This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Revision as of 20:52, 9 January 2017 by Chaim sanders (talk | contribs)

Jump to: navigation, search

This is a work in progress page about our plans for the CRS at AppSecEU 2017.

  • Conference website:
  • Training dates: 8th, 9th & 10th of May 2017
  • Conference dates: 11th & 12th of May 2017


We offer a free Apache / ModSecurity / CRS training course based on Christian's course material at

Conference Papers / Presentation

  • Paper #1: CRS3: Introduction to CRS3 and the new Features
    • Presenter: Christian (Chaim can help if needed)
  • Paper #2: Testing FTW! A Modern, Open Source Approach to testing WAFs
    • Presenter: Chaim Sanders, Zach Allen and Christian Peron
  • Paper #3: On the use of client side WAFs - it’s no WAFing matter
    • Presenter: Chaim Sanders
  • Paper #4: FIXME
    • Presenter: FIXME

Conference Activities

CRS Summit

Inviting the Community and all Commercial Suppliers using / interested in CRS rules, maybe evening of May 10

  • Head of CRS Summit: FIXME
  • Status: FIXME
  • Date / Time / Location: FIXME

CRS Hackathon

Hacking away together for a day. Maybe May 10

  • Head of CRS Hackathon: FIXME
  • Status: FIXME
  • Date / Time / Location: FIXME

CRS Installation Party

Helping people get started with the CRS, probably 1/2 day during the conference

  • Head of Installation Party
  • Status: FIXME
  • Date / Time / Location: FIXME

Hack CRS

Offer a prize to break execute an attack against a website protected with CRS throughout the conference

  • Head of Development: FIXME
  • Status: FIXME
  • Date / Time / Location: FIXME