The goal of Web Application Security Framework is to minimize risks related to the usage of publicly accessible web applications. The main business task of public web applications is to provide service access to as many people as possible. Since you can't fully restrict access to web services with public availability they can not be 100% secure and all adversaries and criminal hackers from all over the world can and will try to exploit your web applications. According to security best practices a continuous monitoring needs to be in place for every system that can't be locked down and hardened to prevent unintended use. This content pack enables your SIEM to detect web application misuse and breach attempts. It includes detailed analytics on successful and unsuccessful web application requests, geo-distribution of connections and DarkNet activity on your web applications. This framework helps to spot malicious activity and acts as an early warning system for your critical business applications which are publicly accessible from the Internet.
Apache HTTP Server logs over Syslog:
Optional Following Use Cases add value to the current package:
✓ Initial version.
Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox