Skip to content
/ waf-downloader Public

Toolchain for downloading Atomicorp WAF rules for various platforms. The intent of this project is to provide tools for integrating Atomicorp Rules into other projects, or platforms

www.atomicorp.com

License

Unlicense license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Atomicorp/waf-downloader

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
examples/apache
examples/apache
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
atomicorp_waf_downloader.sh
atomicorp_waf_downloader.sh
 
 

Repository files navigation

Atomicorp WAF Rule Downloader

This project provides a Bash script to download, extract, and manage Apache or NGINX WAF rules from Atomicorp. The script allows users to select rule classes, list available rules, and customize which rules to download based on their needs for both open source and commercial projects. To sign up and create an account to download the rules, visit Atomicorp WAF Rule Subscription.

Features

  • Download Apache or NGINX WAF rules.
  • Select specific WAF rule classes to download.
  • List available rule classes from the configuration.
  • Handle missing files gracefully by skipping them.
  • Default to predefined rule classes if no custom classes are provided.

Prerequisites

  • Bash Shell (on Linux or macOS)
  • curl installed
  • Atomicorp username and password for access

Usage

./atomicorp_waf_downloader.sh [OPTIONS]

Options

  • -c
    Check the latest MODSEC version.

  • -d
    Download WAF rules for the selected rule classes.

  • -t
    Select the rule type: apache or nginx (default: apache).

  • -u
    Provide the username for authentication.

  • -p
    Provide the password for authentication.

  • -o
    Set the output directory to store the extracted contents (default: current directory).

  • -r
    Provide a comma-separated list of WAF rule classes to download (default: predefined set).

  • -l
    List all available rule classes from the configuration.

  • -h
    Show the help message.

Default Rule Classes

If no rule classes are specified with the -r option, the following default rule classes will be used:

  • MODSEC_00_ANTIEVASION
  • MODSEC_03_DOS
  • MODSEC_10_ANTIMALWARE
  • MODSEC_10_RULES
  • MODSEC_11_ADV_RULES
  • MODSEC_12_ADV_XSS_RULES
  • MODSEC_12_BRUTE
  • MODSEC_20_USERAGENTS
  • MODSEC_30_ANTISPAM
  • MODSEC_50_ROOTKITS
  • MODSEC_60_RECONS
  • MODSEC_61_RECONS_DLP
  • MODSEC_99_JITP
  • MODSEC_99_MALWARE_OUTPUT

Examples

  1. Check the latest MODSEC version:

    ./atomicorp_waf_downloader.sh -c

  2. Download Apache WAF rules using predefined classes:

    ./atomicorp_waf_downloader.sh -d -t apache -u your_username -p 'your_password' -o /path/to/output

  3. Download NGINX WAF rules with custom rule classes:

    ./atomicorp_waf_downloader.sh -d -t nginx -u your_username -p 'your_password' -o /path/to/output -r MODSEC_10_RULES,MODSEC_12_BRUTE

  4. List all available rule classes:

    ./atomicorp_waf_downloader.sh -l

About

Toolchain for downloading Atomicorp WAF rules for various platforms. The intent of this project is to provide tools for integrating Atomicorp Rules into other projects, or platforms

www.atomicorp.com

Topics

modsecurity libmodsecurity

Resources

Readme

License

Unlicense license
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages