Updates from Wallarm’s detection team (August 2022)
We are pleased to announce our latest attack and vulnerability detection improvements!
For Wallarm Scanner to detect vulnerabilities with even lower false positives, we have refactored the following detection rules:
- Main SQLi vulnerability detection rules, with cover of additional obfuscation types
- XSS vulnerability detection rules
Attack detection accuracy has been improved by adding the following attack detection rules:
- New Path Traversal attack detection rules - in particular, Tomcat Path Traversal via reverse proxy mapping detection
- Various Web-Shell upload detection rules
These changes are already supported by the Wallarm platform, and no additional product configuration changes are required.