Expanded Library

Application Analysis with ModSecurity

by Michael Edie

ModSecurity is an open source, cross platform web application firewall (WAF) engine. In this course, you will learn to Analyze Applications using ModSecurity.

What you'll learn

As defenders, we must contend with targeted and opportunistic attacks against web infrastructure. We need a way to mitigate these attacks while maintaining global availability of enterprise web services. In this course, Application Analysis with ModSecurity, you'll cover how to utilize ModSecurity to secure a live enterprise environment. First, you'll learn how to use the Open Web Application Security Project (OWASP) Core Rule Set (CRS). Next, you'll explore how to detect and block SQL injection attacks. Finally, you’ll discover how to mitigate brute force credential stuffing attacks. When you’re finished with this course, you’ll have the skills and knowledge to detect and mitigate web-based threats against your web applications using ModSecurity.

About the author

Michael Edie, aka “the mechanic,” is a 23-year US Army Veteran and Information Security Engineer. He currently serves as a Technical Lead in a Cyber Operations Organization and President of the Augusta Information Systems Security Association (ISSA) chapter. Previously, he has served on Digital Forensics and Incident Response (DFIR), threat hunt, and compliance inspection teams. Michael is passionate about Information Security and enjoys contributing to the community through his blog at https://... more

Ready to upskill? Get started