Native implementation of the web application firewall, working as an Apache module. Both major Apache branches are supported.
ModSecurity makes full HTTP Transaction logging possible, allowing complete requests and responses to be logged. Its logging facilities also allow fine-grained decisions to be made about exactly what is logged and when, ensure only the relevant data is recorded.
Features
The following features are included:
1. Self-contained application that comes with an embedded web server and an embedded database.
2. Collects logs and alerts from any number of remote sensors in real time.
3. User interface provides support for sensor, alert, and transaction management.
4. Runs on any platform that supports JDK/JRE 1.4 or better.
5. Installs in a few minutes.
6. Automated maintenance options keep the database at a manageable size.
7. Sensor activity history.
8. Alerting facilities.
9. Reporting facilities. Nice and shiny reports in PDF format can be scheduled or produced on-demand. Automatic distribution via email.
10. Automatic DNS and Geo IP resolution1.