Application Analysis with ModSecurity
by Michael Edie
ModSecurity is an open source, cross platform web
application firewall (WAF) engine. In this course, you will
learn to Analyze Applications using ModSecurity.
What you'll learn
As defenders, we must contend with targeted and
opportunistic attacks against web infrastructure. We
need a way to mitigate these attacks while maintaining
global availability of enterprise web services.
In this course, Application Analysis with ModSecurity, you'll
cover how to utilize ModSecurity to secure a live enterprise
environment. First, you'll learn how to use the Open Web
Application Security Project (OWASP) Core Rule Set
(CRS). Next, you'll explore how to detect and block SQL
injection attacks. Finally, you’ll discover how to mitigate
brute force credential stuffing attacks. When you’re
finished with this course, you’ll have the skills and
knowledge to detect and mitigate web-based threats
against your web applications using ModSecurity.
About the author
Michael is a Senior Security Consultant with 10+ years of experience in the public and private sectors. He is a proactive and iterative cyber threat hunter specializing in detection engineering, DFIR, and automation. Michael has led teams and directed collaborative efforts to develop and implement strategies for mitigating evolving threat trends. He is the Founder and Principal Consultant of Sawbox Consulting, where he identifies and resolves security issues, implements solutions and evaluates s... moreecurity systems for clients. Additionally, he serves as the Executive Director and Co-Founder of SmashTheStack, a prominent educational platform focused on ethical hacking. Michael's role as a Cybersecurity Author at Pluralsight exemplifies his dedication to sharing knowledge. His commitment to advancing the security industry is further demonstrated through his engaging technical presentations at security events like BSIDES, ISSA, and Hacker Halted. Michael’s ability to effectively communicate complex security concepts and share his expertise with others has made him a sought-after speaker in the cybersecurity community. By sharing his extensive knowledge and insights, Michael empowers fellow professionals and enthusiasts to stay informed, embrace innovation, and elevate their security practices. Beyond work, he volunteers to support youth cyber education through CyberPatriot. Connect with him today to experience his expertise and passion firsthand.