title

Talking about ModSecurity and the new Coraza WAF | CRS Project

charset

utf-8

viewport

width=device-width,initial-scale=1

Content-Security-Policy

upgrade-insecure-requests

description

It’s time to talk about the ModSecurity engine and to introduce you to Coraza, a new contender on the WAF front. Any rule set is nothing without a WAF …

og:url

https://coreruleset.org/20211222/talking-about-modsecurity-and-the-new-coraza-waf/

og:site_name

CRS Project

og:title

Talking about ModSecurity and the new Coraza WAF

og:description

It’s time to talk about the ModSecurity engine and to introduce you to Coraza, a new contender on the WAF front. Any rule set is nothing without a WAF engine to run it, so even if our project is focused on the rules, we need to look at the underlying engine(s) from time to time. On August 26, 2021, Trustwave, the owner of ModSecurity, announced the end of Support for ModSecurity for 2024 in a blog post. The blog also states that Trustwave plans to “let the open-source community continue the project.”

og:locale

en

twitter:card

summary_large_image

twitter:image

https://coreruleset.org/images/social-preview.svg

twitter:title

Talking about ModSecurity and the new Coraza WAF

twitter:description

It’s time to talk about the ModSecurity engine and to introduce you to Coraza, a new contender on the WAF front. Any rule set is nothing without a WAF engine to run it, so even if our project is focused on the rules, we need to look at the underlying engine(s) from time to time. On August 26, 2021, Trustwave, the owner of ModSecurity, announced the end of Support for ModSecurity for 2024 in a blog post. The blog also states that Trustwave plans to “let the open-source community continue the project.”

apple-touch-icon

https://coreruleset.org/apple-touch-icon.png

icon

https://coreruleset.org/favicon.ico

icon

https://coreruleset.org/favicon.svg

icon

https://coreruleset.org/favicon-32x32.png

preload

https://coreruleset.org/fonts/nunito-v25-latin-regular.woff2