Giters

VeselaHouba / f5-waf-enforce-sig-CVE-2021-44228

This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

f5-waf-enforce-sigs-CVE-2021-44228

This enforces signatures for CVE-2021-44228 for policy on a BIG-IP ASM device

Overview

This script enforces all signatures present in the list below related to CVE-2021-44228 across specific policy in the Adv. WAF/ASM. Based on irgoncalves/f5-waf-enforce-sig-CVE-2021-44228

If signatures ID update, please modify directly in script.

sigs = ['200104768', '200104769', '200004450', '200004451','200004474','200104770','200104771', '200104777' ]

Note

Signature 200104777 is only available after installing ASM-AttackSignatures_20220104_103011.im

https://support.f5.com/csp/article/K19026212

This was tested on BIG-IP ASM/Adv.WAF v15.x but I expect this to work in v13/v14/v16 as well.

Prerequisites

Python 3.7+

The host machine needs to have connection to the BIG-IP management interface.

How to Use

usage: f5-waf-enforce-sig-CVE-2021-44228 device policy

positional arguments:
  device      Device hostname
  policy      Target policy name

About

This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

Languages

Language:Python 100.0%