@abtnode/router-provider 1.16.38-beta-20250116-083413-dbd33222 → 1.16.38-beta-20250118-033334-2da05ae8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (51) hide show
  1. package/lib/nginx/includes/security/crs4/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example +200 -0
  2. package/lib/nginx/includes/security/crs4/rules/REQUEST-901-INITIALIZATION.conf +470 -0
  3. package/lib/nginx/includes/security/crs4/rules/REQUEST-905-COMMON-EXCEPTIONS.conf +57 -0
  4. package/lib/nginx/includes/security/crs4/rules/REQUEST-911-METHOD-ENFORCEMENT.conf +76 -0
  5. package/lib/nginx/includes/security/crs4/rules/REQUEST-913-SCANNER-DETECTION.conf +86 -0
  6. package/lib/nginx/includes/security/crs4/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf +1915 -0
  7. package/lib/nginx/includes/security/crs4/rules/REQUEST-921-PROTOCOL-ATTACK.conf +558 -0
  8. package/lib/nginx/includes/security/crs4/rules/REQUEST-922-MULTIPART-ATTACK.conf +120 -0
  9. package/lib/nginx/includes/security/crs4/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf +203 -0
  10. package/lib/nginx/includes/security/crs4/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf +189 -0
  11. package/lib/nginx/includes/security/crs4/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf +1875 -0
  12. package/lib/nginx/includes/security/crs4/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf +774 -0
  13. package/lib/nginx/includes/security/crs4/rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf +366 -0
  14. package/lib/nginx/includes/security/crs4/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf +1071 -0
  15. package/lib/nginx/includes/security/crs4/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf +1978 -0
  16. package/lib/nginx/includes/security/crs4/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf +132 -0
  17. package/lib/nginx/includes/security/crs4/rules/REQUEST-944-APPLICATION-ATTACK-JAVA.conf +463 -0
  18. package/lib/nginx/includes/security/crs4/rules/REQUEST-949-BLOCKING-EVALUATION.conf +270 -0
  19. package/lib/nginx/includes/security/crs4/rules/RESPONSE-950-DATA-LEAKAGES.conf +156 -0
  20. package/lib/nginx/includes/security/crs4/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf +417 -0
  21. package/lib/nginx/includes/security/crs4/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf +108 -0
  22. package/lib/nginx/includes/security/crs4/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf +158 -0
  23. package/lib/nginx/includes/security/crs4/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf +152 -0
  24. package/lib/nginx/includes/security/crs4/rules/RESPONSE-955-WEB-SHELLS.conf +558 -0
  25. package/lib/nginx/includes/security/crs4/rules/RESPONSE-959-BLOCKING-EVALUATION.conf +280 -0
  26. package/lib/nginx/includes/security/crs4/rules/RESPONSE-980-CORRELATION.conf +138 -0
  27. package/lib/nginx/includes/security/crs4/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example +76 -0
  28. package/lib/nginx/includes/security/crs4/rules/iis-errors.data +59 -0
  29. package/lib/nginx/includes/security/crs4/rules/java-classes.data +64 -0
  30. package/lib/nginx/includes/security/crs4/rules/java-code-leakages.data +17 -0
  31. package/lib/nginx/includes/security/crs4/rules/java-errors.data +10 -0
  32. package/lib/nginx/includes/security/crs4/rules/lfi-os-files.data +722 -0
  33. package/lib/nginx/includes/security/crs4/rules/php-config-directives.data +571 -0
  34. package/lib/nginx/includes/security/crs4/rules/php-errors-pl2.data +7 -0
  35. package/lib/nginx/includes/security/crs4/rules/php-errors.data +2147 -0
  36. package/lib/nginx/includes/security/crs4/rules/php-function-names-933150.data +245 -0
  37. package/lib/nginx/includes/security/crs4/rules/php-function-names-933151.data +2201 -0
  38. package/lib/nginx/includes/security/crs4/rules/php-variables.data +30 -0
  39. package/lib/nginx/includes/security/crs4/rules/restricted-files.data +284 -0
  40. package/lib/nginx/includes/security/crs4/rules/restricted-upload.data +177 -0
  41. package/lib/nginx/includes/security/crs4/rules/scanners-user-agents.data +119 -0
  42. package/lib/nginx/includes/security/crs4/rules/sql-errors.data +172 -0
  43. package/lib/nginx/includes/security/crs4/rules/ssrf.data +177 -0
  44. package/lib/nginx/includes/security/crs4/rules/unix-shell.data +670 -0
  45. package/lib/nginx/includes/security/crs4/rules/web-shells-php.data +167 -0
  46. package/lib/nginx/includes/security/crs4/rules/windows-powershell-commands.data +425 -0
  47. package/lib/nginx/includes/security/unicode.mapping +96 -0
  48. package/lib/nginx/index.js +50 -3
  49. package/lib/nginx/templates/security/crs4/crs-setup.conf.js +857 -0
  50. package/lib/nginx/templates/security/modsecurity.conf.js +244 -0
  51. package/package.json +7 -6
package/lib/nginx/includes/security/crs4/rules/php-function-names-933150.data ADDED
@@ -0,0 +1,245 @@
1
+ ##! File autogenerated by util/php-dictionary-gen with: -a 30 -F 90000 -s ../fp-finder/spell.sh
2
+ array_diff_uassoc
3
+ array_diff_ukey
4
+ array_filter
5
+ array_intersect_uassoc
6
+ array_intersect_ukey
7
+ array_key_exists
8
+ array_map
9
+ array_push
10
+ array_reduce
11
+ array_shift
12
+ array_udiff
13
+ array_udiff_assoc
14
+ array_udiff_uassoc
15
+ array_uintersect
16
+ array_uintersect_assoc
17
+ array_uintersect_uassoc
18
+ array_values
19
+ base64_decode
20
+ base64_encode
21
+ bson_decode
22
+ bson_encode
23
+ bzdecompress
24
+ bzopen
25
+ call_user_func
26
+ class_exists
27
+ convert_uuencode
28
+ curl_exec
29
+ curl_file_create
30
+ curl_init
31
+ debug_backtrace
32
+ dirname
33
+ error_reporting
34
+ escapeshellarg
35
+ escapeshellcmd
36
+ exif_imagetype
37
+ exif_read_data
38
+ exif_tagname
39
+ exif_thumbnail
40
+ fclose
41
+ file_exists
42
+ file_get_contents
43
+ finfo_open
44
+ fopen
45
+ fputs
46
+ fsockopen
47
+ ftp_connect
48
+ ftp_get
49
+ ftp_nb_get
50
+ ftp_nb_put
51
+ ftp_put
52
+ function_exists
53
+ fwrite
54
+ get_cfg_var
55
+ get_class
56
+ get_class_methods
57
+ get_class_vars
58
+ get_current_user
59
+ get_defined_constants
60
+ get_defined_functions
61
+ get_defined_vars
62
+ get_meta_tags
63
+ getcwd
64
+ getenv
65
+ getimagesize
66
+ getlastmod
67
+ getmygid
68
+ getmyinode
69
+ getmypid
70
+ getmyuid
71
+ gzcompress
72
+ gzdecode
73
+ gzdeflate
74
+ gzencode
75
+ gzfile
76
+ gzinflate
77
+ gzopen
78
+ gzread
79
+ gzuncompress
80
+ gzwrite
81
+ hash_file
82
+ hash_hmac_file
83
+ hash_update_file
84
+ header_register_callback
85
+ hex2bin
86
+ highlight_file
87
+ html_entity_decode
88
+ htmlentities
89
+ htmlspecialchars
90
+ htmlspecialchars_decode
91
+ image2wbmp
92
+ imagecreatefromgif
93
+ imagecreatefromjpeg
94
+ imagecreatefrompng
95
+ imagecreatefromwbmp
96
+ imagecreatefromxbm
97
+ imagecreatefromxpm
98
+ imagegd
99
+ imagegd2
100
+ ini_get
101
+ ini_get_all
102
+ ini_set
103
+ intval
104
+ iptcembed
105
+ is_array
106
+ is_dir
107
+ is_executable
108
+ is_file
109
+ is_int
110
+ is_null
111
+ is_numeric
112
+ is_object
113
+ is_readable
114
+ is_writable
115
+ is_writeable
116
+ iterator_apply
117
+ json_decode
118
+ json_encode
119
+ mb_ereg
120
+ mb_ereg_match
121
+ mb_ereg_replace
122
+ mb_ereg_replace_callback
123
+ mb_eregi
124
+ mb_eregi_replace
125
+ mb_parse_str
126
+ md5_file
127
+ method_exists
128
+ mkdir
129
+ move_uploaded_file
130
+ mysql_query
131
+ number_format
132
+ ob_clean
133
+ ob_end_clean
134
+ ob_end_flush
135
+ ob_flush
136
+ ob_get_clean
137
+ ob_get_contents
138
+ ob_get_flush
139
+ ob_start
140
+ odbc_connect
141
+ odbc_exec
142
+ odbc_execute
143
+ odbc_result
144
+ odbc_result_all
145
+ parse_ini_file
146
+ parse_str
147
+ parse_url
148
+ pfsockopen
149
+ pg_connect
150
+ pg_execute
151
+ pg_prepare
152
+ pg_query
153
+ php_strip_whitespace
154
+ php_uname
155
+ phpinfo
156
+ phpversion
157
+ posix_getegid
158
+ posix_geteuid
159
+ posix_getgid
160
+ posix_getlogin
161
+ posix_getpwnam
162
+ posix_getpwuid
163
+ posix_kill
164
+ posix_mkfifo
165
+ posix_mknod
166
+ posix_ttyname
167
+ preg_match
168
+ preg_match_all
169
+ preg_replace
170
+ preg_replace_callback
171
+ preg_replace_callback_array
172
+ preg_split
173
+ print_r
174
+ printf
175
+ proc_close
176
+ proc_get_status
177
+ proc_nice
178
+ proc_open
179
+ proc_terminate
180
+ putenv
181
+ rawurldecode
182
+ rawurlencode
183
+ read_exif_data
184
+ readdir
185
+ readgzfile
186
+ register_shutdown_function
187
+ register_tick_function
188
+ rename_function
189
+ rtrim
190
+ runkit_constant_add
191
+ runkit_constant_redefine
192
+ runkit_function_add
193
+ runkit_function_copy
194
+ runkit_function_redefine
195
+ runkit_function_rename
196
+ runkit_method_add
197
+ runkit_method_copy
198
+ runkit_method_redefine
199
+ runkit_method_rename
200
+ session_set_save_handler
201
+ session_start
202
+ set_error_handler
203
+ set_exception_handler
204
+ set_include_path
205
+ set_magic_quotes_runtime
206
+ setdefaultstub
207
+ settype
208
+ sha1_file
209
+ shell_exec
210
+ show_source
211
+ simplexml_load_file
212
+ simplexml_load_string
213
+ socket_connect
214
+ socket_create
215
+ spl_autoload_register
216
+ sqlite_array_query
217
+ sqlite_create_aggregate
218
+ sqlite_create_function
219
+ sqlite_exec
220
+ sqlite_open
221
+ sqlite_popen
222
+ sqlite_query
223
+ sqlite_single_query
224
+ sqlite_unbuffered_query
225
+ str_replace
226
+ stream_context_create
227
+ stream_socket_client
228
+ strip_tags
229
+ stripcslashes
230
+ stripslashes
231
+ strlen
232
+ strpos
233
+ strrev
234
+ strtolower
235
+ strtotime
236
+ strtoupper
237
+ uasort
238
+ ucfirst
239
+ uksort
240
+ unserialize
241
+ urldecode
242
+ urlencode
243
+ usort
244
+ var_dump
245
+ zlib_decode