ASM violations and attack signatures.

Question

Hello
&nbsp;

Is there a tool to trigger F5 ASM violations and attack signatures. 
&nbsp;

hooleylist · Answer

Hi Alex, 
&nbsp;  
&nbsp; The answer(s) depend largely on what your goal is.  Are you trying to test the policy itself or the alerting for violations? 
&nbsp;  
&nbsp; Aaron

alex_3320 · Answer

yes i like to test alerting for violations or attacks &nbsp;

hooleylist · Answer

You can use the logger command to generate arbitrary syslog messages: 
&nbsp;  
&nbsp;  SOL7165: Testing SNMP traps and email alerts   
&nbsp; http://support.f5.com/kb/en-us/solutions/public/7000/100/sol7165.html 
&nbsp;  
&nbsp; Else, if you want to more thoroughly test, you might need to configure a test policy with all checks enabled, set up some policy definitions and send test HTTP requests which trigger the violations. 
&nbsp;  
&nbsp; Aaron

alex_3320 · Answer

Hello and thanks for the reply 
&nbsp;the question now how do i send test HTTP requests which trigger the violations? &nbsp;&nbsp;&nbsp;

ali_64819 · Answer

you can use NMAP to scan the F5 Virtual server ,then the asm will generate violations if the virtuals server is configure with application security profile.&nbsp;

Forum Discussion

ASM violations and attack signatures.

5 Replies

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Tenant image upgrade

Related Content

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Wildcard Parameter signature attack

Live Update- ASM attack signatures

Default Attack Signature Sets

Attack Signature False Positive Mode