This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

OWASP ModSecurity Core Rule Set

Jump to: navigation, search


Registration | Hotel | Walter E. Washington Convention Center

The presentation

Ryan Barnett-headshot.jpg
This project just recently achieved Release Quality status as an OWASP Project.

This presentation will be an overview of the Core Rule Set functionality, what it does and doesn't do and all of the new features. We will also discuss the project synergies with other OWASP projects such as AppSensor.

Ryan Barnett

Ryan C. Barnett is a senior security researcher on Trustwave's SpiderLabs Team. He is a SANS Institute certified instructor and a member of both the Top 20 Vulnerabilities and CWE/SANS Top 25 Most Dangerous Programming Errors teams. In addition to working with SANS, he is also a WASC Member where he leads the Web Hacking Incidents Database (WHID) and Distributed Open Proxy Honeypots Projects and is also the OWASP ModSecurity Core Rule Set (CRS) project leader. Mr. Barnett has also authored a Web security book for Addison/Wesley Publishing entitled Preventing Web Attacks with Apache.