_size 2000000k ; Even
12/18/16
mex
11/8/16
http pollution, what about naxsi?
http://seclists.org/fulldisclosure/2016/Nov/22
unread,
http pollution, what about naxsi?
http://seclists.org/fulldisclosure/2016/Nov/22
11/8/16
scitech.c...@gmail.com
9/22/16
We provide Gateway Firewall Consulting Security Services to manage and ensure your firewall protection up-to-date.
A firewall is membrane between a non-safe network (typically internet) and safe internal network.
unread,
We provide Gateway Firewall Consulting Security Services to manage and ensure your firewall protection up-to-date.
A firewall is membrane between a non-safe network (typically internet) and safe internal network.
9/22/16
leo.g...@gmail.com
,
bui
3
7/31/16
Naxsi not logging real source IP - Behind ELB proxy
Thanks, all the configs related are attached below. Using packages from dotdeb, current version 1.10.
unread,
Naxsi not logging real source IP - Behind ELB proxy
Thanks, all the configs related are attached below. Using packages from dotdeb, current version 1.10.
7/31/16
samuele....@gmail.com
,
bui
2
5/16/16
Naxsi off for an ip
Hi, Yes you can use dynamic modifiers : https://github.com/nbs-system/naxsi/wiki/dynamicmodifiers
unread,
Naxsi off for an ip
Hi, Yes you can use dynamic modifiers : https://github.com/nbs-system/naxsi/wiki/dynamicmodifiers
5/16/16
mex
5/9/16
inspecting files to search for imagetragick-exploit-codes
is it possible with naxsi to inspect files in POST-payload to find exploit-codes? https://
unread,
inspecting files to search for imagetragick-exploit-codes
is it possible with naxsi to inspect files in POST-payload to find exploit-codes? https://
5/9/16
Adam Williams
,
bui
2
4/29/16
BODY whitelist ineffective, requires BODY|NAME
Hi, From what I see, it's expected, as the [ ] patterns were found in BOTH the content of the
unread,
BODY whitelist ineffective, requires BODY|NAME
Hi, From what I see, it's expected, as the [ ] patterns were found in BOTH the content of the
4/29/16
mex
4/28/16
naxsi as a dynamic module error on nginx 1.10.0
please read: https://forum.nginx.org/read.php?2,266443
unread,
naxsi as a dynamic module error on nginx 1.10.0
please read: https://forum.nginx.org/read.php?2,266443
4/28/16
Xavier de Poorter
2/8/16
White List Bug
Hi, I installed "The IPS Community Suite" from https://www.invisionpower.com/ and i'm
unread,
White List Bug
Hi, I installed "The IPS Community Suite" from https://www.invisionpower.com/ and i'm
2/8/16
prtk....@gmail.com
,
mex
6
1/19/16
Naxsi not loading css, images
sorry, i have no experience with php/wordpress et al 2016-01-19 14:20 GMT+01:00 Prateek Varma <
unread,
Naxsi not loading css, images
sorry, i have no experience with php/wordpress et al 2016-01-19 14:20 GMT+01:00 Prateek Varma <
1/19/16
mex
12/15/15
Latest Joomla-Vuln + Ruleset-Update
Hi, just added some sigs against known exploits for jenkins and wp, the rules itself might be found
unread,
Latest Joomla-Vuln + Ruleset-Update
Hi, just added some sigs against known exploits for jenkins and wp, the rules itself might be found
12/15/15
mex
,
bui
2
10/21/15
Ruleset-Update: 42000442 Wordpress XMLRPC possible Password Brute Forceand some more
Hey Mex! Thanks, On 19 Oct 2015 08:10, "mex" <lazy.d...@gmail.com> wrote: hi
unread,
Ruleset-Update: 42000442 Wordpress XMLRPC possible Password Brute Forceand some more
Hey Mex! Thanks, On 19 Oct 2015 08:10, "mex" <lazy.d...@gmail.com> wrote: hi
10/21/15
Bastien Durel
,
bui
3
9/26/15
URL_X behaviour
Thanks! Le 14 sept. 2015 10:03 AM, "bui" <ori...@gmail.com> a écrit : Hi, You should
unread,
URL_X behaviour
Thanks! Le 14 sept. 2015 10:03 AM, "bui" <ori...@gmail.com> a écrit : Hi, You should
9/26/15
mex
9/3/15
Bypass WAF Cookbook
http://translate.wooyun.io/2015/09/01/Bypass-WAF-Cookbook.html could someone test if these mentioned
unread,
Bypass WAF Cookbook
http://translate.wooyun.io/2015/09/01/Bypass-WAF-Cookbook.html could someone test if these mentioned
9/3/15
Craig Lawson
6/28/15
Re: Abridged summary of naxsi-discuss@googlegroups.com - 1 update in 1 topic
Prithviraj, As far as I am aware (and have looked quite extensively) there aren't any RH/CentOS
unread,
Re: Abridged summary of naxsi-discuss@googlegroups.com - 1 update in 1 topic
Prithviraj, As far as I am aware (and have looked quite extensively) there aren't any RH/CentOS
6/28/15
Floren Munteanu
,
cprit...@gmail.com
2
6/27/15
Nginx-Naxsi rpm packages now available for Redhat/CentOS 5 and 6
Hi, The below URL is not working. http://www.axivo.com/go/naxsi Can you please provide the updated
unread,
Nginx-Naxsi rpm packages now available for Redhat/CentOS 5 and 6
Hi, The below URL is not working. http://www.axivo.com/go/naxsi Can you please provide the updated
6/27/15
mex
6/5/15
Bug in PCRE allows Remote Code Execution
https://bugs.exim.org/show_bug.cgi?id=1636 MainRule "str:(?p=b)((?p=b)(?j:(?p<b>c)(?p<b
unread,
Bug in PCRE allows Remote Code Execution
https://bugs.exim.org/show_bug.cgi?id=1636 MainRule "str:(?p=b)((?p=b)(?j:(?p<b>c)(?p<b
6/5/15
dim...@gmail.com
, …
Antonin Le Faucheux
22
5/5/15
Naxsi web interface
Hello seems you are using a deprecated version of Naxsi. See: https://github.com/nbs-system/naxsi On
unread,
Naxsi web interface
Hello seems you are using a deprecated version of Naxsi. See: https://github.com/nbs-system/naxsi On
5/5/15