Default deny rule groups
Chapter content
Deny Rule Group – (default) SQL Injection (SQLi) in Parameter Value
Deny Rule Group – (default) SQL Injection (SQLi) in Header Value
Deny Rule Group – (default) Cross-Site Scripting (XSS) in Parameter Value
Deny Rule Group – (default) Cross-Site Scripting (XSS) in Header Value
Deny Rule Group – (default) Cross-Site Scripting (XSS) in Path
Deny Rule Group – (default) Template Injection
Deny Rule Group – (default) HTML Injection in Parameter Value
Deny Rule Group – (default) HTML Injection in Header Value
Deny Rule Group – (default) HTML Injection in Path
Deny Rule Group – (default) UNIX Command Injection in Parameter Value
Deny Rule Group – (default) UNIX Command Injection in Header Value
Deny Rule Group – (default) Windows Command Injection in Parameter Value
Deny Rule Group – (default) Windows Command Injection in Header Value
Deny Rule Group – (default) LDAP Injection in Parameter Value
Deny Rule Group – (default) LDAP Injection in Header Value
Deny Rule Group – (default) PHP Injection in Parameter Value
Deny Rule Group – (default) PHP Injection in Header Value
Deny Rule Group – (default) Object Graph Navigation Library injection
Deny Rule Group – (default) Insecure Direct Object Reference in Parameter Value
Deny Rule Group – (default) Insecure Direct Object Reference in Path
Deny Rule Group - (default) NoSQL Injection in Parameter Name
Deny Rule Group - (default) NoSQL Injection in Parameter Value
Deny Rule Group - (default) NoSQL Injection in Header Value
Deny Rule Group – (default) Parameter Name Sanity
Deny Rule Group – (default) Parameter Value Sanity
Deny Rule Group – (default) Header Name Sanity
Deny Rule Group – (default) Header Value Sanity
Deny Rule Group – (default) Path Sanity
Deny Rule Group – (default) Encoding and Conversion Exploits in Parameter Value
Deny Rule Group – (default) Encoding and Conversion Exploits in Header Value
Deny Rule Group – (default) HTTP Response Splitting
Deny Rule Group – (default) HTTP Parameter Pollution
Deny Rule Group – (default) Automated Scanning