From acd9d1354ee8e4ccb562d278bd04d3115e493cfc Mon Sep 17 00:00:00 2001
From: Seth Malaki <seth@tigera.io>
Date: Thu, 7 Dec 2023 16:32:02 +0000
Subject: [PATCH] update CoreRuleset payload for dikastes' new WAF engine
 (#2991)

- move and reorganise coreruleset delivery
- now embedded, no need to rely on go:generate
- reorganise how we do the customisations, put all our custom CRS behaviour in its own tigera.conf file
-  replace generated files with embedded
- update files-to-skip
- dikastes now provides a basedir option for enhanced security
- bump coreruleset from v3.3.5 -> v4.0.0-rc2
---
 git-hooks/files-to-skip                       |    1 -
 .../applicationlayer_controller.go            |   18 +-
 .../applicationlayer/applicationlayer.go      |   18 +-
 .../coreruleset}/crs-setup.conf               |  731 +++---
 .../coreruleset}/modsecdefault.conf           |  100 +-
 ...00-EXCLUSION-RULES-BEFORE-CRS.conf.example |   50 +-
 .../rules}/REQUEST-901-INITIALIZATION.conf    |  259 +-
 .../rules}/REQUEST-905-COMMON-EXCEPTIONS.conf |   10 +-
 .../REQUEST-911-METHOD-ENFORCEMENT.conf       |   32 +-
 .../rules/REQUEST-913-SCANNER-DETECTION.conf  |   86 +
 .../REQUEST-920-PROTOCOL-ENFORCEMENT.conf     |  683 +++--
 .../rules}/REQUEST-921-PROTOCOL-ATTACK.conf   |  237 +-
 .../rules}/REQUEST-922-MULTIPART-ATTACK.conf  |   18 +-
 .../REQUEST-930-APPLICATION-ATTACK-LFI.conf   |  203 ++
 .../REQUEST-931-APPLICATION-ATTACK-RFI.conf   |  189 ++
 .../REQUEST-932-APPLICATION-ATTACK-RCE.conf   | 1824 ++++++++++++++
 .../REQUEST-933-APPLICATION-ATTACK-PHP.conf   |  240 +-
 ...EQUEST-934-APPLICATION-ATTACK-GENERIC.conf |  388 +++
 .../REQUEST-941-APPLICATION-ATTACK-XSS.conf   |  502 ++--
 .../REQUEST-942-APPLICATION-ATTACK-SQLI.conf  | 1975 +++++++++++++++
 ...3-APPLICATION-ATTACK-SESSION-FIXATION.conf |   51 +-
 .../REQUEST-944-APPLICATION-ATTACK-JAVA.conf  |  246 +-
 .../REQUEST-949-BLOCKING-EVALUATION.conf      |  223 ++
 .../rules}/RESPONSE-950-DATA-LEAKAGES.conf    |   66 +-
 .../rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf |  404 +++
 .../RESPONSE-952-DATA-LEAKAGES-JAVA.conf      |   42 +-
 .../RESPONSE-953-DATA-LEAKAGES-PHP.conf       |   92 +-
 .../RESPONSE-954-DATA-LEAKAGES-IIS.conf       |   64 +-
 .../rules/RESPONSE-955-WEB-SHELLS.conf        |  548 ++++
 .../RESPONSE-959-BLOCKING-EVALUATION.conf     |  233 ++
 .../rules/RESPONSE-980-CORRELATION.conf       |  136 +
 ...999-EXCLUSION-RULES-AFTER-CRS.conf.example |    2 +-
 .../embed/coreruleset/rules/iis-errors.data   |   59 +
 .../coreruleset/rules}/java-classes.data      |   21 +
 .../rules}/java-code-leakages.data            |    0
 .../coreruleset/rules}/java-errors.data       |    0
 .../embed/coreruleset/rules/lfi-os-files.data |  720 ++++++
 .../rules/php-config-directives.data          |  571 +++++
 .../coreruleset/rules/php-errors-pl2.data     |    6 +
 .../embed/coreruleset/rules/php-errors.data   | 2146 ++++++++++++++++
 .../rules/php-function-names-933150.data      |  245 ++
 .../rules/php-function-names-933151.data      | 2201 +++++++++++++++++
 .../coreruleset/rules/php-variables.data      |   30 +
 .../coreruleset/rules/restricted-files.data   |  267 ++
 .../coreruleset/rules/restricted-upload.data  |  174 ++
 .../rules/scanners-user-agents.data           |  112 +
 .../embed/coreruleset/rules/sql-errors.data   |  172 ++
 .../embed/coreruleset/rules/ssrf.data         |  177 ++
 .../embed/coreruleset/rules/unix-shell.data   |  665 +++++
 .../coreruleset/rules/web-shells-php.data     |  161 ++
 .../rules/windows-powershell-commands.data    |  425 ++++
 .../embed/coreruleset/tigera.conf             |   21 +
 .../coreruleset}/unicode.mapping              |    0
 pkg/render/applicationlayer/embed/embed.go    |   61 +
 .../applicationlayer/embed/embed_test.go      |   53 +
 pkg/render/applicationlayer/gen.go            |   54 -
 ...QUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf |  423 ----
 ...ST-903.9002-WORDPRESS-EXCLUSION-RULES.conf |  760 ------
 ...ST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf |  416 ----
 ...EST-903.9004-DOKUWIKI-EXCLUSION-RULES.conf |  273 --
 ...QUEST-903.9005-CPANEL-EXCLUSION-RULES.conf |   64 -
 ...UEST-903.9006-XENFORO-EXCLUSION-RULES.conf |  587 -----
 .../REQUEST-910-IP-REPUTATION.conf            |  323 ---
 .../REQUEST-912-DOS-PROTECTION.conf           |  324 ---
 .../REQUEST-913-SCANNER-DETECTION.conf        |  199 --
 .../REQUEST-930-APPLICATION-ATTACK-LFI.conf   |  156 --
 .../REQUEST-931-APPLICATION-ATTACK-RFI.conf   |  153 --
 .../REQUEST-932-APPLICATION-ATTACK-RCE.conf   |  730 ------
 ...REQUEST-934-APPLICATION-ATTACK-NODEJS.conf |   96 -
 .../REQUEST-942-APPLICATION-ATTACK-SQLI.conf  | 1596 ------------
 .../REQUEST-949-BLOCKING-EVALUATION.conf      |  133 -
 .../RESPONSE-951-DATA-LEAKAGES-SQL.conf       |  476 ----
 .../RESPONSE-959-BLOCKING-EVALUATION.conf     |  116 -
 .../RESPONSE-980-CORRELATION.conf             |  170 --
 .../crawlers-user-agents.data                 |   41 -
 .../modsec-core-ruleset/iis-errors.data       |   13 -
 .../modsec-core-ruleset/lfi-os-files.data     | 1115 ---------
 .../php-config-directives.data                |  276 ---
 .../modsec-core-ruleset/php-errors.data       |  219 --
 .../php-function-names-933150.data            |   44 -
 .../php-function-names-933151.data            | 1264 ----------
 .../modsec-core-ruleset/php-variables.data    |   19 -
 .../modsec-core-ruleset/restricted-files.data |  145 --
 .../restricted-upload.data                    |   23 -
 .../modsec-core-ruleset/scanners-headers.data |    8 -
 .../modsec-core-ruleset/scanners-urls.data    |   17 -
 .../scanners-user-agents.data                 |  217 --
 .../scripting-user-agents.data                |   28 -
 .../modsec-core-ruleset/sql-errors.data       |   80 -
 .../modsec-core-ruleset/unix-shell.data       |  115 -
 .../windows-powershell-commands.data          |  253 --
 .../applicationlayer/modsecurityrules.go      |   62 -
 92 files changed, 16470 insertions(+), 12476 deletions(-)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset}/crs-setup.conf (57%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset}/modsecdefault.conf (72%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example (79%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-901-INITIALIZATION.conf (63%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-905-COMMON-EXCEPTIONS.conf (88%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-911-METHOD-ENFORCEMENT.conf (65%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-913-SCANNER-DETECTION.conf
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-920-PROTOCOL-ENFORCEMENT.conf (68%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-921-PROTOCOL-ATTACK.conf (63%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-922-MULTIPART-ATTACK.conf (68%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-933-APPLICATION-ATTACK-PHP.conf (72%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-941-APPLICATION-ATTACK-XSS.conf (52%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf (71%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/REQUEST-944-APPLICATION-ATTACK-JAVA.conf (60%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-949-BLOCKING-EVALUATION.conf
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/RESPONSE-950-DATA-LEAKAGES.conf (67%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/RESPONSE-952-DATA-LEAKAGES-JAVA.conf (69%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/RESPONSE-953-DATA-LEAKAGES-PHP.conf (59%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/RESPONSE-954-DATA-LEAKAGES-IIS.conf (60%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-955-WEB-SHELLS.conf
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-959-BLOCKING-EVALUATION.conf
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-980-CORRELATION.conf
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example (98%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/iis-errors.data
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/java-classes.data (51%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/java-code-leakages.data (100%)
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset/rules}/java-errors.data (100%)
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/lfi-os-files.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/php-config-directives.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/php-errors-pl2.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/php-errors.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/php-function-names-933150.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/php-function-names-933151.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/php-variables.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/restricted-files.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/restricted-upload.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/scanners-user-agents.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/sql-errors.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/ssrf.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/unix-shell.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/web-shells-php.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/rules/windows-powershell-commands.data
 create mode 100644 pkg/render/applicationlayer/embed/coreruleset/tigera.conf
 rename pkg/render/applicationlayer/{modsec-core-ruleset => embed/coreruleset}/unicode.mapping (100%)
 create mode 100644 pkg/render/applicationlayer/embed/embed.go
 create mode 100644 pkg/render/applicationlayer/embed/embed_test.go
 delete mode 100644 pkg/render/applicationlayer/gen.go
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9004-DOKUWIKI-EXCLUSION-RULES.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9005-CPANEL-EXCLUSION-RULES.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9006-XENFORO-EXCLUSION-RULES.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-910-IP-REPUTATION.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-912-DOS-PROTECTION.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-913-SCANNER-DETECTION.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-930-APPLICATION-ATTACK-LFI.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-931-APPLICATION-ATTACK-RFI.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-932-APPLICATION-ATTACK-RCE.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-949-BLOCKING-EVALUATION.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-951-DATA-LEAKAGES-SQL.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-959-BLOCKING-EVALUATION.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-980-CORRELATION.conf
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/crawlers-user-agents.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/iis-errors.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/lfi-os-files.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/php-config-directives.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/php-errors.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/php-function-names-933150.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/php-function-names-933151.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/php-variables.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/restricted-files.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/restricted-upload.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/scanners-headers.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/scanners-urls.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/scanners-user-agents.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/scripting-user-agents.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/sql-errors.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/unix-shell.data
 delete mode 100644 pkg/render/applicationlayer/modsec-core-ruleset/windows-powershell-commands.data
 delete mode 100644 pkg/render/applicationlayer/modsecurityrules.go

diff --git a/git-hooks/files-to-skip b/git-hooks/files-to-skip
index 08e15d6deb..bc95e50a7b 100644
--- a/git-hooks/files-to-skip
+++ b/git-hooks/files-to-skip
@@ -1,4 +1,3 @@
 api/v1/zz_generated.deepcopy.go
 api/v1beta1/zz_generated.deepcopy.go
 pkg/apis/crd.projectcalico.org/v1/zz_generated.deepcopy.go
-pkg/render/applicationlayer/modsecurityrules.go
diff --git a/pkg/controller/applicationlayer/applicationlayer_controller.go b/pkg/controller/applicationlayer/applicationlayer_controller.go
index 6ea74a5326..ee773d3aaf 100644
--- a/pkg/controller/applicationlayer/applicationlayer_controller.go
+++ b/pkg/controller/applicationlayer/applicationlayer_controller.go
@@ -16,7 +16,6 @@ package applicationlayer
 
 import (
 	"context"
-	"encoding/base64"
 	"errors"
 	"fmt"
 
@@ -29,6 +28,7 @@ import (
 	"github.com/tigera/operator/pkg/controller/utils/imageset"
 	"github.com/tigera/operator/pkg/render"
 	"github.com/tigera/operator/pkg/render/applicationlayer"
+	"github.com/tigera/operator/pkg/render/applicationlayer/embed"
 	rmeta "github.com/tigera/operator/pkg/render/common/meta"
 
 	corev1 "k8s.io/api/core/v1"
@@ -419,23 +419,19 @@ func (r *ReconcileApplicationLayer) getModSecurityRuleSet(ctx context.Context) (
 }
 
 func getDefaultCoreRuleset(ctx context.Context) (*corev1.ConfigMap, error) {
+	data, err := embed.AsMap()
+	if err != nil {
+		return nil, err
+	}
+
 	ruleset := &corev1.ConfigMap{
 		TypeMeta: metav1.TypeMeta{Kind: "ConfigMap", APIVersion: "v1"},
 		ObjectMeta: metav1.ObjectMeta{
 			Name:      applicationlayer.ModSecurityRulesetConfigMapName,
 			Namespace: common.OperatorNamespace(),
 		},
-		Data: make(map[string]string),
+		Data: data,
 	}
-
-	for filename, dataBase64 := range applicationlayer.ModsecurityCoreRuleSet {
-		if data, err := base64.StdEncoding.DecodeString(dataBase64); err == nil {
-			ruleset.Data[filename] = string(data)
-		} else {
-			return nil, err
-		}
-	}
-
 	return ruleset, nil
 }
 
diff --git a/pkg/render/applicationlayer/applicationlayer.go b/pkg/render/applicationlayer/applicationlayer.go
index 90ab36a9b0..b0cc1f7030 100644
--- a/pkg/render/applicationlayer/applicationlayer.go
+++ b/pkg/render/applicationlayer/applicationlayer.go
@@ -12,8 +12,6 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.
 
-//go:generate go run gen.go
-
 package applicationlayer
 
 import (
@@ -59,9 +57,11 @@ const (
 	DikastesSyncVolumeName           = "dikastes-sync"
 	DikastesContainerName            = "dikastes"
 	ModSecurityRulesetVolumeName     = "modsecurity-ruleset"
+	ModSecurityRulesetVolumePath     = "/etc/modsecurity-ruleset"
 	ModSecurityRulesetConfigMapName  = "modsecurity-ruleset"
 	ModSecurityRulesetHashAnnotation = "hash.operator.tigera.io/modsecurity-ruleset"
 	CalicoLogsVolumeName             = "var-log-calico"
+	CalicologsVolumePath             = "/var/log/calico"
 )
 
 func ApplicationLayer(
@@ -295,17 +295,25 @@ func (c *component) containers() []corev1.Container {
 		}
 
 		if c.config.WAFEnabled {
-			commandArgs = append(commandArgs, "--rules", "/etc/modsecurity-ruleset")
+			commandArgs = append(
+				commandArgs,
+				"--waf-enabled",
+				"--waf-ruleset-base-dir", ModSecurityRulesetVolumePath,
+				"--waf-directive", "Include modsecdefault.conf",
+				"--waf-directive", "Include crs-setup.conf",
+				"--waf-directive", "Include tigera.conf",
+				"--waf-directive", "Include rules/*.conf",
+			)
 			volMounts = append(
 				volMounts,
 				[]corev1.VolumeMount{
 					{
 						Name:      CalicoLogsVolumeName,
-						MountPath: "/var/log/calico",
+						MountPath: CalicologsVolumePath,
 					},
 					{
 						Name:      ModSecurityRulesetVolumeName,
-						MountPath: "/etc/modsecurity-ruleset",
+						MountPath: ModSecurityRulesetVolumePath,
 						ReadOnly:  true,
 					},
 				}...,
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/crs-setup.conf b/pkg/render/applicationlayer/embed/coreruleset/crs-setup.conf
similarity index 57%
rename from pkg/render/applicationlayer/modsec-core-ruleset/crs-setup.conf
rename to pkg/render/applicationlayer/embed/coreruleset/crs-setup.conf
index 360d629668..23807a3ccd 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/crs-setup.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/crs-setup.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -19,8 +19,8 @@
 #
 # See also:
 # https://coreruleset.org/
-# https://github.com/SpiderLabs/owasp-modsecurity-crs
-# https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project
+# https://github.com/coreruleset/coreruleset
+# https://owasp.org/www-project-modsecurity-core-rule-set/
 #
 
 
@@ -175,12 +175,12 @@ SecDefaultAction "phase:2,log,auditlog,pass"
 # Uncomment this rule to change the default:
 #
 #SecAction \
-#  "id:900000,\
-#   phase:1,\
-#   nolog,\
-#   pass,\
-#   t:none,\
-#   setvar:tx.paranoia_level=1"
+#    "id:900000,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.blocking_paranoia_level=1"
 
 
 # It is possible to execute rules from a higher paranoia level but not include
@@ -189,24 +189,24 @@ SecDefaultAction "phase:2,log,auditlog,pass"
 # the new rules would lead to false positives that raise your score above the
 # threshold.
 # This optional feature is enabled by uncommenting the following rule and
-# setting the tx.executing_paranoia_level.
-# Technically, rules up to the level defined in tx.executing_paranoia_level
-# will be executed, but only the rules up to tx.paranoia_level affect the
+# setting the tx.detection_paranoia_level.
+# Technically, rules up to the level defined in tx.detection_paranoia_level
+# will be executed, but only the rules up to tx.blocking_paranoia_level affect the
 # anomaly scores.
-# By default, tx.executing_paranoia_level is set to tx.paranoia_level.
-# tx.executing_paranoia_level must not be lower than tx.paranoia_level.
+# By default, tx.detection_paranoia_level is set to tx.blocking_paranoia_level.
+# tx.detection_paranoia_level must not be lower than tx.blocking_paranoia_level.
 #
-# Please notice that setting tx.executing_paranoia_level to a higher paranoia
+# Please notice that setting tx.detection_paranoia_level to a higher paranoia
 # level results in a performance impact that is equally high as setting
-# tx.paranoia_level to said level.
+# tx.blocking_paranoia_level to said level.
 #
 #SecAction \
-#  "id:900001,\
-#   phase:1,\
-#   nolog,\
-#   pass,\
-#   t:none,\
-#   setvar:tx.executing_paranoia_level=1"
+#    "id:900001,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.detection_paranoia_level=1"
 
 
 #
@@ -225,16 +225,16 @@ SecDefaultAction "phase:2,log,auditlog,pass"
 # Uncomment this rule to change the default:
 #
 #SecAction \
-#  "id:900010,\
-#   phase:1,\
-#   nolog,\
-#   pass,\
-#   t:none,\
-#   setvar:tx.enforce_bodyproc_urlencoded=1"
+#    "id:900010,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.enforce_bodyproc_urlencoded=1"
 
 
 #
-# -- [[ Anomaly Mode Severity Levels ]] ----------------------------------------
+# -- [[ Anomaly Scoring Mode Severity Levels ]] --------------------------------
 #
 # Each rule in the CRS has an associated severity level.
 # These are the default scoring points for each severity level.
@@ -258,19 +258,19 @@ SecDefaultAction "phase:2,log,auditlog,pass"
 # that all configuration variables are set before the CRS rules are processed.)
 #
 #SecAction \
-# "id:900100,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.critical_anomaly_score=5,\
-#  setvar:tx.error_anomaly_score=4,\
-#  setvar:tx.warning_anomaly_score=3,\
-#  setvar:tx.notice_anomaly_score=2"
+#    "id:900100,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.critical_anomaly_score=5,\
+#    setvar:tx.error_anomaly_score=4,\
+#    setvar:tx.warning_anomaly_score=3,\
+#    setvar:tx.notice_anomaly_score=2"
 
 
 #
-# -- [[ Anomaly Mode Blocking Threshold Levels ]] ------------------------------
+# -- [[ Anomaly Scoring Mode Blocking Threshold Levels ]] ----------------------
 #
 # Here, you can specify at which cumulative anomaly score an inbound request,
 # or outbound response, gets blocked.
@@ -309,58 +309,122 @@ SecDefaultAction "phase:2,log,auditlog,pass"
 #
 # Uncomment this rule to change the defaults:
 #
-SecAction \
-"id:900110,\
- phase:1,\
- nolog,\
- pass,\
- t:none,\
- setvar:tx.inbound_anomaly_score_threshold=100,\
- setvar:tx.outbound_anomaly_score_threshold=100"
-
-#
-# -- [[ Application Specific Rule Exclusions ]] ----------------------------------------
-#
-# Some well-known applications may undertake actions that appear to be
-# malicious. This includes actions such as allowing HTML or Javascript within
-# parameters. In such cases the CRS aims to prevent false positives by allowing
-# administrators to enable prebuilt, application specific exclusions on an
-# application by application basis.
-# These application specific exclusions are distinct from the rules that would
-# be placed in the REQUEST-900-EXCLUSION-RULES-BEFORE-CRS configuration file as
-# they are prebuilt for specific applications. The 'REQUEST-900' file is
-# designed for users to add their own custom exclusions. Note, using these
-# application specific exclusions may loosen restrictions of the CRS,
-# especially if used with an application they weren't designed for. As a result
-# they should be applied with care.
-# To use this functionality you must specify a supported application. To do so
-# uncomment rule 900130. In addition to uncommenting the rule you will need to
-# specify which application(s) you'd like to enable exclusions for. Only a
-# (very) limited set of applications are currently supported, please use the
-# filenames prefixed with 'REQUEST-903' to guide you in your selection.
-# Such filenames use the following convention:
-# REQUEST-903.9XXX-{APPNAME}-EXCLUSIONS-RULES.conf
-#
-# It is recommended if you run multiple web applications on your site to limit
-# the effects of the exclusion to only the path where the excluded webapp
-# resides using a rule similar to the following example:
-# SecRule REQUEST_URI "@beginsWith /wordpress/" setvar:tx.crs_exclusions_wordpress=1
-
-#
-# Modify and uncomment this rule to select which application:
+#SecAction \
+#    "id:900110,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.inbound_anomaly_score_threshold=5,\
+#    setvar:tx.outbound_anomaly_score_threshold=4"
+
+
+#
+# -- [[ Application Specific Rule Exclusions ]] --------------------------------
+#
+# CRS 3.x contained exclusion packages to tweak the CRS for use with common
+# web applications, lowering the number of false positives.
+#
+# In CRS 4, these are no longer part of the CRS itself, but they are available
+# as "CRS plugins". Some plugins improve support for web applications, and others
+# may bring new functionality. Plugins are not installed by default, but can be
+# downloaded from the plugin registry:
+# https://github.com/coreruleset/plugin-registry
+#
+# For detailed information about using and installing plugins, please see:
+# https://coreruleset.org/docs/concepts/plugins/
+
+
+#
+# -- [[ Anomaly Score Reporting Level ]] ---------------------------------------
+#
+# When a request is blocked due to the anomaly score meeting or exceeding the
+# anomaly threshold then the blocking rule will also report the anomaly score.
+# This applies to the separate inbound and outbound anomaly scores.
+#
+# In phase 5, there are additional rules that can perform additional reporting
+# of anomaly scores with a verbosity that depends on the reporting level defined
+# below.
+#
+# By setting the reporting level you control whether you want additional
+# reporting beyond the blocking rule or not and, if yes, which requests should
+# be covered. The higher the reporting level, the more verbose the reporting is.
+#
+# There are 6 reporting levels:
+#
+# 0 - Reporting disabled
+# 1 - Reporting for requests with a blocking anomaly score >= a threshold
+# 2 - Reporting for requests with a detection anomaly score >= a threshold
+# 3 - Reporting for requests with a blocking anomaly score greater than 0
+# 4 - Reporting for requests with a detection anomaly score greater than 0
+# 5 - Reporting for all requests
+#
+# Note: Reporting levels 1 and 2 make it possible to differentiate between
+# requests that are blocked and requests that are *not* blocked but would have
+# been blocked if the blocking PL was equal to detection PL. This may be useful
+# for certain FP tuning methodologies, for example moving to a higher PL.
+#
+# A value of 5 can be useful on platforms where you are interested in logging
+# non-scoring requests, yet it is not possible to report this information in
+# the request/access log. This applies to Nginx, for example.
+#
+#SecAction \
+#    "id:900115,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.reporting_level=4"
+
+
+#
+# -- [[ Early Anomaly Scoring Mode Blocking ]] ------------------------------
+#
+# The anomaly scores for the request and the responses are generally summed up
+# and evaluated at the end of phase:2 and at the end of phase:4 respectively.
+# However, it is possible to enable an early evaluation of these anomaly scores
+# at the end of phase:1 and at the end of phase:3.
+#
+# If a request (or a response) hits the anomaly threshold in this early
+# evaluation, then blocking happens immediately (if blocking is enabled) and
+# the phase 2 (and phase 4 respectively) will no longer be executed.
 #
+# Enable the rule 900120 that sets the variable tx.early_blocking to 1 in order
+# to enable early blocking. The variable tx.early_blocking is set to 0 by
+# default. Early blocking is thus disabled by default.
+#
+# Please note that early blocking will hide potential alerts from you. This
+# means that a payload that would appear in an alert in phase 2 (or phase 4)
+# does not get evaluated if the request is being blocked early. So when you
+# disabled early blocking again at some point in the future, then new alerts
+# from phase 2 might pop up.
 #SecAction \
-# "id:900130,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.crs_exclusions_cpanel=1,\
-#  setvar:tx.crs_exclusions_drupal=1,\
-#  setvar:tx.crs_exclusions_dokuwiki=1,\
-#  setvar:tx.crs_exclusions_nextcloud=1,\
-#  setvar:tx.crs_exclusions_wordpress=1,\
-#  setvar:tx.crs_exclusions_xenforo=1"
+#    "id:900120,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.early_blocking=1"
+
+
+#
+# -- [[ Initialize Default Collections ]] -----------------------------------
+#
+# CRS provides a centralized option to initialize and populate collections
+# meant to be used by plugins (E.g.DoS protection plugin).
+# By default, Global and IP collections (see rule 901320),
+# being not used by core rules, are not initialized.
+#
+# Uncomment this rule to change the default:
+#
+#SecAction \
+#    "id:900130,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.enable_default_collections=1"
+
 
 #
 # -- [[ HTTP Policy Settings ]] ------------------------------------------------
@@ -371,7 +435,6 @@ SecAction \
 #
 # These variables are used in the following rule files:
 # - REQUEST-911-METHOD-ENFORCEMENT.conf
-# - REQUEST-912-DOS-PROTECTION.conf
 # - REQUEST-920-PROTOCOL-ENFORCEMENT.conf
 
 # HTTP methods that a client is allowed to use.
@@ -381,12 +444,12 @@ SecAction \
 #          MERGE MKACTIVITY MKCOL MOVE PROPFIND PROPPATCH PUT UNLOCK
 # Uncomment this rule to change the default.
 #SecAction \
-# "id:900200,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.allowed_methods=GET HEAD POST OPTIONS'"
+#    "id:900200,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:'tx.allowed_methods=GET HEAD POST OPTIONS'"
 
 # Content-Types that a client is allowed to send in a request.
 # Default: |application/x-www-form-urlencoded| |multipart/form-data| |multipart/related|
@@ -407,105 +470,141 @@ SecAction \
 #
 # To prevent blocking request with not allowed content-type by default, you can create an exclusion
 # rule that removes rule 920420. For example:
-# SecRule REQUEST_HEADERS:Content-Type "@rx ^text/plain" \
-#  "id:1234,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  ctl:ruleRemoveById=920420,\
-#  chain"
-#  SecRule REQUEST_URI "@rx ^/foo/bar" "t:none"
+#SecRule REQUEST_HEADERS:Content-Type "@rx ^text/plain" \
+#    "id:1234,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    ctl:ruleRemoveById=920420,\
+#    chain"
+#    SecRule REQUEST_URI "@rx ^/foo/bar" \
+#        "t:none"
 #
 # Uncomment this rule to change the default.
 #
-SecAction \
-"id:900220,\
- phase:1,\
- nolog,\
- pass,\
- t:none,\
- setvar:'tx.allowed_request_content_type=|application/x-www-form-urlencoded| |multipart/form-data| |multipart/related| |text/xml| |application/xml| |application/soap+xml| |application/json| |application/cloudevents+json| |application/cloudevents-batch+json| |application/grpc| |application/grpc+proto| |application/grpc+json| |application/octet-stream|'"
+#SecAction \
+#    "id:900220,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:'tx.allowed_request_content_type=|application/x-www-form-urlencoded| |multipart/form-data| |multipart/related| |text/xml| |application/xml| |application/soap+xml| |application/json| |application/cloudevents+json| |application/cloudevents-batch+json|'"
 
 # Allowed HTTP versions.
-# Default: HTTP/1.0 HTTP/1.1 HTTP/2 HTTP/2.0
-# Example for legacy clients: HTTP/0.9 HTTP/1.0 HTTP/1.1 HTTP/2 HTTP/2.0
+# Default: HTTP/1.0 HTTP/1.1 HTTP/2 HTTP/2.0 HTTP/3 HTTP/3.0
+# Example for legacy clients: HTTP/0.9 HTTP/1.0 HTTP/1.1 HTTP/2 HTTP/2.0 HTTP/3 HTTP/3.0
 # Note that some web server versions use 'HTTP/2', some 'HTTP/2.0', so
 # we include both version strings by default.
 # Uncomment this rule to change the default.
 #SecAction \
-# "id:900230,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.allowed_http_versions=HTTP/1.0 HTTP/1.1 HTTP/2 HTTP/2.0'"
+#    "id:900230,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:'tx.allowed_http_versions=HTTP/1.0 HTTP/1.1 HTTP/2 HTTP/2.0 HTTP/3 HTTP/3.0'"
 
 # Forbidden file extensions.
 # Guards against unintended exposure of development/configuration files.
-# Default: .asa/ .asax/ .ascx/ .axd/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/
+# Default: .asa/ .asax/ .ascx/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/
 # Example: .bak/ .config/ .conf/ .db/ .ini/ .log/ .old/ .pass/ .pdb/ .rdb/ .sql/
+# Note that .axd was removed due to false positives (see PR 1925).
+#
+# To additionally guard against configuration/install archive files from being
+# accidentally exposed, common archive file extensions can be added to the
+# restricted extensions list. An example list of common archive file extensions
+# is presented below:
+# .7z/ .br/ .bz/ .bz2/ .cab/ .cpio/ .gz/ .img/ .iso/ .jar/ .rar/ .tar/ .tbz2/ .tgz/ .txz/ .xz/ .zip/ .zst/
+# (Source: https://en.wikipedia.org/wiki/List_of_archive_formats)
+#
 # Uncomment this rule to change the default.
 #SecAction \
-# "id:900240,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.restricted_extensions=.asa/ .asax/ .ascx/ .axd/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/'"
-
-# Forbidden request headers.
-# Header names should be lowercase, enclosed by /slashes/ as delimiters.
-# Default: /accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/
-#
-# Note: Accept-Charset is a deprecated header that should not be used by clients and
-# ignored by servers. It can be used for a response WAF bypass, by asking for a charset
-# that the WAF cannot decode.
-# Reference: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Accept-Charset
-#
-# Note: Content-Encoding is used to list any encodings that have been applied to the
-# original payload. It is only used for compression, which isn't supported by CRS by
-# default since it blocks newlines and null bytes inside the request body. Most
-# compression algorithms require at least null bytes per RFC. Blocking it shouldn't
-# break anything and increases security since ModSecurity is incapable of properly
-# scanning compressed request bodies.
-#
-# Note: Blocking Proxy header prevents 'httpoxy' vulnerability: https://httpoxy.org
+#    "id:900240,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:'tx.restricted_extensions=.asa/ .asax/ .ascx/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/'"
+
+# Restricted request headers.
+# The HTTP request headers that CRS restricts are split into two categories:
+# basic (always forbidden) and extended (may be forbidden). All header names
+# should be lowercase and enclosed by /slashes/ as delimiters.
+#
+# [ Basic ]
+# Includes deprecated headers and headers with known security risks. Always
+# forbidden.
+# Default: /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/ /x-http-method-override/ /x-http-method/ /x-method-override/
+#
+# /content-encoding/
+#   Used to list any encodings that have been applied to the original payload.
+#   Only used for compression, which isn't supported by CRS by default since CRS
+#   blocks newlines and null bytes inside the request body. Most compression
+#   algorithms require at least null bytes per RFC. Blocking Content-Encoding
+#   shouldn't break anything and increases security since WAF engines, including
+#   ModSecurity, are typically incapable of properly scanning compressed request
+#   bodies.
+#
+# /proxy/
+#   Blocking this prevents the 'httpoxy' vulnerability: https://httpoxy.org
+#
+# /lock-token/
+#
+# /content-range/
+#
+# /if/
+#
+# /x-http-method-override/
+# /x-http-method/
+# /x-method-override/
+#   Blocking these headers prevents method override attacks, as described here:
+#   https://www.sidechannel.blog/en/http-method-override-what-it-is-and-how-a-pentester-can-use-it
 #
 # Uncomment this rule to change the default.
 #SecAction \
-# "id:900250,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.restricted_headers=/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/'"
-
-# File extensions considered static files.
-# Extensions include the dot, lowercase, enclosed by /slashes/ as delimiters.
-# Used in DoS protection rule. See section "Anti-Automation / DoS Protection".
-# Default: /.jpg/ /.jpeg/ /.png/ /.gif/ /.js/ /.css/ /.ico/ /.svg/ /.webp/
+#    "id:900250,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:'tx.restricted_headers_basic=/content-encoding/ /proxy/ /lock-token/ /content-range/ /if/ /x-http-method-override/ /x-http-method/ /x-method-override/'"
+#
+# [ Extended ]
+# Includes deprecated headers that are still in use (so false positives are
+# possible) and headers with possible security risks. Forbidden at a higher
+# paranoia level.
+# Default: /accept-charset/
+#
+# /accept-charset/
+#   Deprecated header that should not be used by clients and should be ignored
+#   by servers. Can be used for a response WAF bypass by asking for a charset
+#   that the WAF cannot decode. Considered to be a good indicator of suspicious
+#   behavior but produces too many false positives to be forbidden by default.
+#   References:
+#   https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Accept-Charset
+#   https://github.com/coreruleset/coreruleset/issues/3140
+#
 # Uncomment this rule to change the default.
 #SecAction \
-# "id:900260,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.static_extensions=/.jpg/ /.jpeg/ /.png/ /.gif/ /.js/ /.css/ /.ico/ /.svg/ /.webp/'"
+#    "id:900255,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:'tx.restricted_headers_extended=/accept-charset/'"
 
 # Content-Types charsets that a client is allowed to send in a request.
-# Default: utf-8|iso-8859-1|iso-8859-15|windows-1252
+# The content-types are enclosed by |pipes| as delimiters to guarantee exact matches.
+# Default: |utf-8| |iso-8859-1| |iso-8859-15| |windows-1252|
 # Uncomment this rule to change the default.
-# Use "|" to separate multiple charsets like in the rule defining
-# tx.allowed_request_content_type.
 #SecAction \
-# "id:900280,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.allowed_request_content_type_charset=utf-8|iso-8859-1|iso-8859-15|windows-1252'"
+#    "id:900280,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:'tx.allowed_request_content_type_charset=|utf-8| |iso-8859-1| |iso-8859-15| |windows-1252|'"
 
 #
 # -- [[ HTTP Argument/Upload Limits ]] -----------------------------------------
@@ -522,72 +621,72 @@ SecAction \
 # Example: 255
 # Uncomment this rule to set a limit.
 #SecAction \
-# "id:900300,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.max_num_args=255"
+#    "id:900300,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.max_num_args=255"
 
 # Block request if the length of any argument name is too high
 # Default: unlimited
 # Example: 100
 # Uncomment this rule to set a limit.
 #SecAction \
-# "id:900310,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.arg_name_length=100"
+#    "id:900310,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.arg_name_length=100"
 
 # Block request if the length of any argument value is too high
 # Default: unlimited
 # Example: 400
 # Uncomment this rule to set a limit.
 #SecAction \
-# "id:900320,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.arg_length=400"
+#    "id:900320,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.arg_length=400"
 
 # Block request if the total length of all combined arguments is too high
 # Default: unlimited
 # Example: 64000
 # Uncomment this rule to set a limit.
 #SecAction \
-# "id:900330,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.total_arg_length=64000"
+#    "id:900330,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.total_arg_length=64000"
 
 # Block request if the file size of any individual uploaded file is too high
 # Default: unlimited
 # Example: 1048576
 # Uncomment this rule to set a limit.
 #SecAction \
-# "id:900340,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.max_file_size=1048576"
+#    "id:900340,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.max_file_size=1048576"
 
 # Block request if the total size of all combined uploaded files is too high
 # Default: unlimited
 # Example: 1048576
 # Uncomment this rule to set a limit.
 #SecAction \
-# "id:900350,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.combined_file_sizes=1048576"
+#    "id:900350,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.combined_file_sizes=1048576"
 
 
 #
@@ -612,7 +711,7 @@ SecAction \
 # following directive somewhere after the inclusion of the CRS
 # (E.g., RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf).
 #
-# SecRuleUpdateActionById 901150 "nolog"
+#SecRuleUpdateActionById 901450 "nolog"
 #
 # ATTENTION: If this TX.sampling_percentage is below 100, then some of the
 # requests will bypass the Core Rules completely and you lose the ability to
@@ -620,148 +719,14 @@ SecAction \
 #
 # Uncomment this rule to enable this feature:
 #
-#SecAction "id:900400,\
-#  phase:1,\
-#  pass,\
-#  nolog,\
-#  setvar:tx.sampling_percentage=100"
-
-
-#
-# -- [[ Project Honey Pot HTTP Blacklist ]] ------------------------------------
-#
-# Optionally, you can check the client IP address against the Project Honey Pot
-# HTTPBL (dnsbl.httpbl.org). In order to use this, you need to register to get a
-# free API key. Set it here with SecHttpBlKey.
-#
-# Project Honeypot returns multiple different malicious IP types.
-# You may specify which you want to block by enabling or disabling them below.
-#
-# Ref: https://www.projecthoneypot.org/httpbl.php
-# Ref: https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#wiki-SecHttpBlKey
-#
-# Uncomment these rules to use this feature:
-#
-#SecHttpBlKey XXXXXXXXXXXXXXXXX
-#SecAction "id:900500,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.block_search_ip=1,\
-#  setvar:tx.block_suspicious_ip=1,\
-#  setvar:tx.block_harvester_ip=1,\
-#  setvar:tx.block_spammer_ip=1"
-
-
-#
-# -- [[ GeoIP Database ]] ------------------------------------------------------
-#
-# There are some rulesets that inspect geolocation data of the client IP address
-# (geoLookup). The CRS uses geoLookup to implement optional country blocking.
-#
-# To use geolocation, we make use of the MaxMind GeoIP database.
-# This database is not included with the CRS and must be downloaded.
-#
-# There are two formats for the GeoIP database. ModSecurity v2 uses GeoLite (.dat files),
-# and ModSecurity v3 uses GeoLite2 (.mmdb files).
-#
-# If you use ModSecurity 3, MaxMind provides a binary for updating GeoLite2 files,
-# see https://github.com/maxmind/geoipupdate.
-#
-# Download the package for your OS, and read https://dev.maxmind.com/geoip/geoipupdate/
-# for configuration options.
-#
-# Warning: GeoLite (not GeoLite2) databases are considered legacy, and not being updated anymore.
-# See https://support.maxmind.com/geolite-legacy-discontinuation-notice/ for more info.
-#
-# Therefore, if you use ModSecurity v2, you need to regenerate updated .dat files
-# from CSV files first.
-#
-# You can achieve this using https://github.com/sherpya/geolite2legacy
-# Pick the zip files from maxmind site:
-# https://geolite.maxmind.com/download/geoip/database/GeoLite2-Country-CSV.zip
-#
-# Follow the guidelines for installing the tool and run:
-# ./geolite2legacy.py -i GeoLite2-Country-CSV.zip \
-#                     -f geoname2fips.csv -o /usr/share/GeoliteCountry.dat
-#
-# Update the database regularly, see Step 3 of the configuration link above.
-#
-# By default, when you execute `sudo geoipupdate` on Linux, files from the free database
-# will be downloaded to `/usr/share/GeoIP` (both v1 and v2).
-#
-# Then choose from:
-#   - `GeoLite2-Country.mmdb` (if you are using ModSecurity v3)
-#   - `GeoLiteCountry.dat`    (if you are using ModSecurity v2)
-#
-# Ref: http://blog.spiderlabs.com/2010/10/detecting-malice-with-modsecurity-geolocation-data.html
-# Ref: http://blog.spiderlabs.com/2010/11/detecting-malice-with-modsecurity-ip-forensics.html
-#
-# Uncomment only one of the next rules here to use this feature.
-# Choose the one depending on the ModSecurity version you are using, and change the path accordingly:
-#
-# For ModSecurity v3:
-#SecGeoLookupDB /usr/share/GeoIP/GeoLite2-Country.mmdb
-# For ModSecurity v2 (points to the converted one):
-#SecGeoLookupDB /usr/share/GeoIP/GeoLiteCountry.dat
-
-#
-# -=[ Block Countries ]=-
-#
-# Rules in the IP Reputation file can check the client against a list of high
-# risk country codes. These countries have to be defined in the variable
-# tx.high_risk_country_codes via their ISO 3166 two-letter country code:
-# https://en.wikipedia.org/wiki/ISO_3166-1_alpha-2#Officially_assigned_code_elements
-#
-# If you are sure that you are not getting any legitimate requests from a given
-# country, then you can disable all access from that country via this variable.
-# The rule performing the test has the rule id 910100.
-#
-# This rule requires SecGeoLookupDB to be enabled and the GeoIP database to be
-# downloaded (see the section "GeoIP Database" above.)
-#
-# By default, the list is empty. A list used by some sites was the following:
-# setvar:'tx.high_risk_country_codes=UA ID YU LT EG RO BG TR RU PK MY CN'"
-#
-# Uncomment this rule to use this feature:
-#
 #SecAction \
-# "id:900600,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.high_risk_country_codes='"
+#    "id:900400,\
+#    phase:1,\
+#    pass,\
+#    nolog,\
+#    setvar:tx.sampling_percentage=100"
 
 
-#
-# -- [[ Anti-Automation / DoS Protection ]] ------------------------------------
-#
-# Optional DoS protection against clients making requests too quickly.
-#
-# When a client is making more than 100 requests (excluding static files) within
-# 60 seconds, this is considered a 'burst'. After two bursts, the client is
-# blocked for 600 seconds.
-#
-# Requests to static files are not counted towards DoS; they are listed in the
-# 'tx.static_extensions' setting, which you can change in this file (see
-# section "HTTP Policy Settings").
-#
-# For a detailed description, see rule file REQUEST-912-DOS-PROTECTION.conf.
-#
-# Uncomment this rule to use this feature:
-#
-#SecAction \
-# "id:900700,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:'tx.dos_burst_time_slice=60',\
-#  setvar:'tx.dos_counter_threshold=100',\
-#  setvar:'tx.dos_block_timeout=600'"
-
 
 #
 # -- [[ Check UTF-8 encoding ]] ------------------------------------------------
@@ -773,62 +738,12 @@ SecAction \
 # Uncomment this rule to use this feature:
 #
 #SecAction \
-# "id:900950,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.crs_validate_utf8_encoding=1"
-
-
-#
-# -- [[ Blocking Based on IP Reputation ]] ------------------------------------
-#
-# Blocking based on reputation is permanent in the CRS. Unlike other rules,
-# which look at the individual request, the blocking of IPs is based on
-# a persistent record in the IP collection, which remains active for a
-# certain amount of time.
-#
-# There are two ways an individual client can become flagged for blocking:
-# - External information (RBL, GeoIP, etc.)
-# - Internal information (Core Rules)
-#
-# The record in the IP collection carries a flag, which tags requests from
-# individual clients with a flag named IP.reput_block_flag.
-# But the flag alone is not enough to have a client blocked. There is also
-# a global switch named tx.do_reput_block. This is off by default. If you set
-# it to 1 (=On), requests from clients with the IP.reput_block_flag will
-# be blocked for a certain duration.
-#
-# Variables
-# ip.reput_block_flag      Blocking flag for the IP collection record
-# ip.reput_block_reason    Reason (= rule message) that caused to blocking flag
-# tx.do_reput_block        Switch deciding if we really block based on flag
-# tx.reput_block_duration  Setting to define the duration of a block
-#
-# It may be important to know, that all the other core rules are skipped for
-# requests, when it is clear that they carry the blocking flag in question.
-#
-# Uncomment this rule to use this feature:
-#
-#SecAction \
-# "id:900960,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.do_reput_block=1"
-#
-# Uncomment this rule to change the blocking time:
-# Default: 300 (5 minutes)
-#
-#SecAction \
-# "id:900970,\
-#  phase:1,\
-#  nolog,\
-#  pass,\
-#  t:none,\
-#  setvar:tx.reput_block_duration=300"
+#    "id:900950,\
+#    phase:1,\
+#    pass,\
+#    t:none,\
+#    nolog,\
+#    setvar:tx.crs_validate_utf8_encoding=1"
 
 
 #
@@ -838,11 +753,11 @@ SecAction \
 # to a lower setting which is appropriate to most sites.
 # This increases performance by cleaning out stale collection (block) entries.
 #
-# This value should be greater than or equal to:
-# tx.reput_block_duration (see section "Blocking Based on IP Reputation") and
-# tx.dos_block_timeout (see section "Anti-Automation / DoS Protection").
+# This value should be greater than or equal to any block durations or timeouts
+# set by plugins that make use of ModSecurity's persistent collections (e.g. the
+# DoS protection and IP reputation plugins).
 #
-# Ref: https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#wiki-SecCollectionTimeout
+# Ref: https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual-(v2.x)#SecCollectionTimeout
 
 # Please keep this directive uncommented.
 # Default: 600 (10 minutes)
@@ -866,4 +781,4 @@ SecAction \
     pass,\
     t:none,\
     nolog,\
-    setvar:tx.crs_setup_version=335"
+    setvar:tx.crs_setup_version=400"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/modsecdefault.conf b/pkg/render/applicationlayer/embed/coreruleset/modsecdefault.conf
similarity index 72%
rename from pkg/render/applicationlayer/modsec-core-ruleset/modsecdefault.conf
rename to pkg/render/applicationlayer/embed/coreruleset/modsecdefault.conf
index 395d82cedc..3b9d8a7416 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/modsecdefault.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/modsecdefault.conf
@@ -1,6 +1,6 @@
 # -- Rule engine initialization ----------------------------------------------
 
-# Enable ModSecurity, attaching it to every transaction. Use detection
+# Enable Coraza, attaching it to every transaction. Use detection
 # only to start with, because that minimises the chances of post-installation
 # disruption.
 #
@@ -9,13 +9,12 @@ SecRuleEngine DetectionOnly
 
 # -- Request body handling ---------------------------------------------------
 
-# Allow ModSecurity to access request bodies. If you don't, ModSecurity
+# Allow Coraza to access request bodies. If you don't, Coraza
 # won't be able to see any POST parameters, which opens a large security
 # hole for attackers to exploit.
 #
 SecRequestBodyAccess On
 
-
 # Enable XML request body parser.
 # Initiate XML Processor in case of xml content-type
 #
@@ -43,30 +42,18 @@ SecRule REQUEST_HEADERS:Content-Type "^application/json" \
 # low as practical.
 #
 SecRequestBodyLimit 13107200
+
+SecRequestBodyInMemoryLimit 131072
+
 SecRequestBodyNoFilesLimit 131072
 
 # What to do if the request body size is above our configured limit.
 # Keep in mind that this setting will automatically be set to ProcessPartial
 # when SecRuleEngine is set to DetectionOnly mode in order to minimize
-# disruptions when initially deploying ModSecurity.
+# disruptions when initially deploying Coraza.
 #
 SecRequestBodyLimitAction Reject
 
-# Maximum parsing depth allowed for JSON objects. You want to keep this
-# value as low as practical.
-#
-SecRequestBodyJsonDepthLimit 512
-
-# Maximum number of args allowed per request. You want to keep this
-# value as low as practical. The value should match that in rule 200007.
-SecArgumentsLimit 1000
-
-# If SecArgumentsLimit has been set, you probably want to reject any
-# request body that has only been partly parsed. The value used in this
-# rule should match what was used with SecArgumentsLimit
-SecRule &ARGS "@ge 1000" \
-"id:'200007', phase:2,t:none,log,deny,status:400,msg:'Failed to fully parse request body due to large argument count',severity:2"
-
 # Verify that we've correctly processed the request body.
 # As a rule of thumb, when failing to process a request body
 # you should reject the request (when deployed in blocking mode)
@@ -98,7 +85,7 @@ FL %{MULTIPART_FILE_LIMIT_EXCEEDED}'"
 
 # Did we see anything that might be a boundary?
 #
-# Here is a short description about the ModSecurity Multipart parser: the
+# Here is a short description about the Coraza Multipart parser: the
 # parser returns with value 0, if all "boundary-like" line matches with
 # the boundary string which given in MIME header. In any other cases it returns
 # with different value, eg. 1 or 2.
@@ -125,7 +112,7 @@ FL %{MULTIPART_FILE_LIMIT_EXCEEDED}'"
 #
 # You can choose, which one is what you need. The example below contains the
 # 'strict' mode, which means if there are any lines with start of "--", then
-# ModSecurity blocked the content. But the next, commented example contains
+# Coraza blocked the content. But the next, commented example contains
 # the 'permissive' mode, then you check only if the necessary lines exists in
 # correct order. Whit this, you can enable to upload PEM files (eg "----BEGIN.."),
 # or other text files, which contains eg. HTTP headers.
@@ -143,25 +130,18 @@ FL %{MULTIPART_FILE_LIMIT_EXCEEDED}'"
 SecRule MULTIPART_UNMATCHED_BOUNDARY "@eq 1" \
     "id:'200004',phase:2,t:none,log,deny,msg:'Multipart parser detected a possible unmatched boundary.'"
 
-
-# PCRE Tuning
-# We want to avoid a potential RegEx DoS condition
-#
-SecPcreMatchLimit 1000
-SecPcreMatchLimitRecursion 1000
-
 # Some internal errors will set flags in TX and we will need to look for these.
 # All of these are prefixed with "MSC_".  The following flags currently exist:
 #
-# MSC_PCRE_LIMITS_EXCEEDED: PCRE match limits were exceeded.
+# COR_PCRE_LIMITS_EXCEEDED: PCRE match limits were exceeded.
 #
-SecRule TX:/^MSC_/ "!@streq 0" \
-        "id:'200005',phase:2,t:none,deny,msg:'ModSecurity internal error flagged: %{MATCHED_VAR_NAME}'"
+SecRule TX:/^COR_/ "!@streq 0" \
+        "id:'200005',phase:2,t:none,deny,msg:'Coraza internal error flagged: %{MATCHED_VAR_NAME}'"
 
 
 # -- Response body handling --------------------------------------------------
 
-# Allow ModSecurity to access response bodies. 
+# Allow Coraza to access response bodies. 
 # You should have this directive enabled in order to identify errors
 # and data leakage issues.
 # 
@@ -188,15 +168,7 @@ SecResponseBodyLimitAction ProcessPartial
 
 # -- Filesystem configuration ------------------------------------------------
 
-# The location where ModSecurity stores temporary files (for example, when
-# it needs to handle a file upload that is larger than the configured limit).
-# 
-# This default setting is chosen due to all systems have /tmp available however, 
-# this is less than ideal. It is recommended that you specify a location that's private.
-#
-SecTmpDir /tmp/
-
-# The location where ModSecurity will keep its persistent data.  This default setting 
+# The location where Coraza will keep its persistent data.  This default setting 
 # is chosen due to all systems have /tmp available however, it
 # too should be updated to a place that other users can't access.
 #
@@ -205,11 +177,11 @@ SecDataDir /tmp/
 
 # -- File uploads handling configuration -------------------------------------
 
-# The location where ModSecurity stores intercepted uploaded files. This
-# location must be private to ModSecurity. You don't want other users on
+# The location where Coraza stores intercepted uploaded files. This
+# location must be private to Coraza. You don't want other users on
 # the server to access the files, do you?
 #
-#SecUploadDir /opt/modsecurity/var/upload/
+#SecUploadDir /opt/coraza/var/upload/
 
 # By default, only keep the files that were determined to be unusual
 # in some way (by an external inspection script). For this to work you
@@ -219,17 +191,24 @@ SecDataDir /tmp/
 
 # Uploaded files are by default created with permissions that do not allow
 # any other user to access them. You may need to relax that if you want to
-# interface ModSecurity to an external program (e.g., an anti-virus).
+# interface Coraza to an external program (e.g., an anti-virus).
 #
 #SecUploadFileMode 0600
 
 
 # -- Debug log configuration -------------------------------------------------
 
-# The default debug log configuration is to duplicate the error, warning
-# and notice messages from the error log.
-#
-#SecDebugLog /opt/modsecurity/var/log/debug.log
+# Default debug log path
+# Debug levels:
+# 0:   No logging (least verbose)
+# 1:   Error
+# 2:   Warn
+# 3:   Info
+# 4-8: Debug
+# 9:   Trace (most verbose)
+# Most logging has not been implemented because it will be replaced with
+# advanced rule profiling options
+#SecDebugLog /opt/coraza/var/log/debug.log
 #SecDebugLogLevel 3
 
 
@@ -240,19 +219,15 @@ SecDataDir /tmp/
 # level response status codes).
 #
 SecAuditEngine RelevantOnly
-SecAuditLogRelevantStatus "^(?:5|4(?!04))"
+SecAuditLogRelevantStatus "^(?:(5|4)(0|1)[0-9])$"
 
 # Log everything we know about a transaction.
 SecAuditLogParts ABIJDEFHZ
 
 # Use a single file for logging. This is much easier to look at, but
-# assumes that you will use the audit log only ocassionally.
+# assumes that you will use the audit log only occasionally.
 #
 SecAuditLogType Serial
-SecAuditLog /var/log/modsec_audit.log
-
-# Specify the path for concurrent audit logging.
-#SecAuditLogStorageDir /opt/modsecurity/var/audit/
 
 
 # -- Miscellaneous -----------------------------------------------------------
@@ -268,18 +243,3 @@ SecArgumentSeparator &
 # evasion attacks (against the rules that examine named cookies).
 #
 SecCookieFormat 0
-
-# Specify your Unicode Code Point.
-# This mapping is used by the t:urlDecodeUni transformation function
-# to properly map encoded data to your language. Properly setting
-# these directives helps to reduce false positives and negatives.
-#
-SecUnicodeMapFile unicode.mapping 20127
-
-# Improve the quality of ModSecurity by sharing information about your
-# current ModSecurity version and dependencies versions.
-# The following information will be shared: ModSecurity version,
-# Web Server version, APR version, PCRE version, Lua version, Libxml2
-# version, Anonymous unique id for host.
-SecStatusEngine On
-
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example
similarity index 79%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example
index ad857bfb0e..e856911a5b 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -82,9 +82,9 @@
 # This ruleset allows you to control how ModSecurity will handle traffic
 # originating from Authorized Vulnerability Scanning (AVS) sources.  See
 # related blog post -
-# http://blog.spiderlabs.com/2010/12/advanced-topic-of-the-week-handling-authorized-scanning-traffic.html
+# https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/updated-advanced-topic-of-the-week-handling-authorized-scanning-traffic/
 #
-# White-list ASV network block (no blocking or logging of AVS traffic) Update
+# Allow List ASV network block (no blocking or logging of AVS traffic) Update
 # IP network block as appropriate for your AVS traffic
 #
 # ModSec Rule Exclusion: Disable Rule Engine for known ASV IP
@@ -130,7 +130,7 @@
 # Example Exclusion Rule: Removing a specific ARGS parameter from inspection
 #                         for all CRS rules
 #
-# This rule illustrates that we can use tagging very effectively to whitelist a
+# This rule illustrates that we can use tagging very effectively to allow list a
 # common false positive across an entire ModSecurity instance. This can be done
 # because every rule in OWASP_CRS is tagged with OWASP_CRS. This will NOT
 # affect custom rules.
@@ -150,6 +150,10 @@
 # This rule illustrates that we can remove a rule range via a ctl action.
 # This uses the fact, that rules are grouped by topic in rule files covering
 # a certain id range.
+# IMPORTANT: ModSecurity v3, aka libModSecurity, does not currently support the
+# use of rule ranges in a ruleRemoveById ctl action (this feature has been
+# planned for v3.1). Consider using ruleRemoveByTag as a workaround, if
+# appropriate.
 #
 # ModSecurity Rule Exclusion: Disable all SQLi and XSS rules
 # SecRule REQUEST_FILENAME "@beginsWith /admin" \
@@ -160,7 +164,37 @@
 #     ctl:ruleRemoveById=941000-942999"
 #
 #
-# The application specific rule exclusion files
-# REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf
-# REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
-# bring additional examples which can be useful then tuning a service.
+# The application-specific rule exclusion plugins
+# (see: https://github.com/coreruleset/plugin-registry)
+# provide additional examples which can be useful then tuning a service.
+
+
+#
+# Example Rule: Allow monitoring tools and scripts
+#
+# Uncomment this rule to allow all requests from trusted IPs and User-Agent.
+# This can be useful for monitoring tools like Monit, Nagios, or other agents.
+# For example, if you're using AWS Load Balancer, you may need to trust all
+# requests from "10.0.0.0/8" subnet that come with the user-agent
+# "ELB-HealthChecker/2.0". By doing this, all requests that match these
+# conditions will not be matched against the following rules:
+#
+# - id: 911100 (allowed methods)
+# - id: 913100 (scan detection)
+# - id: 920280 (missing/empty host header)
+# - id: 920350 (IP address in host header)
+# - tag: attack-disclosure (all RESPONSE-*-DATA-LEAKAGES rules)
+#
+# SecRule REMOTE_ADDR "@ipMatch 10.0.0.0/8" \
+#    "id:1005,\
+#    phase:1,\
+#    pass,\
+#    nolog,\
+#    chain"
+#    SecRule REQUEST_METHOD "@pm GET HEAD" "chain"
+#       SecRule REQUEST_HEADERS:User-Agent "@pm ELB-HealthChecker" \
+#           "ctl:ruleRemoveById=911100,\
+#           ctl:ruleRemoveById=913100,\
+#           ctl:ruleRemoveById=920280,\
+#           ctl:ruleRemoveById=920350,\
+#           ctl:ruleRemoveByTag=attack-disclosure"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-901-INITIALIZATION.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-901-INITIALIZATION.conf
similarity index 63%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-901-INITIALIZATION.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-901-INITIALIZATION.conf
index 27fd54ad1f..498ad885f1 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-901-INITIALIZATION.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-901-INITIALIZATION.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -12,7 +12,7 @@
 # This file REQUEST-901-INITIALIZATION.conf initializes the Core Rules
 # and performs preparatory actions. It also fixes errors and omissions
 # of variable definitions in the file crs-setup.conf.
-# The setup.conf can and should be edited by the user, this file
+# The crs-setup.conf can and should be edited by the user, this file
 # is part of the CRS installation and should not be altered.
 #
 
@@ -24,9 +24,9 @@
 #
 # - Producer: ModSecurity for Apache/2.9.1 (http://www.modsecurity.org/); OWASP_CRS/3.1.0.
 #
-# Ref: https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#wiki-SecComponentSignature
+# Ref: https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual-(v2.x)#seccomponentsignature
 #
-SecComponentSignature "OWASP_CRS/3.3.5"
+SecComponentSignature "OWASP_CRS/4.0.0-rc2"
 
 #
 # -=[ Default setup values ]=-
@@ -59,7 +59,7 @@ SecRule &TX:crs_setup_version "@eq 0" \
     log,\
     auditlog,\
     msg:'ModSecurity Core Rule Set is deployed without configuration! Please copy the crs-setup.conf.example template to crs-setup.conf, and include the crs-setup.conf file in your webserver configuration before including the CRS rules. See the INSTALL file in the CRS directory for detailed instructions',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL'"
 
 
@@ -67,62 +67,80 @@ SecRule &TX:crs_setup_version "@eq 0" \
 # -=[ Default setup values ]=-
 #
 # Some constructs or individual rules will fail if certain parameters
-# are not set in the setup.conf file. The following rules will catch
+# are not set in the crs-setup.conf file. The following rules will catch
 # these cases and assign sane default values.
 #
 
-# Default Inbound Anomaly Threshold Level (rule 900110 in setup.conf)
+# Default Inbound Anomaly Threshold Level (rule 900110 in crs-setup.conf)
 SecRule &TX:inbound_anomaly_score_threshold "@eq 0" \
     "id:901100,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.inbound_anomaly_score_threshold=5'"
 
-# Default Outbound Anomaly Threshold Level (rule 900110 in setup.conf)
+# Default Outbound Anomaly Threshold Level (rule 900110 in crs-setup.conf)
 SecRule &TX:outbound_anomaly_score_threshold "@eq 0" \
     "id:901110,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.outbound_anomaly_score_threshold=4'"
 
-# Default Paranoia Level (rule 900000 in setup.conf)
-SecRule &TX:paranoia_level "@eq 0" \
+# Default Reporting Level (rule 900115 in crs-setup.conf)
+SecRule &TX:reporting_level "@eq 0" \
+    "id:901111,\
+    phase:1,\
+    pass,\
+    nolog,\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.reporting_level=4'"
+
+# Default Early Blocking (rule 900120 in crs-setup.conf)
+SecRule &TX:early_blocking "@eq 0" \
+    "id:901115,\
+    phase:1,\
+    pass,\
+    nolog,\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.early_blocking=0'"
+
+# Default Blocking Paranoia Level (rule 900000 in crs-setup.conf)
+SecRule &TX:blocking_paranoia_level "@eq 0" \
     "id:901120,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.paranoia_level=1'"
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.blocking_paranoia_level=1'"
 
-# Default Executing Paranoia Level (rule 900000 in setup.conf)
-SecRule &TX:executing_paranoia_level "@eq 0" \
+# Default Detection Paranoia Level (rule 900001 in crs-setup.conf)
+SecRule &TX:detection_paranoia_level "@eq 0" \
     "id:901125,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.executing_paranoia_level=%{TX.PARANOIA_LEVEL}'"
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.detection_paranoia_level=%{TX.blocking_paranoia_level}'"
 
-# Default Sampling Percentage (rule 900400 in setup.conf)
+# Default Sampling Percentage (rule 900400 in crs-setup.conf)
 SecRule &TX:sampling_percentage "@eq 0" \
     "id:901130,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.sampling_percentage=100'"
 
-# Default Anomaly Scores (rule 900100 in setup.conf)
+# Default Anomaly Scores (rule 900100 in crs-setup.conf)
 SecRule &TX:critical_anomaly_score "@eq 0" \
     "id:901140,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.critical_anomaly_score=5'"
 
 SecRule &TX:error_anomaly_score "@eq 0" \
@@ -130,7 +148,7 @@ SecRule &TX:error_anomaly_score "@eq 0" \
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.error_anomaly_score=4'"
 
 SecRule &TX:warning_anomaly_score "@eq 0" \
@@ -138,7 +156,7 @@ SecRule &TX:warning_anomaly_score "@eq 0" \
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.warning_anomaly_score=3'"
 
 SecRule &TX:notice_anomaly_score "@eq 0" \
@@ -146,117 +164,90 @@ SecRule &TX:notice_anomaly_score "@eq 0" \
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.notice_anomaly_score=2'"
 
-# Default do_reput_block
-SecRule &TX:do_reput_block "@eq 0" \
-    "id:901150,\
-    phase:1,\
-    pass,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.do_reput_block=0'"
-
-# Default block duration
-SecRule &TX:reput_block_duration "@eq 0" \
-    "id:901152,\
-    phase:1,\
-    pass,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.reput_block_duration=300'"
-
-# Default HTTP policy: allowed_methods (rule 900200)
+# Default HTTP policy: allowed_methods (rule 900200 in crs-setup.conf)
 SecRule &TX:allowed_methods "@eq 0" \
     "id:901160,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.allowed_methods=GET HEAD POST OPTIONS'"
 
-# Default HTTP policy: allowed_request_content_type (rule 900220)
+# Default HTTP policy: allowed_request_content_type (rule 900220 in crs-setup.conf)
 SecRule &TX:allowed_request_content_type "@eq 0" \
     "id:901162,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.allowed_request_content_type=|application/x-www-form-urlencoded| |multipart/form-data| |multipart/related| |text/xml| |application/xml| |application/soap+xml| |application/json| |application/cloudevents+json| |application/cloudevents-batch+json|'"
 
-# Default HTTP policy: allowed_request_content_type_charset (rule 900270)
+# Default HTTP policy: allowed_request_content_type_charset (rule 900280 in crs-setup.conf)
 SecRule &TX:allowed_request_content_type_charset "@eq 0" \
     "id:901168,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.allowed_request_content_type_charset=utf-8|iso-8859-1|iso-8859-15|windows-1252'"
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.allowed_request_content_type_charset=|utf-8| |iso-8859-1| |iso-8859-15| |windows-1252|'"
 
-# Default HTTP policy: allowed_http_versions (rule 900230)
+# Default HTTP policy: allowed_http_versions (rule 900230 in crs-setup.conf)
 SecRule &TX:allowed_http_versions "@eq 0" \
     "id:901163,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.allowed_http_versions=HTTP/1.0 HTTP/1.1 HTTP/2 HTTP/2.0'"
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.allowed_http_versions=HTTP/1.0 HTTP/1.1 HTTP/2 HTTP/2.0 HTTP/3 HTTP/3.0'"
 
-# Default HTTP policy: restricted_extensions (rule 900240)
+# Default HTTP policy: restricted_extensions (rule 900240 in crs-setup.conf)
 SecRule &TX:restricted_extensions "@eq 0" \
     "id:901164,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.restricted_extensions=.asa/ .asax/ .ascx/ .axd/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/'"
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.restricted_extensions=.asa/ .asax/ .ascx/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/'"
 
-# Default HTTP policy: restricted_headers (rule 900250)
-SecRule &TX:restricted_headers "@eq 0" \
+# Default HTTP policy: restricted_headers_basic (rule 900250 in crs-setup.conf)
+SecRule &TX:restricted_headers_basic "@eq 0" \
     "id:901165,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.restricted_headers=/accept-charset/ /content-encoding/ /proxy/ /lock-token/ /content-range/ /if/'"
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.restricted_headers_basic=/content-encoding/ /proxy/ /lock-token/ /content-range/ /if/ /x-http-method-override/ /x-http-method/ /x-method-override/'"
 
-# Default HTTP policy: static_extensions (rule 900260)
-SecRule &TX:static_extensions "@eq 0" \
-    "id:901166,\
+# Default HTTP policy: restricted_headers_extended (rule 900255 in crs-setup.conf)
+SecRule &TX:restricted_headers_extended "@eq 0" \
+    "id:901171,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.static_extensions=/.jpg/ /.jpeg/ /.png/ /.gif/ /.js/ /.css/ /.ico/ /.svg/ /.webp/'"
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.restricted_headers_extended=/accept-charset/'"
 
-# Default enforcing of body processor URLENCODED
+# Default enforcing of body processor URLENCODED (rule 900010 in crs-setup.conf)
 SecRule &TX:enforce_bodyproc_urlencoded "@eq 0" \
     "id:901167,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.enforce_bodyproc_urlencoded=0'"
 
-# Default check for UTF8 encoding validation
+# Default check for UTF8 encoding validation (rule 900950 in crs-setup.conf)
 SecRule &TX:crs_validate_utf8_encoding "@eq 0" \
     "id:901169,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'tx.crs_validate_utf8_encoding=0'"
 
-# Default monitor_anomaly_score value
-SecRule &TX:monitor_anomaly_score "@eq 0" \
-    "id:901170,\
-    phase:1,\
-    pass,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.monitor_anomaly_score=0'"
-
 #
 # -=[ Initialize internal variables ]=-
 #
@@ -264,7 +255,6 @@ SecRule &TX:monitor_anomaly_score "@eq 0" \
 # Initialize anomaly scoring variables.
 # All _score variables start at 0, and are incremented by the various rules
 # upon detection of a possible attack.
-# sql_error_match is used for shortcutting rules for performance reasons.
 
 SecAction \
     "id:901200,\
@@ -272,12 +262,13 @@ SecAction \
     pass,\
     t:none,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.anomaly_score=0',\
-    setvar:'tx.anomaly_score_pl1=0',\
-    setvar:'tx.anomaly_score_pl2=0',\
-    setvar:'tx.anomaly_score_pl3=0',\
-    setvar:'tx.anomaly_score_pl4=0',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.blocking_inbound_anomaly_score=0',\
+    setvar:'tx.detection_inbound_anomaly_score=0',\
+    setvar:'tx.inbound_anomaly_score_pl1=0',\
+    setvar:'tx.inbound_anomaly_score_pl2=0',\
+    setvar:'tx.inbound_anomaly_score_pl3=0',\
+    setvar:'tx.inbound_anomaly_score_pl4=0',\
     setvar:'tx.sql_injection_score=0',\
     setvar:'tx.xss_score=0',\
     setvar:'tx.rfi_score=0',\
@@ -286,42 +277,35 @@ SecAction \
     setvar:'tx.php_injection_score=0',\
     setvar:'tx.http_violation_score=0',\
     setvar:'tx.session_fixation_score=0',\
-    setvar:'tx.inbound_anomaly_score=0',\
-    setvar:'tx.outbound_anomaly_score=0',\
+    setvar:'tx.blocking_outbound_anomaly_score=0',\
+    setvar:'tx.detection_outbound_anomaly_score=0',\
     setvar:'tx.outbound_anomaly_score_pl1=0',\
     setvar:'tx.outbound_anomaly_score_pl2=0',\
     setvar:'tx.outbound_anomaly_score_pl3=0',\
     setvar:'tx.outbound_anomaly_score_pl4=0',\
-    setvar:'tx.sql_error_match=0'"
+    setvar:'tx.anomaly_score=0'"
 
 
 #
 # -=[ Initialize collections ]=-
 #
 # Create both Global and IP collections for rules to use.
-# There are some CRS rules that assume that these two collections
-# have already been initiated.
-#
-
-SecRule REQUEST_HEADERS:User-Agent "@rx ^.*$" \
-    "id:901318,\
-    phase:1,\
-    pass,\
-    t:none,t:sha1,t:hexEncode,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.ua_hash=%{MATCHED_VAR}'"
+# Some plugins assume that these two collections have already
+# been initialized.
+# IP collection is initialized with the IP address concatened with the hashed user agent.
 
-SecAction \
-    "id:901321,\
+# Disable collection initialization by default (see rule 900130 in crs-setup.conf)
+SecRule TX:ENABLE_DEFAULT_COLLECTIONS "@eq 1" \
+    "id:901320,\
     phase:1,\
     pass,\
-    t:none,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    initcol:global=global,\
-    initcol:ip=%{remote_addr}_%{tx.ua_hash},\
-    setvar:'tx.real_ip=%{remote_addr}'"
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    chain"
+    SecRule REQUEST_HEADERS:User-Agent "@rx ^.*$" \
+        "t:none,t:sha1,t:hexEncode,\
+        initcol:global=global,\
+        initcol:ip=%{remote_addr}_%{MATCHED_VAR}"
 
 #
 # -=[ Initialize Correct Body Processing ]=-
@@ -338,7 +322,7 @@ SecRule REQBODY_PROCESSOR "!@rx (?:URLENCODED|MULTIPART|XML|JSON)" \
     noauditlog,\
     msg:'Enabling body inspection',\
     ctl:forceRequestBodyVariable=On,\
-    ver:'OWASP_CRS/3.3.5'"
+    ver:'OWASP_CRS/4.0.0-rc2'"
 
 # Force body processor URLENCODED
 SecRule TX:enforce_bodyproc_urlencoded "@eq 1" \
@@ -349,7 +333,7 @@ SecRule TX:enforce_bodyproc_urlencoded "@eq 1" \
     nolog,\
     noauditlog,\
     msg:'Enabling forced body inspection for ASCII content',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     chain"
     SecRule REQBODY_PROCESSOR "!@rx (?:URLENCODED|MULTIPART|XML|JSON)" \
         "ctl:requestBodyProcessor=URLENCODED"
@@ -377,57 +361,30 @@ SecRule TX:enforce_bodyproc_urlencoded "@eq 1" \
 #
 # We take the entropy contained in the UNIQUE_ID. We hash that variable and
 # take the first integer numbers out of it. Theoretically, it is possible
-# there are no integers in a sha1 hash. We make sure we get two
-# integer numbers by taking the last two digits from the DURATION counter
-# (in microseconds).
-# Finally, leading zeros are removed from the two-digit random number.
-#
+# but highly improbable that there are no integers in a hexEncoded sha1 hash.
+# In the very rare event that two integers are not matched (due to only being
+# a-f in all, or all but one positions) 901450 will not be triggered.
+# Leading zeros are not removed from the two-digit random number, and are
+# handled gracefullly by 901450
 
 SecRule TX:sampling_percentage "@eq 100" \
     "id:901400,\
     phase:1,\
     pass,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     skipAfter:END-SAMPLING"
 
-SecRule UNIQUE_ID "@rx ^." \
+SecRule UNIQUE_ID "@rx ^[a-f]*([0-9])[a-f]*([0-9])" \
     "id:901410,\
     phase:1,\
     pass,\
-    t:sha1,t:hexEncode,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'TX.sampling_rnd100=%{MATCHED_VAR}'"
-
-SecRule DURATION "@rx (..)$" \
-    "id:901420,\
-    phase:1,\
-    pass,\
-    capture,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'TX.sampling_rnd100=%{TX.sampling_rnd100}%{TX.1}'"
-
-SecRule TX:sampling_rnd100 "@rx ^[a-f]*([0-9])[a-f]*([0-9])" \
-    "id:901430,\
-    phase:1,\
-    pass,\
     capture,\
+    t:sha1,t:hexEncode,\
     nolog,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'TX.sampling_rnd100=%{TX.1}%{TX.2}'"
 
-SecRule TX:sampling_rnd100 "@rx ^0([0-9])" \
-    "id:901440,\
-    phase:1,\
-    pass,\
-    capture,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'TX.sampling_rnd100=%{TX.1}'"
-
-
 #
 # Sampling decision
 #
@@ -448,8 +405,8 @@ SecRule TX:sampling_rnd100 "!@lt %{tx.sampling_percentage}" \
     log,\
     noauditlog,\
     msg:'Sampling: Disable the rule engine based on sampling_percentage %{TX.sampling_percentage} and random number %{TX.sampling_rnd100}',\
-    ctl:ruleEngine=Off,\
-    ver:'OWASP_CRS/3.3.5'"
+    ctl:ruleRemoveByTag=OWASP_CRS,\
+    ver:'OWASP_CRS/4.0.0-rc2'"
 
 SecMarker "END-SAMPLING"
 
@@ -458,13 +415,13 @@ SecMarker "END-SAMPLING"
 # Configuration Plausibility Checks
 #
 
-# Make sure executing paranoia level is not lower than paranoia level
-SecRule TX:executing_paranoia_level "@lt %{tx.paranoia_level}" \
+# Make sure detection paranoia level is not lower than paranoia level
+SecRule TX:detection_paranoia_level "@lt %{tx.blocking_paranoia_level}" \
     "id:901500,\
     phase:1,\
     deny,\
     status:500,\
     t:none,\
     log,\
-    msg:'Executing paranoia level configured is lower than the paranoia level itself. This is illegal. Blocking request. Aborting',\
-    ver:'OWASP_CRS/3.3.5'"
+    msg:'Detection paranoia level configured is lower than the paranoia level itself. This is illegal. Blocking request. Aborting',\
+    ver:'OWASP_CRS/4.0.0-rc2'"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-905-COMMON-EXCEPTIONS.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-905-COMMON-EXCEPTIONS.conf
similarity index 88%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-905-COMMON-EXCEPTIONS.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-905-COMMON-EXCEPTIONS.conf
index 191f2ea3a6..5af67b03f9 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-905-COMMON-EXCEPTIONS.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-905-COMMON-EXCEPTIONS.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -24,11 +24,11 @@ SecRule REQUEST_LINE "@streq GET /" \
     tag:'language-multi',\
     tag:'platform-apache',\
     tag:'attack-generic',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     chain"
     SecRule REMOTE_ADDR "@ipMatch 127.0.0.1,::1" \
         "t:none,\
-        ctl:ruleEngine=Off,\
+        ctl:ruleRemoveByTag=OWASP_CRS,\
         ctl:auditEngine=Off"
 
 #
@@ -44,12 +44,12 @@ SecRule REMOTE_ADDR "@ipMatch 127.0.0.1,::1" \
     tag:'language-multi',\
     tag:'platform-apache',\
     tag:'attack-generic',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     chain"
     SecRule REQUEST_HEADERS:User-Agent "@endsWith (internal dummy connection)" \
         "t:none,\
         chain"
         SecRule REQUEST_LINE "@rx ^(?:GET /|OPTIONS \*) HTTP/[12]\.[01]$" \
             "t:none,\
-            ctl:ruleEngine=Off,\
+            ctl:ruleRemoveByTag=OWASP_CRS,\
             ctl:auditEngine=Off"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-911-METHOD-ENFORCEMENT.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-911-METHOD-ENFORCEMENT.conf
similarity index 65%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-911-METHOD-ENFORCEMENT.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-911-METHOD-ENFORCEMENT.conf
index 840fe2be5b..2831bc0fc9 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-911-METHOD-ENFORCEMENT.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-911-METHOD-ENFORCEMENT.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,10 +14,10 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:911011,phase:1,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:911012,phase:2,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:911011,phase:1,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:911012,phase:2,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 #
@@ -27,7 +27,7 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:911012,phase:2,pass,nolog,skipAf
 #
 SecRule REQUEST_METHOD "!@within %{tx.allowed_methods}" \
     "id:911100,\
-    phase:2,\
+    phase:1,\
     block,\
     msg:'Method is not allowed by policy',\
     logdata:'%{MATCHED_VAR}',\
@@ -39,33 +39,33 @@ SecRule REQUEST_METHOD "!@within %{tx.allowed_methods}" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/274',\
     tag:'PCI/12.1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:911013,phase:1,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:911014,phase:2,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:911013,phase:1,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:911014,phase:2,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:911015,phase:1,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:911016,phase:2,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:911015,phase:1,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:911016,phase:2,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:911017,phase:1,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:911018,phase:2,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:911017,phase:1,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:911018,phase:2,pass,nolog,skipAfter:END-REQUEST-911-METHOD-ENFORCEMENT"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-913-SCANNER-DETECTION.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-913-SCANNER-DETECTION.conf
new file mode 100644
index 0000000000..519634ab1c
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-913-SCANNER-DETECTION.conf
@@ -0,0 +1,86 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:913011,phase:1,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:913012,phase:2,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+#
+# -=[ Security Scanner Checks ]=-
+#
+# This rule inspects the default User-Agent and Header values sent by
+# various commercial and open source scanners, mostly
+# security / vulnerability scanners.
+#
+# It is based on a curated list of known malicious scanners in widespread use.
+# This list is maintained in scanners-user-agents.data.
+#
+# With CRSv4, the project has given up on keeping track of different categories
+# of scanners and scripting agents, mostly because it's very hard to draw
+# a line between benign, mostly benign and malicious. And because dedicated
+# attackers will change the user agent anyways.
+
+SecRule REQUEST_HEADERS:User-Agent "@pmFromFile scanners-user-agents.data" \
+    "id:913100,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Found User-Agent associated with security scanner',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-reputation-scanner',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/224/541/310',\
+    tag:'PCI/6.5.10',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:913013,phase:1,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:913014,phase:2,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:913015,phase:1,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:913016,phase:2,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:913017,phase:1,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:913018,phase:2,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-REQUEST-913-SCANNER-DETECTION"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-920-PROTOCOL-ENFORCEMENT.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
similarity index 68%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
index 7f3138797e..eca84d0d4a 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,7 +14,7 @@
 #
 # The purpose of this rules file is to enforce HTTP RFC requirements that state how
 # the client is supposed to interact with the server.
-# https://www.w3.org/Protocols/rfc2616/rfc2616-sec3.html
+# https://www.rfc-editor.org/rfc/rfc9110.html
 
 
 
@@ -23,10 +23,10 @@
 #
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:920011,phase:1,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:920012,phase:2,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:920011,phase:1,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:920012,phase:2,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 #
@@ -37,17 +37,22 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:920012,phase:2,pass,nolog,skipAf
 # Uses rule negation against the regex for positive security.   The regex specifies the proper
 # construction of URI request lines such as:
 #
-#   "http:" "//" host [ ":" port ] [ abs_path [ "?" query ]]
+#   "http" "://" authority path-abempty [ "?" query ]
 #
 # It also outlines proper construction for CONNECT, OPTIONS and GET requests.
 #
+# Regular expression generated from regex-assembly/920100.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 920100
+#
 # -=[ References ]=-
-# https://www.w3.org/Protocols/rfc2616/rfc2616-sec3.html#sec3.2.1
+# https://www.rfc-editor.org/rfc/rfc9110.html#section-4.2.1
 # http://capec.mitre.org/data/definitions/272.html
 #
-SecRule REQUEST_LINE "!@rx ^(?i:(?:[a-z]{3,10}\s+(?:\w{3,7}?://[\w\-\./]*(?::\d+)?)?/[^?#]*(?:\?[^#\s]*)?(?:#[\S]*)?|connect (?:\d{1,3}\.){3}\d{1,3}\.?(?::\d+)?|options \*)\s+[\w\./]+|get /[^?#]*(?:\?[^#\s]*)?(?:#[\S]*)?)$" \
+SecRule REQUEST_LINE "!@rx (?i)^(?:get /[^#\?]*(?:\?[^\s\v#]*)?(?:#[^\s\v]*)?|(?:connect (?:(?:[0-9]{1,3}\.){3}[0-9]{1,3}\.?(?::[0-9]+)?|[\--9A-Z_a-z]+:[0-9]+)|options \*|[a-z]{3,10}[\s\v]+(?:[0-9A-Z_a-z]{3,7}?://[\--9A-Z_a-z]*(?::[0-9]+)?)?/[^#\?]*(?:\?[^\s\v#]*)?(?:#[^\s\v]*)?)[\s\v]+[\.-9A-Z_a-z]+)$" \
     "id:920100,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'Invalid HTTP Request Line',\
@@ -59,9 +64,9 @@ SecRule REQUEST_LINE "!@rx ^(?i:(?:[a-z]{3,10}\s+(?:\w{3,7}?://[\w\-\./]*(?::\d+
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 
 #
@@ -76,27 +81,31 @@ SecRule REQUEST_LINE "!@rx ^(?i:(?:[a-z]{3,10}\s+(?:\w{3,7}?://[\w\-\./]*(?::\d+
 #
 # -=[ Rule Logic ]=-
 # These rules check for the existence of the ' " ; = meta-characters in
-# either the file or file name variables.
-# HTML entities may lead to false positives, why they are allowed on PL1.
-# Negative look behind assertions allow frequently used entities &_;
+# either the "name" (FILES) and "filename" (FILES_NAMES) variables.
+# HTML entities may lead to false positives, which is why
+# frequently used ones, such as "&auml;", are allowed at PL1.
 #
 # -=[ Targets, characters and html entities ]=-
 #
-# 920120: PL1 : FILES_NAMES, FILES
-#                ['\";=] but allowed:
-#                &[aAoOuUyY]uml); &[aAeEiIoOuU]circ; &[eEiIoOuUyY]acute;
-#                &[aAeEiIoOuU]grave; &[cC]cedil; &[aAnNoO]tilde; &amp; &apos;
+# 920120 + 920122: PL1 : FILES_NAMES, FILES
+#    Disallow ['\";=], except for frequently used HTML entities (see 920120.data).
 #
 # 920121: PL2 : FILES_NAMES, FILES
-#                ['\";=] : ' " ; = meta-characters
-#
-# Not supported by re2 (?<!re).
+#    Disallow ['\";=]
 #
 # -=[ References ]=-
-# https://www.owasp.org/index.php/ModSecurity_CRS_RuleID-960000
 # http://www.ietf.org/rfc/rfc2183.txt
 #
-SecRule FILES_NAMES|FILES "@rx (?<!&(?:[aAoOuUyY]uml)|&(?:[aAeEiIoOuU]circ)|&(?:[eEiIoOuUyY]acute)|&(?:[aAeEiIoOuU]grave)|&(?:[cC]cedil)|&(?:[aAnNoO]tilde)|&(?:amp)|&(?:apos));|['\"=]" \
+# This rule used to use negative look-behind.
+# See https://github.com/coreruleset/coreruleset/wiki/Technical-Decisions-and-Best-Practices#avoiding-negative-look-behind-in-regular-expressions
+# for an explanation of why it now uses `!@rx` instead to avoid look-around.
+#
+# Regular expression generated from regex-assembly/920120.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 920120
+#
+SecRule FILES|FILES_NAMES "!@rx (?i)^(?:&(?:(?:[acegiln-or-suz]acut|[aeiou]grav|[ain-o]tild)e|[c-elnr-tz]caron|(?:[cgk-lnr-t]cedi|[aeiouy]um)l|[aceg-josuwy]circ|[au]ring|a(?:mp|pos)|nbsp|oslash);|[^\"';=])*$" \
     "id:920120,\
     phase:2,\
     block,\
@@ -110,9 +119,9 @@ SecRule FILES_NAMES|FILES "@rx (?<!&(?:[aAoOuUyY]uml)|&(?:[aAeEiIoOuU]circ)|&(?:
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -123,7 +132,7 @@ SecRule FILES_NAMES|FILES "@rx (?<!&(?:[aAoOuUyY]uml)|&(?:[aAeEiIoOuU]circ)|&(?:
 # is NOT all digits, then it will match.
 #
 # -=[ References ]=-
-# https://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.13
+# https://www.rfc-editor.org/rfc/rfc9110.html#section-8.6
 #
 SecRule REQUEST_HEADERS:Content-Length "!@rx ^\d+$" \
     "id:920160,\
@@ -139,29 +148,29 @@ SecRule REQUEST_HEADERS:Content-Length "!@rx ^\d+$" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
 # Do not accept GET or HEAD requests with bodies
-# HTTP standard allows GET requests to have a body but this
-# feature is not used in real life. Attackers could try to force
-# a request body on an unsuspecting web applications.
+# In RCF-9110, "A client SHOULD NOT generate content in a HEAD/GET request 
+# unless it is made directly to an origin server that has previously indicated"
 #
 # -=[ Rule Logic ]=-
-# This is a chained rule that first checks the Request Method.  If it is a
-# GET or HEAD method, then it checks for the existence of a Content-Length
-# header.  If the header exists and its payload is either not a 0 digit or not
-# empty, then it will match.
+# The chained rule matches when:
+# 1) If the request method is GET or HEAD 
+# AND 
+# 2) Header: Content-Length exists and non-zero
 #
 # -=[ References ]=-
-# https://www.w3.org/Protocols/rfc2616/rfc2616-sec4.html#sec4.3
+# https://www.rfc-editor.org/rfc/rfc9110.html#section-9.3.1
+# https://www.rfc-editor.org/rfc/rfc9110.html#section-9.3.2
 #
 SecRule REQUEST_METHOD "@rx ^(?:GET|HEAD)$" \
     "id:920170,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'GET or HEAD Request with Body Content',\
@@ -173,12 +182,12 @@ SecRule REQUEST_METHOD "@rx ^(?:GET|HEAD)$" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule REQUEST_HEADERS:Content-Length "!@rx ^0?$" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -186,7 +195,7 @@ SecRule REQUEST_METHOD "@rx ^(?:GET|HEAD)$" \
 #
 SecRule REQUEST_METHOD "@rx ^(?:GET|HEAD)$" \
     "id:920171,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'GET or HEAD Request with Transfer-Encoding',\
@@ -198,31 +207,35 @@ SecRule REQUEST_METHOD "@rx ^(?:GET|HEAD)$" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule &REQUEST_HEADERS:Transfer-Encoding "!@eq 0" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
 # Require Content-Length or Transfer-Encoding to be provided with
-# every POST request if the protocol version is not HTTP/2.
+# every POST request if the protocol version is not HTTP/2 or HTTP/3.
 #
 # In case of HTTP/2, see the RFC7540 8.1 p52:
 # HTTP/2 does not use the Transfer-Encoding: chunked anymore, because
 # the underlying transport protocol is already using data frames with
 # known length.
 #
+# In case of HTTP/3, see the RFC9114 4.1:
+# Transfer codings (see Section 7 of [HTTP/1.1]) are not defined for
+# HTTP/3; the Transfer-Encoding header field MUST NOT be used.
+#
 # -=[ Rule Logic ]=-
-# This chained rule checks if the protocol is not HTTP/2, then checks
-# request method is POST, if so, it checks that a Content-Length or
-# Transfer-Encoding headers are also present.
+# This chained rule checks if the protocol is not HTTP/2 or HTTP/3,
+# then checks request method is POST, if so, it checks that a
+# Content-Length or Transfer-Encoding headers are also present.
 #
-SecRule REQUEST_PROTOCOL "!@within HTTP/2 HTTP/2.0" \
+SecRule REQUEST_PROTOCOL "!@within HTTP/2 HTTP/2.0 HTTP/3 HTTP/3.0" \
     "id:920180,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'POST without Content-Length or Transfer-Encoding headers',\
@@ -234,7 +247,7 @@ SecRule REQUEST_PROTOCOL "!@within HTTP/2 HTTP/2.0" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule REQUEST_METHOD "@streq POST" \
@@ -242,7 +255,7 @@ SecRule REQUEST_PROTOCOL "!@within HTTP/2 HTTP/2.0" \
         SecRule &REQUEST_HEADERS:Content-Length "@eq 0" \
             "chain"
             SecRule &REQUEST_HEADERS:Transfer-Encoding "@eq 0" \
-                "setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+                "setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 #
 # As per RFC7230 3.3.2: A sender MUST NOT send a Content-Length
@@ -253,22 +266,23 @@ SecRule REQUEST_PROTOCOL "!@within HTTP/2 HTTP/2.0" \
 #
 SecRule &REQUEST_HEADERS:Transfer-Encoding "!@eq 0" \
     "id:920181,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
-    msg:'Content-Length and Transfer-Encoding headers present.',\
+    msg:'Content-Length and Transfer-Encoding headers present',\
     tag:'application-multi',\
     tag:'language-multi',\
     tag:'platform-multi',\
     tag:'attack-protocol',\
+    tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule &REQUEST_HEADERS:Content-Length "!@eq 0" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 
 #
@@ -283,12 +297,12 @@ SecRule &REQUEST_HEADERS:Transfer-Encoding "!@eq 0" \
 # when the first value is greater than the second.
 #
 # -=[ References ]=-
-# https://tools.ietf.org/html/rfc7233
+# https://datatracker.ietf.org/doc/html/rfc7233
 # https://seclists.org/fulldisclosure/2011/Aug/175
 #
 SecRule REQUEST_HEADERS:Range|REQUEST_HEADERS:Request-Range "@rx (\d+)-(\d+)" \
     "id:920190,\
-    phase:2,\
+    phase:1,\
     block,\
     capture,\
     t:none,\
@@ -301,11 +315,11 @@ SecRule REQUEST_HEADERS:Range|REQUEST_HEADERS:Request-Range "@rx (\d+)-(\d+)" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule TX:2 "@lt %{tx.1}" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+        "setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 
 #
@@ -317,12 +331,11 @@ SecRule REQUEST_HEADERS:Range|REQUEST_HEADERS:Request-Range "@rx (\d+)-(\d+)" \
 # keep-alive and close options.
 #
 # -=[ References ]=-
-# http://www.bad-behavior.ioerror.us/about/
-# https://tools.ietf.org/html/rfc7233
+# https://datatracker.ietf.org/doc/html/rfc7233
 #
 SecRule REQUEST_HEADERS:Connection "@rx \b(?:keep-alive|close),\s?(?:keep-alive|close)\b" \
     "id:920210,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'Multiple/Conflicting Connection Header Data Found',\
@@ -334,9 +347,9 @@ SecRule REQUEST_HEADERS:Connection "@rx \b(?:keep-alive|close),\s?(?:keep-alive|
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 #
 # Check URL encodings
@@ -355,7 +368,7 @@ SecRule REQUEST_HEADERS:Connection "@rx \b(?:keep-alive|close),\s?(?:keep-alive|
 #
 SecRule REQUEST_URI "@rx \x25" \
     "id:920220,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'URL Encoding Abuse Attack Attempt',\
@@ -367,11 +380,11 @@ SecRule REQUEST_URI "@rx \x25" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153/267/72',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule REQUEST_URI "@validateUrlEncoding" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+        "setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 SecRule REQUEST_HEADERS:Content-Type "@rx ^(?i)application/x-www-form-urlencoded" \
     "id:920240,\
@@ -387,13 +400,13 @@ SecRule REQUEST_HEADERS:Content-Type "@rx ^(?i)application/x-www-form-urlencoded
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153/267/72',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule REQUEST_BODY "@rx \x25" \
         "chain"
         SecRule REQUEST_BODY "@validateUrlEncoding" \
-            "setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+            "setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 
 #
@@ -419,11 +432,11 @@ SecRule TX:CRS_VALIDATE_UTF8_ENCODING "@eq 1" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153/267',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule REQUEST_FILENAME|ARGS|ARGS_NAMES "@validateUtf8Encoding" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+        "setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 
 #
@@ -458,9 +471,9 @@ SecRule REQUEST_URI|REQUEST_BODY "@rx \%u[fF]{2}[0-9a-fA-F]{2}" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153/267/72',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 
 #
@@ -488,12 +501,14 @@ SecRule REQUEST_URI|REQUEST_BODY "@rx \%u[fF]{2}[0-9a-fA-F]{2}" \
 #       ASCII 38,44-46,48-58,61,65-90,95,97-122
 #       A-Z a-z 0-9 = - _ . , : &
 #
-# 920274: PL4 : REQUEST_HEADERS without User-Agent, Referer and Cookie
+# 920274: PL4 : REQUEST_HEADERS without User-Agent, Referer, Cookie
+#               and Structured Header booleans
 #       ASCII 32,34,38,42-59,61,65-90,95,97-122
 #       A-Z a-z 0-9 = - _ . , : & " * + / SPACE
 #
 # REQUEST_URI and REQUEST_HEADERS User-Agent, Referer and Cookie are very hard
-# to restrict beyond the limits in 920272.
+# to restrict beyond the limits in 920272. Structured Header booleans are
+# validated separately in 920275.
 #
 # 920274 generally has few positives. However, it would detect rare attacks
 # on Accept request headers and friends.
@@ -512,9 +527,9 @@ SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "@validateByteRange 1-255" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -532,7 +547,7 @@ SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "@validateByteRange 1-255" \
 #
 SecRule &REQUEST_HEADERS:Host "@eq 0" \
     "id:920280,\
-    phase:2,\
+    phase:1,\
     pass,\
     t:none,\
     msg:'Request Missing a Host Header',\
@@ -544,15 +559,15 @@ SecRule &REQUEST_HEADERS:Host "@eq 0" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'PCI/6.5.10',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}',\
     skipAfter:END-HOST-CHECK"
 
 
 SecRule REQUEST_HEADERS:Host "@rx ^$" \
     "id:920290,\
-    phase:2,\
+    phase:1,\
     pass,\
     t:none,\
     msg:'Empty Host Header',\
@@ -563,9 +578,9 @@ SecRule REQUEST_HEADERS:Host "@rx ^$" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 SecMarker "END-HOST-CHECK"
 
@@ -592,7 +607,7 @@ SecMarker "END-HOST-CHECK"
 
 SecRule REQUEST_HEADERS:Accept "@rx ^$" \
     "id:920310,\
-    phase:2,\
+    phase:1,\
     pass,\
     t:none,\
     msg:'Request Has an Empty Accept Header',\
@@ -603,21 +618,21 @@ SecRule REQUEST_HEADERS:Accept "@rx ^$" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'NOTICE',\
     chain"
     SecRule REQUEST_METHOD "!@rx ^OPTIONS$" \
         "chain"
         SecRule REQUEST_HEADERS:User-Agent "!@pm AppleWebKit Android Business Enterprise Entreprise" \
             "t:none,\
-            setvar:'tx.anomaly_score_pl1=+%{tx.notice_anomaly_score}'"
+            setvar:'tx.inbound_anomaly_score_pl1=+%{tx.notice_anomaly_score}'"
 
 #
 # This rule is a sibling of rule 920310.
 #
 SecRule REQUEST_HEADERS:Accept "@rx ^$" \
     "id:920311,\
-    phase:2,\
+    phase:1,\
     pass,\
     t:none,\
     msg:'Request Has an Empty Accept Header',\
@@ -628,14 +643,14 @@ SecRule REQUEST_HEADERS:Accept "@rx ^$" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'NOTICE',\
     chain"
     SecRule REQUEST_METHOD "!@rx ^OPTIONS$" \
         "chain"
         SecRule &REQUEST_HEADERS:User-Agent "@eq 0" \
             "t:none,\
-            setvar:'tx.anomaly_score_pl1=+%{tx.notice_anomaly_score}'"
+            setvar:'tx.inbound_anomaly_score_pl1=+%{tx.notice_anomaly_score}'"
 
 
 #
@@ -650,7 +665,7 @@ SecRule REQUEST_HEADERS:Accept "@rx ^$" \
 
 SecRule REQUEST_HEADERS:User-Agent "@rx ^$" \
     "id:920330,\
-    phase:2,\
+    phase:1,\
     pass,\
     t:none,\
     msg:'Empty User Agent Header',\
@@ -661,14 +676,14 @@ SecRule REQUEST_HEADERS:User-Agent "@rx ^$" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'NOTICE',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.notice_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.notice_anomaly_score}'"
 
 #
 # Missing Content-Type Header with Request Body
 #
-# -=[ Rule Logic]=-
+# -=[ Rule Logic ]=-
 # This rule will first check to see if the value of the Content-Length header is
 # non-equal to 0. The chained rule is then checking the existence of the
 # Content-Type header. The RFCs do not state there must be a
@@ -687,7 +702,7 @@ SecRule REQUEST_HEADERS:User-Agent "@rx ^$" \
 
 SecRule REQUEST_HEADERS:Content-Length "!@rx ^0$" \
     "id:920340,\
-    phase:2,\
+    phase:1,\
     pass,\
     t:none,\
     msg:'Request Containing Content, but Missing Content-Type header',\
@@ -698,27 +713,39 @@ SecRule REQUEST_HEADERS:Content-Length "!@rx ^0$" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'NOTICE',\
     chain"
     SecRule &REQUEST_HEADERS:Content-Type "@eq 0" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.notice_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.notice_anomaly_score}'"
 
 # Check that the host header is not an IP address
 # This is not an HTTP RFC violation but it is indicative of automated client access.
 # Many web-based worms propagate by scanning IP address blocks.
 #
 # -=[ Rule Logic ]=-
-# This rule triggers if the Host header contains all digits (and possible port)
+# This rule triggers if the Host header contains an IPv4 or IPv6 address, optionally
+# extended with a port number. In the case of IPv6 we covering the address with square
+# brackets and the address without square brackets.
+#
+# The regex consists of three main parts and said optional group:
+#
+# * IPv4 address
+# * IPv6 address with square brackets
+# * IPv6 address without square brackets
+# * optional colon and port number
+#
+# Please note that the regex does not test the validity of the IP addresses.
+# It just tries to detect a potential IP address.
 #
 # -=[ References ]=-
 # https://technet.microsoft.com/en-us/magazine/2005.01.hackerbasher.aspx
 #
 
-SecRule REQUEST_HEADERS:Host "@rx ^[\d.:]+$" \
+SecRule REQUEST_HEADERS:Host "@rx (?:^([\d.]+|\[[\da-f:]+\]|[\da-f:]+)(:[\d]+)?$)" \
     "id:920350,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'Host header is a numeric IP address',\
@@ -731,9 +758,9 @@ SecRule REQUEST_HEADERS:Host "@rx ^[\d.:]+$" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'PCI/6.5.10',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.warning_anomaly_score}'"
 
 
 # In most cases, you should expect a certain volume of each a request on your
@@ -763,12 +790,12 @@ SecRule &TX:MAX_NUM_ARGS "@eq 1" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule &ARGS "@gt %{tx.max_num_args}" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 ## -- Arguments limits --
 #
@@ -788,12 +815,12 @@ SecRule &TX:ARG_NAME_LENGTH "@eq 1" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule ARGS_NAMES "@gt %{tx.arg_name_length}" \
         "t:none,t:length,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Limit argument value length
@@ -815,12 +842,12 @@ SecRule &TX:ARG_LENGTH "@eq 1" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule ARGS "@gt %{tx.arg_length}" \
         "t:none,t:length,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Limit arguments total length
@@ -839,12 +866,12 @@ SecRule &TX:TOTAL_ARG_LENGTH "@eq 1" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule ARGS_COMBINED_SIZE "@gt %{tx.total_arg_length}" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -853,7 +880,7 @@ SecRule &TX:TOTAL_ARG_LENGTH "@eq 1" \
 # Individual file size is limited
 SecRule &TX:MAX_FILE_SIZE "@eq 1" \
     "id:920400,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'Uploaded file size too large',\
@@ -864,14 +891,14 @@ SecRule &TX:MAX_FILE_SIZE "@eq 1" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule REQUEST_HEADERS:Content-Type "@rx ^(?i)multipart/form-data" \
         "chain"
         SecRule REQUEST_HEADERS:Content-Length "@gt %{tx.max_file_size}" \
             "t:none,\
-            setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+            setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Combined file size is limited
@@ -890,12 +917,12 @@ SecRule &TX:COMBINED_FILE_SIZES "@eq 1" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule FILES_COMBINED_SIZE "@gt %{tx.combined_file_sizes}" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 
@@ -905,15 +932,17 @@ SecRule &TX:COMBINED_FILE_SIZES "@eq 1" \
 
 # Restrict Content-Type header to established patterns.
 #
-# This provides generic whitelist protection against vulnerabilities like
+# This provides generic allow list protection against vulnerabilities like
 # Apache Struts Content-Type arbitrary command execution (CVE-2017-5638).
 #
 # Examples of allowed patterns:
 # - text/plain
 # - text/plain; charset="UTF-8"
 # - multipart/form-data; boundary=----WebKitFormBoundary12345
-#
-SecRule REQUEST_HEADERS:Content-Type "!@rx ^[\w/.+-]+(?:\s?;\s?(?:action|boundary|charset|type|start(?:-info)?)\s?=\s?['\"\w.()+,/:=?<>@-]+)*$" \
+# - application/soap+xml; charset=utf-8; action="urn:localhost-hwh#getQuestions"
+# - application/*+json
+
+SecRule REQUEST_HEADERS:Content-Type "!@rx ^[\w/.+*-]+(?:\s?;\s?(?:action|boundary|charset|component|start(?:-info)?|type|version)\s?=\s?['\"\w.()+,/:=?<>@#*-]+)*$" \
     "id:920470,\
     phase:1,\
     block,\
@@ -928,16 +957,16 @@ SecRule REQUEST_HEADERS:Content-Type "!@rx ^[\w/.+-]+(?:\s?;\s?(?:action|boundar
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153',\
     tag:'PCI/12.1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 # In case Content-Type header can be parsed, check the mime-type against
 # the policy defined in the 'allowed_request_content_type' variable.
 # To change your policy, edit crs-setup.conf and activate rule 900220.
 SecRule REQUEST_HEADERS:Content-Type "@rx ^[^;\s]+" \
     "id:920420,\
-    phase:2,\
+    phase:1,\
     block,\
     capture,\
     t:none,\
@@ -951,13 +980,13 @@ SecRule REQUEST_HEADERS:Content-Type "@rx ^[^;\s]+" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153',\
     tag:'PCI/12.1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.content_type=|%{tx.0}|',\
     chain"
     SecRule TX:content_type "!@within %{tx.allowed_request_content_type}" \
         "t:lowercase,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -968,7 +997,7 @@ SecRule REQUEST_HEADERS:Content-Type "@rx charset\s*=\s*[\"']?([^;\"'\s]+)" \
     phase:1,\
     block,\
     capture,\
-    t:none,t:lowercase,\
+    t:none,\
     msg:'Request content type charset is not allowed by policy',\
     logdata:'%{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -979,13 +1008,14 @@ SecRule REQUEST_HEADERS:Content-Type "@rx charset\s*=\s*[\"']?([^;\"'\s]+)" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153',\
     tag:'PCI/12.1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
+    setvar:'tx.content_type_charset=|%{tx.1}|',\
     chain"
-    SecRule TX:1 "!@rx ^%{tx.allowed_request_content_type_charset}$" \
-        "t:none,\
+    SecRule TX:content_type_charset "!@within %{tx.allowed_request_content_type_charset}" \
+        "t:lowercase,\
         ctl:forceRequestBodyVariable=On,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Restrict charset parameter inside content type header to occur max once.
@@ -1005,9 +1035,9 @@ SecRule REQUEST_HEADERS:Content-Type "@rx charset.*?charset" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153',\
     tag:'PCI/12.1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Restrict protocol versions.
@@ -1027,16 +1057,16 @@ SecRule REQUEST_PROTOCOL "!@within %{tx.allowed_http_versions}" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'PCI/6.5.10',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Restrict file extension
 #
 SecRule REQUEST_BASENAME "@rx \.([^.]+)$" \
     "id:920440,\
-    phase:2,\
+    phase:1,\
     block,\
     capture,\
     t:none,\
@@ -1050,13 +1080,13 @@ SecRule REQUEST_BASENAME "@rx \.([^.]+)$" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'PCI/6.5.10',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.extension=.%{tx.1}/',\
     chain"
     SecRule TX:EXTENSION "@within %{tx.restricted_extensions}" \
         "t:none,t:urlDecodeUni,t:lowercase,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Backup or "working" file extension
@@ -1064,7 +1094,7 @@ SecRule REQUEST_BASENAME "@rx \.([^.]+)$" \
 #
 SecRule REQUEST_FILENAME "@rx \.[^.~]+~(?:/.*|)$" \
     "id:920500,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,t:urlDecodeUni,\
     msg:'Attempt to access a backup or working file',\
@@ -1077,38 +1107,47 @@ SecRule REQUEST_FILENAME "@rx \.[^.~]+~(?:/.*|)$" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'PCI/6.5.10',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Restricted HTTP headers
 #
 # -=[ Rule Logic ]=-
-# The use of certain headers is restricted. They are listed in the variable
-# TX.restricted_headers.
-#
-# The headers are transformed into lowercase before the match.  In order to
-# make sure that only complete header names are matching, the names in
-# TX.restricted_headers are wrapped in slashes. This guarantees that the
-# header Range (-> /range/) is not matching the restricted header
-# /content-range/ for example.
+# The use of certain headers is restricted. They are listed in two variables:
+# - TX.restricted_headers_basic: Known security risks, always forbidden (rule
+#                                920450)
+# - TX.restricted_headers_extended: Possible false positives, possible security 
+#                                   risks, may be forbidden (rule 920451)
+#
+# The headers are transformed into lowercase before the match. In order to make
+# sure that only complete header names match, the names in the
+# TX.restricted_headers_* variables are wrapped in slashes. This guarantees that
+# the Range header (which becomes /range/) will not match the restricted
+# /content-range/ header, for example.
 #
 # This is a chained rule, where the first rule fills a set of variables of the
-# form TX.header_name_<HEADER_NAME>. The second rule is then executed for all
-# variables of the form TX.header_name_<HEADER_NAME>.
+# form TX.header_name_<RULE_ID>_<HEADER_NAME>. The second rule is then executed
+# for all variables of the form TX.header_name_<RULE_ID>_<HEADER_NAME>.
 #
 # As a consequence of the construction of the rule, the alert message and the
 # alert data will not display the original header name Content-Range, but
 # /content-range/ instead.
 #
+# This rule has a stricter sibling, 920451, which matches against the variable
+# TX.restricted_headers_extended. It handles deprecated headers that are still
+# in use (so false positives are possible, hence unsuitable for blocking in a
+# default paranoia level 1 installation) and headers with possible security
+# risks.
 #
 # -=[ References ]=-
 # https://access.redhat.com/security/vulnerabilities/httpoxy (Header Proxy)
+# https://www.sidechannel.blog/en/http-method-override-what-it-is-and-how-a-pentester-can-use-it
 #
 SecRule REQUEST_HEADERS_NAMES "@rx ^.*$" \
     "id:920450,\
-    phase:2,\
+    phase:1,\
     block,\
     capture,\
     t:none,t:lowercase,\
@@ -1122,12 +1161,41 @@ SecRule REQUEST_HEADERS_NAMES "@rx ^.*$" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'PCI/12.1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.header_name_%{tx.0}=/%{tx.0}/',\
+    setvar:'tx.header_name_920450_%{tx.0}=/%{tx.0}/',\
     chain"
-    SecRule TX:/^header_name_/ "@within %{tx.restricted_headers}" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    SecRule TX:/^header_name_920450_/ "@within %{tx.restricted_headers_basic}" \
+        "setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+#
+# Rule against CVE-2022-21907
+# This rule blocks Accept-Encoding headers longer than 50 characters.
+# The length of 50 is a heuristic based on the length of values from
+# the RFC (https://datatracker.ietf.org/doc/rfc9110/)
+# and the respective values assigned by IANA
+# (https://www.iana.org/assignments/http-parameters/http-parameters.xml#content-coding).
+#
+# This rule has a stricter sibling: 920521
+#
+SecRule REQUEST_HEADERS:Accept-Encoding "@gt 50" \
+    "id:920520,\
+    phase:1,\
+    block,\
+    t:none,t:lowercase,t:length,\
+    msg:'Accept-Encoding header exceeded sensible length',\
+    logdata:'%{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-protocol',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/255/153',\
+    tag:'PCI/12.1',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Restrict response charsets that we allow.
@@ -1139,12 +1207,12 @@ SecRule REQUEST_HEADERS_NAMES "@rx ^.*$" \
 # Some servers rely on the request Accept header to determine what charset to respond with.
 # This rule restricts these to familiar charsets.
 #
-# Regular expression generated from util/regexp-assemble/data/920600.data.
+# Regular expression generated from regex-assembly/920600.ra.
 # To update the regular expression run the following shell script
-# (consult util/regexp-assemble/README.md for details):
-#   util/regexp-assemble/regexp-assemble.py update 920600
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 920600
 #
-SecRule REQUEST_HEADERS:Accept "!@rx ^(?:(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+)\/(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+))(?:\s*+;\s*+(?:(?:charset\s*+=\s*+(?:\"?(?:iso-8859-15?|windows-1252|utf-8)\b\"?))|(?:(?:c(?:h(?:a(?:r(?:s(?:e[^t\"(),\/:;<=>?![\x5c\]{}]|[^e\"(),/:;<=>?![\x5c\]{}])|[^s\"(),/:;<=>?![\x5c\]{}])|[^r\"(),/:;<=>?![\x5c\]{}])|[^a\"(),/:;<=>?![\x5c\]{}])|[^h\"(),/:;<=>?![\x5c\]{}])|[^c\"(),/:;<=>?![\x5c\]{}])[^\"(),/:;<=>?![\x5c\]{}]*(?:)\s*+=\s*+[^(),/:;<=>?![\x5c\]{}]+)|;?))*(?:\s*+,\s*+(?:(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+)\/(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+))(?:\s*+;\s*+(?:(?:charset\s*+=\s*+(?:\"?(?:iso-8859-15?|windows-1252|utf-8)\b\"?))|(?:(?:c(?:h(?:a(?:r(?:s(?:e[^t\"(),\/:;<=>?![\x5c\]{}]|[^e\"(),/:;<=>?![\x5c\]{}])|[^s\"(),/:;<=>?![\x5c\]{}])|[^r\"(),/:;<=>?![\x5c\]{}])|[^a\"(),/:;<=>?![\x5c\]{}])|[^h\"(),/:;<=>?![\x5c\]{}])|[^c\"(),/:;<=>?![\x5c\]{}])[^\"(),/:;<=>?![\x5c\]{}]*(?:)\s*+=\s*+[^(),/:;<=>?![\x5c\]{}]+)|;?))*)*$" \
+SecRule REQUEST_HEADERS:Accept "!@rx ^(?:(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)/(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)|\*)(?:[\s\v]*;[\s\v]*(?:charset[\s\v]*=[\s\v]*\"?(?:iso-8859-15?|utf-8|windows-1252)\b\"?|(?:[^\s\v -\"\(-\),/:-\?\[-\]c\{\}]|c(?:[^!-\"\(-\),/:-\?\[-\]h\{\}]|h(?:[^!-\"\(-\),/:-\?\[-\]a\{\}]|a(?:[^!-\"\(-\),/:-\?\[-\]r\{\}]|r(?:[^!-\"\(-\),/:-\?\[-\]s\{\}]|s(?:[^!-\"\(-\),/:-\?\[-\]e\{\}]|e[^!-\"\(-\),/:-\?\[-\]t\{\}]))))))[^!-\"\(-\),/:-\?\[-\]\{\}]*[\s\v]*=[\s\v]*[^!\(-\),/:-\?\[-\]\{\}]+);?)*(?:[\s\v]*,[\s\v]*(?:(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)/(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)|\*)(?:[\s\v]*;[\s\v]*(?:charset[\s\v]*=[\s\v]*\"?(?:iso-8859-15?|utf-8|windows-1252)\b\"?|(?:[^\s\v -\"\(-\),/:-\?\[-\]c\{\}]|c(?:[^!-\"\(-\),/:-\?\[-\]h\{\}]|h(?:[^!-\"\(-\),/:-\?\[-\]a\{\}]|a(?:[^!-\"\(-\),/:-\?\[-\]r\{\}]|r(?:[^!-\"\(-\),/:-\?\[-\]s\{\}]|s(?:[^!-\"\(-\),/:-\?\[-\]e\{\}]|e[^!-\"\(-\),/:-\?\[-\]t\{\}]))))))[^!-\"\(-\),/:-\?\[-\]\{\}]*[\s\v]*=[\s\v]*[^!\(-\),/:-\?\[-\]\{\}]+);?)*)*$" \
     "id:920600,\
     phase:1,\
     block,\
@@ -1157,9 +1225,56 @@ SecRule REQUEST_HEADERS:Accept "!@rx ^(?:(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+)\/(?:
     tag:'attack-protocol',\
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+#
+# Unicode character bypass check for non JSON requests
+# See reported bypass in issue:
+# https://github.com/coreruleset/coreruleset/issues/2512
+#
+SecRule REQBODY_PROCESSOR "!@streq JSON" \
+    "id:920540,\
+    phase:2,\
+    block,\
+    t:none,\
+    msg:'Possible Unicode character bypass detected',\
+    logdata:'%{MATCHED_VAR_NAME}=%{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-protocol',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/255/153/267/72',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    chain"
+    SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "@rx (?i)\x5cu[0-9a-f]{4}" \
+        "setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+#
+# Disallow any raw URL fragments. The '#' character should be omitted or URL-encoded.
+# CRS rules generally do not check REQUEST_URI_RAW, but some servers accept the fragment as part of the URL path/query.
+# This creates false negative evasions.
+#
+SecRule REQUEST_URI_RAW "@contains #" \
+    "id:920610,\
+    phase:1,\
+    block,\
+    t:none,\
+    msg:'Raw (unencoded) fragment in request URI',\
+    logdata:'%{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-protocol',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # The following rule (920620) checks for the presence of 2 or more request Content-Type headers.
@@ -1189,14 +1304,15 @@ SecRule &REQUEST_HEADERS:Content-Type "@gt 1" \
     tag:'attack-protocol',\
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:920013,phase:1,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:920014,phase:2,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:920013,phase:1,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:920014,phase:2,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 #
@@ -1221,7 +1337,7 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:920014,phase:2,pass,nolog,skipAf
 
 SecRule REQUEST_HEADERS:Range|REQUEST_HEADERS:Request-Range "@rx ^bytes=(?:(?:\d+)?-(?:\d+)?\s*,?\s*){6}" \
     "id:920200,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'Range: Too many fields (6 or more)',\
@@ -1233,11 +1349,11 @@ SecRule REQUEST_HEADERS:Range|REQUEST_HEADERS:Request-Range "@rx ^bytes=(?:(?:\d
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule REQUEST_BASENAME "!@endsWith .pdf" \
-        "setvar:'tx.anomaly_score_pl2=+%{tx.warning_anomaly_score}'"
+        "setvar:'tx.inbound_anomaly_score_pl2=+%{tx.warning_anomaly_score}'"
 
 #
 # This is a sibling of rule 920200
@@ -1245,7 +1361,7 @@ SecRule REQUEST_HEADERS:Range|REQUEST_HEADERS:Request-Range "@rx ^bytes=(?:(?:\d
 
 SecRule REQUEST_BASENAME "@endsWith .pdf" \
     "id:920201,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'Range: Too many fields for pdf request (63 or more)',\
@@ -1257,11 +1373,11 @@ SecRule REQUEST_BASENAME "@endsWith .pdf" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule REQUEST_HEADERS:Range|REQUEST_HEADERS:Request-Range "@rx ^bytes=(?:(?:\d+)?-(?:\d+)?\s*,?\s*){63}" \
-        "setvar:'tx.anomaly_score_pl2=+%{tx.warning_anomaly_score}'"
+        "setvar:'tx.inbound_anomaly_score_pl2=+%{tx.warning_anomaly_score}'"
 
 
 SecRule ARGS "@rx %[0-9a-fA-F]{2}" \
@@ -1278,46 +1394,11 @@ SecRule ARGS "@rx %[0-9a-fA-F]{2}" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153/267/120',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.warning_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.warning_anomaly_score}'"
 
 
-#
-# Missing Accept Header
-#
-# -=[ Rule Logic ]=-
-# This rule generates a notice if the Accept header is missing.
-#
-# Notice: The rule tries to avoid known false positives by ignoring
-# OPTIONS requests coming from known offending User-Agents via two
-# chained rules.
-# As ModSecurity only reports the match of the last matching rule,
-# the alert is misleading.
-#
-SecRule &REQUEST_HEADERS:Accept "@eq 0" \
-    "id:920300,\
-    phase:2,\
-    pass,\
-    t:none,\
-    msg:'Request Missing an Accept Header',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-protocol',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/210/272',\
-    tag:'PCI/6.5.10',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'NOTICE',\
-    chain"
-    SecRule REQUEST_METHOD "!@rx ^OPTIONS$" \
-        "chain"
-        SecRule REQUEST_HEADERS:User-Agent "!@pm AppleWebKit Android" \
-            "t:none,\
-            setvar:'tx.anomaly_score_pl2=+%{tx.notice_anomaly_score}'"
-
 #
 # PL2: This is a stricter sibling of 920270.
 #
@@ -1335,9 +1416,9 @@ SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "@validateByteRange 9,10,13,
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
 
@@ -1350,7 +1431,7 @@ SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "@validateByteRange 9,10,13,
 
 SecRule &REQUEST_HEADERS:User-Agent "@eq 0" \
     "id:920320,\
-    phase:2,\
+    phase:1,\
     pass,\
     t:none,\
     msg:'Missing User Agent Header',\
@@ -1362,9 +1443,9 @@ SecRule &REQUEST_HEADERS:User-Agent "@eq 0" \
     tag:'capec/1000/210/272',\
     tag:'PCI/6.5.10',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'NOTICE',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.notice_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.notice_anomaly_score}'"
 
 
 #
@@ -1384,9 +1465,9 @@ SecRule FILES_NAMES|FILES "@rx ['\";=]" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -1398,7 +1479,7 @@ SecRule FILES_NAMES|FILES "@rx ['\";=]" \
 
 SecRule REQUEST_HEADERS:Content-Length "!@rx ^0$" \
     "id:920341,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'Request Containing Content Requires Content-Type header',\
@@ -1409,18 +1490,45 @@ SecRule REQUEST_HEADERS:Content-Length "!@rx ^0$" \
     tag:'paranoia-level/2',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule &REQUEST_HEADERS:Content-Type "@eq 0" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+#
+# PL2: This is a stricter sibling of 920450.
+#
+SecRule REQUEST_HEADERS_NAMES "@rx ^.*$" \
+    "id:920451,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:lowercase,\
+    msg:'HTTP header is restricted by policy (%{MATCHED_VAR})',\
+    logdata:'Restricted header detected: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-protocol',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/210/272',\
+    tag:'PCI/12.1',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.header_name_920451_%{tx.0}=/%{tx.0}/',\
+    chain"
+    SecRule TX:/^header_name_920451_/ "@within %{tx.restricted_headers_extended}" \
+        "setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:920015,phase:1,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:920016,phase:2,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:920015,phase:1,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:920016,phase:2,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 #
@@ -1443,9 +1551,48 @@ SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES|REQUEST_BODY "@validateByteR
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+#
+# Missing Accept Header
+#
+# This rule has been moved to PL3
+#
+# -=[ Rule Logic ]=-
+# This rule generates a notice if the Accept header is missing.
+# RFC 7231 does not enforce the use of the Accept header.
+# It is just typical browser behavior to send and it can indicate a malicious client.
+#
+# Notice: The rule tries to avoid known false positives by ignoring
+# OPTIONS requests, CONNECT requests, and requests coming from known
+# offending User-Agents via two chained rules.
+# As ModSecurity only reports the match of the last matching rule,
+# the alert is misleading.
+#
+SecRule &REQUEST_HEADERS:Accept "@eq 0" \
+    "id:920300,\
+    phase:1,\
+    pass,\
+    t:none,\
+    msg:'Request Missing an Accept Header',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-protocol',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/210/272',\
+    tag:'PCI/6.5.10',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'NOTICE',\
+    chain"
+    SecRule REQUEST_METHOD "!@rx ^(?:OPTIONS|CONNECT)$" \
+        "chain"
+        SecRule REQUEST_HEADERS:User-Agent "!@pm AppleWebKit Android" \
+            "t:none,\
+            setvar:'tx.inbound_anomaly_score_pl3=+%{tx.notice_anomaly_score}'"
 
 
 #
@@ -1456,7 +1603,7 @@ SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES|REQUEST_BODY "@validateByteR
 # Note that this only works in combination with a User-Agent prefix.
 #
 # This rule is based on a blog post by Soroush Dalili at
-# https://soroush.secproject.com/blog/2019/05/x-up-devcap-post-charset-header-in-aspnet-to-bypass-wafs-again/
+# https://soroush.me/blog/2019/05/x-up-devcap-post-charset-header-in-aspnet-to-bypass-wafs-again/
 #
 SecRule &REQUEST_HEADERS:x-up-devcap-post-charset "@ge 1" \
     "id:920490,\
@@ -1471,19 +1618,19 @@ SecRule &REQUEST_HEADERS:x-up-devcap-post-charset "@ge 1" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule REQUEST_HEADERS:User-Agent "@rx ^(?i)up" \
         "t:none,\
-        setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
 
 #
-# Cache-Control Request Header whitelist
+# Cache-Control Request Header allow list
 #
 # -=[ Rule Logic ]=-
-# This rule aims to strictly whitelist the Cache-Control request header
+# This rule aims to strictly allow list the Cache-Control request header
 # values and to blocks all violations. This should be useful to intercept
 # "bad bot" and tools that impersonate a real browser but with wrong request
 # header setup.
@@ -1520,21 +1667,49 @@ SecRule &REQUEST_HEADERS:Cache-Control "@gt 0" \
     tag:'language-multi',\
     tag:'platform-multi',\
     tag:'attack-protocol',\
-    tag:'header-whitelist',\
+    tag:'header-allowlist',\
     tag:'paranoia-level/3',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
-    SecRule REQUEST_HEADERS:Cache-Control "!@rx ^(?:(?:max-age=[0-9]+|min-fresh=[0-9]+|no-cache|no-store|no-transform|only-if-cached|max-stale(?:=[0-9]+)?)(\s*\,\s*|$)){1,7}$" \
-        "setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+    SecRule REQUEST_HEADERS:Cache-Control "!@rx ^(?:(?:max-age=[0-9]+|min-fresh=[0-9]+|no-cache|no-store|no-transform|only-if-cached|max-stale(?:=[0-9]+)?)(?:\s*\,\s*|$)){1,7}$" \
+        "setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
+#
+# This rule checks for valid Accept-Encoding headers
+#
+# This rule has a less strict sibling: 920520
+#
+# Regular expression generated from regex-assembly/920521.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 920521
+#
+SecRule REQUEST_HEADERS:Accept-Encoding "!@rx br|compress|deflate|(?:pack200-)?gzip|identity|\*|^$|aes128gcm|exi|zstd|x-(?:compress|gzip)" \
+    "id:920521,\
+    phase:1,\
+    block,\
+    t:none,t:lowercase,\
+    msg:'Illegal Accept-Encoding header',\
+    logdata:'%{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-protocol',\
+    tag:'paranoia-level/3',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/255/153',\
+    tag:'PCI/12.1',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:920017,phase:1,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:920018,phase:2,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:920017,phase:1,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:920018,phase:2,pass,nolog,skipAfter:END-REQUEST-920-PROTOCOL-ENFORCEMENT"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 #
@@ -1543,7 +1718,7 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:920018,phase:2,pass,nolog,skipAf
 
 SecRule REQUEST_BASENAME "@endsWith .pdf" \
     "id:920202,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,\
     msg:'Range: Too many fields for pdf request (6 or more)',\
@@ -1555,11 +1730,11 @@ SecRule REQUEST_BASENAME "@endsWith .pdf" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/4',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'WARNING',\
     chain"
     SecRule REQUEST_HEADERS:Range|REQUEST_HEADERS:Request-Range "@rx ^bytes=(?:(?:\d+)?-(?:\d+)?\s*,?\s*){6}" \
-        "setvar:'tx.anomaly_score_pl4=+%{tx.warning_anomaly_score}'"
+        "setvar:'tx.inbound_anomaly_score_pl4=+%{tx.warning_anomaly_score}'"
 
 
 #
@@ -1582,16 +1757,16 @@ SecRule ARGS|ARGS_NAMES|REQUEST_BODY "@validateByteRange 38,44-46,48-58,61,65-90
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/4',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
 
 #
 # This is a stricter sibling of 920270.
 #
-SecRule REQUEST_HEADERS|!REQUEST_HEADERS:User-Agent|!REQUEST_HEADERS:Referer|!REQUEST_HEADERS:Cookie|!REQUEST_HEADERS:Sec-Fetch-User "@validateByteRange 32,34,38,42-59,61,65-90,95,97-122" \
+SecRule REQUEST_HEADERS|!REQUEST_HEADERS:User-Agent|!REQUEST_HEADERS:Referer|!REQUEST_HEADERS:Cookie|!REQUEST_HEADERS:Sec-Fetch-User|!REQUEST_HEADERS:Sec-CH-UA|!REQUEST_HEADERS:Sec-CH-UA-Mobile "@validateByteRange 32,34,38,42-59,61,65-90,95,97-122" \
     "id:920274,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,t:urlDecodeUni,\
     msg:'Invalid character in request headers (outside of very strict set)',\
@@ -1603,19 +1778,21 @@ SecRule REQUEST_HEADERS|!REQUEST_HEADERS:User-Agent|!REQUEST_HEADERS:Referer|!RE
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/4',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
 
 #
 # This is a stricter sibling of 920270.
-# The 'Sec-Fetch-User' header may contain the '?' (63) character.
-# Therefore we exclude this header from rule 920274 which forbids '?'.
-# https://www.w3.org/TR/fetch-metadata/#http-headerdef-sec-fetch-user
+# The headers of this rule are Structured Header booleans, for which only `?0`,
+# and `?1` are inconspicuous.
+# Structured Header boolean: https://datatracker.ietf.org/doc/html/draft-ietf-httpbis-header-structure-19#section-3.3.6
+# Sec-Fetch-User: https://www.w3.org/TR/fetch-metadata/#http-headerdef-sec-fetch-user
+# Sec-CH-UA-Mobile: https://wicg.github.io/ua-client-hints/#sec-ch-ua-mobile
 #
-SecRule REQUEST_HEADERS:Sec-Fetch-User "@validateByteRange 32,34,38,42-59,61,63,65-90,95,97-122" \
+SecRule REQUEST_HEADERS:Sec-Fetch-User|REQUEST_HEADERS:Sec-CH-UA-Mobile "!@rx ^(?:\?[01])?$" \
     "id:920275,\
-    phase:2,\
+    phase:1,\
     block,\
     t:none,t:urlDecodeUni,\
     msg:'Invalid character in request headers (outside of very strict set)',\
@@ -1627,9 +1804,9 @@ SecRule REQUEST_HEADERS:Sec-Fetch-User "@validateByteRange 32,34,38,42-59,61,63,
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272',\
     tag:'paranoia-level/4',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
 
 # -=[ Abnormal Character Escapes ]=-
 #
@@ -1656,13 +1833,12 @@ SecRule REQUEST_HEADERS:Sec-Fetch-User "@validateByteRange 32,34,38,42-59,61,63,
 # This rule is also triggered by the following exploit(s):
 # [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
 #
-SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "@rx (?:^|[^\\\\])\\\\[cdeghijklmpqwxyz123456789]" \
+SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "@rx (?:^|[^\x5c])\x5c[cdeghijklmpqwxyz123456789]" \
     "id:920460,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:htmlEntityDecode,t:lowercase,\
-    log,\
+    t:none,t:htmlEntityDecode,t:lowercase,\
     msg:'Abnormal character escapes in request',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -1672,11 +1848,10 @@ SecRule REQUEST_URI|REQUEST_HEADERS|ARGS|ARGS_NAMES "@rx (?:^|[^\\\\])\\\\[cdegh
     tag:'paranoia-level/4',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/153/267',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
 
 
 #
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-921-PROTOCOL-ATTACK.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-921-PROTOCOL-ATTACK.conf
similarity index 63%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-921-PROTOCOL-ATTACK.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-921-PROTOCOL-ATTACK.conf
index fe5d4f68aa..17dd113b6a 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-921-PROTOCOL-ATTACK.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-921-PROTOCOL-ATTACK.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,10 +14,10 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:921011,phase:1,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:921012,phase:2,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:921011,phase:1,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:921012,phase:2,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 #
@@ -31,12 +31,12 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:921012,phase:2,pass,nolog,skipAf
 # [ References ]
 # http://projects.webappsec.org/HTTP-Request-Smuggling
 #
-SecRule ARGS_NAMES|ARGS|REQUEST_BODY|XML:/* "@rx (?:get|post|head|options|connect|put|delete|trace|track|patch|propfind|propatch|mkcol|copy|move|lock|unlock)\s+(?:\/|\w)[^\s]*(?:\s+http\/\d|[\r\n])" \
+SecRule ARGS_NAMES|ARGS|REQUEST_BODY|XML:/* "@rx (?:get|post|head|options|connect|put|delete|trace|track|patch|propfind|propatch|mkcol|copy|move|lock|unlock)\s+[^\s]+\s+http/\d" \
     "id:921110,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:htmlEntityDecode,t:lowercase,\
+    t:none,t:htmlEntityDecode,t:lowercase,\
     msg:'HTTP Request Smuggling Attack',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -46,18 +46,17 @@ SecRule ARGS_NAMES|ARGS|REQUEST_BODY|XML:/* "@rx (?:get|post|head|options|connec
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/33',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # -=[ HTTP Response Splitting ]=-
 #
 # [ Rule Logic ]
 # These rules look for Carriage Return (CR) %0d and Linefeed (LF) %0a characters.
-# These characters may cause problems if the data is returned in a respones header and
+# These characters may cause problems if the data is returned in a response header and
 # may be interpreted by an intermediary proxy server and treated as two separate
 # responses.
 #
@@ -69,7 +68,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:lowercase,\
+    t:none,t:lowercase,\
     msg:'HTTP Response Splitting Attack',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -79,11 +78,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/34',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:\bhttp/\d|<(?:html|meta)\b)" \
@@ -91,7 +89,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:htmlEntityDecode,t:lowercase,\
+    t:none,t:htmlEntityDecode,t:lowercase,\
     msg:'HTTP Response Splitting Attack',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -101,11 +99,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/34',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # -=[ HTTP Header Injection ]=-
@@ -123,7 +120,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 #
 SecRule REQUEST_HEADERS_NAMES|REQUEST_HEADERS "@rx [\n\r]" \
     "id:921140,\
-    phase:2,\
+    phase:1,\
     block,\
     capture,\
     t:none,t:htmlEntityDecode,\
@@ -136,11 +133,10 @@ SecRule REQUEST_HEADERS_NAMES|REQUEST_HEADERS "@rx [\n\r]" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/273',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 # Detect newlines in argument names.
@@ -155,7 +151,7 @@ SecRule ARGS_NAMES "@rx [\n\r]" \
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:htmlEntityDecode,\
+    t:none,t:htmlEntityDecode,\
     msg:'HTTP Header Injection Attack via payload (CR/LF detected)',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -165,11 +161,10 @@ SecRule ARGS_NAMES "@rx [\n\r]" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/33',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 SecRule ARGS_GET_NAMES|ARGS_GET "@rx [\n\r]+(?:\s|location|refresh|(?:set-)?cookie|(?:x-)?(?:forwarded-(?:for|host|server)|host|via|remote-ip|remote-addr|originating-IP))\s*:" \
@@ -177,7 +172,7 @@ SecRule ARGS_GET_NAMES|ARGS_GET "@rx [\n\r]+(?:\s|location|refresh|(?:set-)?cook
     phase:1,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:htmlEntityDecode,t:lowercase,\
+    t:none,t:htmlEntityDecode,t:lowercase,\
     msg:'HTTP Header Injection Attack via payload (CR/LF and header-name detected)',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -187,17 +182,17 @@ SecRule ARGS_GET_NAMES|ARGS_GET "@rx [\n\r]+(?:\s|location|refresh|(?:set-)?cook
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/33',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 # -=[ HTTP Splitting ]=-
 #
 # This rule detect \n or \r in the REQUEST FILENAME
-# Reference: https://www.owasp.org/index.php/Testing_for_HTTP_Splitting/Smuggling_(OTG-INPVAL-016)
+# Reference: https://wiki.owasp.org/index.php/Testing_for_HTTP_Splitting/Smuggling_(OTG-INPVAL-016)
+# Reference: https://owasp.org/www-project-web-security-testing-guide/assets/archive/OWASP_Testing_Guide_v4.pdf
 #
 SecRule REQUEST_FILENAME "@rx [\n\r]" \
     "id:921190,\
@@ -213,11 +208,10 @@ SecRule REQUEST_FILENAME "@rx [\n\r]" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/34',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -230,7 +224,7 @@ SecRule REQUEST_FILENAME "@rx [\n\r]" \
 #
 # [ References ]
 # * https://www.blackhat.com/presentations/bh-europe-08/Alonso-Parada/Whitepaper/bh-eu-08-alonso-parada-WP.pdf
-# * https://blog.ripstech.com/2017/joomla-takeover-in-20-seconds-with-ldap-injection-cve-2017-14596/
+# * https://www.sonarsource.com/blog/joomla-takeover-in-20-seconds-with-ldap-injection-cve-2017-14596/
 # * https://github.com/SpiderLabs/owasp-modsecurity-crs/issues/276#issue-126581660
 
 SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ^[^:\(\)\&\|\!\<\>\~]*\)\s*(?:\((?:[^,\(\)\=\&\|\!\<\>\~]+[><~]?=|\s*[&!|]\s*(?:\)|\()?\s*)|\)\s*\(\s*[\&\|\!]\s*|[&!|]\s*\([^\(\)\=\&\|\!\<\>\~]+[><~]?=[^:\(\)\&\|\!\<\>\~]*)" \
@@ -244,12 +238,12 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'application-multi',\
     tag:'language-ldap',\
     tag:'platform-multi',\
+    tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/248/136',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # -=[ Body Processor Bypass ]=-
@@ -259,12 +253,12 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 # This rule intends to detect content types in the Content-Type header outside of the actual content type declaration.
 # This prevents bypasses targeting the Modsecurity recommended rules controlling which body processor is used.
 #
-# Regular expression generated from util/regexp-assemble/data/921421.data.
+# Regular expression generated from regex-assembly/921421.ra.
 # To update the regular expression run the following shell script
-# (consult util/regexp-assemble/README.md for details):
-#   util/regexp-assemble/regexp-assemble.py update 921421
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 921421
 #
-SecRule REQUEST_HEADERS:Content-Type "@rx ^[^;\s,]+[;\s,].*?(?:(?:application(?:\/soap\+|\/)|text\/)xml|application\/(?:.+[+])?json)" \
+SecRule REQUEST_HEADERS:Content-Type "@rx ^[^\s\v,;]+[\s\v,;].*?(?:application/(?:.+\+)?json|(?:application/(?:soap\+)?|text/)xml)" \
     "id:921421,\
     phase:1,\
     block,\
@@ -280,15 +274,41 @@ SecRule REQUEST_HEADERS:Content-Type "@rx ^[^;\s,]+[;\s,].*?(?:(?:application(?:
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153',\
     tag:'PCI/12.1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:921013,phase:1,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:921014,phase:2,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# Rule against CVE-2021-40438:
+# A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user.
+# This issue affects Apache HTTP Server 2.4.48 and earlier.
+# GET /?unix:AAAAAAAAAAAAA|http://coreruleset.org/
+#
+SecRule REQUEST_URI "@rx unix:[^|]*\|" \
+    "id:921240,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:lowercase,\
+    msg:'mod_proxy attack attempt detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-apache',\
+    tag:'attack-protocol',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/210/272/220/33',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:921013,phase:1,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:921014,phase:2,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 
@@ -300,7 +320,7 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:921014,phase:2,pass,nolog,skipAf
 #
 SecRule ARGS_GET "@rx [\n\r]" \
     "id:921151,\
-    phase:2,\
+    phase:1,\
     block,\
     capture,\
     t:none,t:urlDecodeUni,t:htmlEntityDecode,\
@@ -313,11 +333,10 @@ SecRule ARGS_GET "@rx [\n\r]" \
     tag:'paranoia-level/2',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220/33',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 #
 # -=[ Body Processor Bypass ]=-
@@ -329,12 +348,12 @@ SecRule ARGS_GET "@rx [\n\r]" \
 # [ References ]
 # * See rule 921422
 #
-# Regular expression generated from util/regexp-assemble/data/921422.data.
+# Regular expression generated from regex-assembly/921422.ra.
 # To update the regular expression run the following shell script
-# (consult util/regexp-assemble/README.md for details):
-#   util/regexp-assemble/regexp-assemble.py update 921422
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 921422
 #
-SecRule REQUEST_HEADERS:Content-Type "@rx ^[^;\s,]+[;\s,].*?\b(?:(audio|image|video|csv|css|vnd|pdf|plain|json|soap|xml|x-www-form-urlencoded|form-data|related|x-amf|octet|stream|csp|report)|(text|multipart|application)|(\/|\+))\b" \
+SecRule REQUEST_HEADERS:Content-Type "@rx ^[^\s\v,;]+[\s\v,;].*?\b(?:((?:tex|multipar)t|application)|((?:audi|vide)o|image|cs[sv]|(?:vn|relate)d|p(?:df|lain)|json|(?:soa|cs)p|x(?:ml|-www-form-urlencoded)|form-data|x-amf|(?:octe|repor)t|stream)|([\+/]))\b" \
     "id:921422,\
     phase:1,\
     block,\
@@ -350,15 +369,15 @@ SecRule REQUEST_HEADERS:Content-Type "@rx ^[^;\s,]+[;\s,].*?\b(?:(audio|image|vi
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153',\
     tag:'PCI/12.1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:921015,phase:1,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:921016,phase:2,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:921015,phase:1,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:921016,phase:2,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 #
 
@@ -386,9 +405,9 @@ SecRule &REQUEST_HEADERS:Range "@gt 0" \
     tag:'paranoia-level/3',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/210/272/220',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
 
 # -=[ HTTP Parameter Pollution ]=-
@@ -420,7 +439,7 @@ SecRule ARGS_NAMES "@rx ." \
     tag:'attack-protocol',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/137/15/460',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     setvar:'TX.paramcounter_%{MATCHED_VAR_NAME}=+1'"
 
 SecRule TX:/paramcounter_.*/ "@gt 1" \
@@ -436,21 +455,103 @@ SecRule TX:/paramcounter_.*/ "@gt 1" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/137/15/460',\
     tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule MATCHED_VARS_NAMES "@rx TX:paramcounter_(.*)" \
         "capture,\
         setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+
+# -=[ HTTP Parameter Pollution ]=-
+#
+# [ Rule Logic ]
+# Parameter pollution rule 921180 PL3 can by bypassed when a weak backend parameter
+# parser is ignoring additional characters in a parameter array name after the
+# closing of the array.
+# Rule 921210 PL3 prevents this by disallowing arbitrary strings after an array has
+# been closed or inbetween the square brackets in multidimensional arrays.
+# Please note that rule 921120 allows for 2-dimensional, but not for higher dimensional
+# arrays. If these are flagged as attacks, a rule exclusion will have to be
+# deployed; ideally for the parameter(s) in question.
+#
+# [ References ]
+# Private bug bounty in Spring 2022, findings Z05OZUCH.
+#
+# [ Payloads ]
+# * foo[1]a=bar&foo[1]b=<evil> - parameter parsers often cut after the closing of
+#   the array. 921180 PL3 takes the full name, though.
+#   This impediance mismatch allows for bypasses.
+# * foo[1]x[1]=bar&foo[1]x[2]=<evil> - extension of 1; this has the advantage that
+#   the parameter name does end with "]" just like a valid array notation.
+#
+SecRule ARGS_NAMES "@rx (][^\]]+$|][^\]]+\[)" \
+    "id:921210,\
+    phase:2,\
+    pass,\
+    log,\
+    msg:'HTTP Parameter Pollution after detecting bogus char after parameter array',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-protocol',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/137/15/460',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:921017,phase:1,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:921018,phase:2,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:921017,phase:1,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:921018,phase:2,pass,nolog,skipAfter:END-REQUEST-921-PROTOCOL-ATTACK"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+# -=[ HTTP Parameter Pollution ]=-
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# [ Rule Logic ]
+# Parameter pollution rule 921180 PL3 and 921210 PL3 can by bypassed if a
+# weak backend parameter parser ignores parameter array alltogether at
+# cuts parameter names at the first occurrence of the "[" character.
+# The rule 921220 PL4 prevents this by disallowing parameter array names.
+#
+# If an application needs parameter array names, then this rule should be
+# disabled, ideally by issueing a rule exclusion for the parameter names
+# that need it.
+#
+# [ References ]
+# Private bug bounty in Spring 2022, finding 5UXE4RK0.
 #
+# [ Payloads ]
+# * foo[1]=bar&foo[2]=<evil>
+# * foo=bar&foo[1]=<evil>
+# * foo[1]=bar&foo[1]acb]=<evil> - this is an edge case that 921210 PL3 is not
+#   able to catch since the parameter name ends with "]".
+#
+SecRule ARGS_NAMES "@rx \[" \
+    "id:921220,\
+    phase:2,\
+    pass,\
+    log,\
+    msg:'HTTP Parameter Pollution possible via array notation',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-protocol',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/137/15/460',\
+    tag:'paranoia-level/4',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.http_violation_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
 
 
 
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-922-MULTIPART-ATTACK.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-922-MULTIPART-ATTACK.conf
similarity index 68%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-922-MULTIPART-ATTACK.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-922-MULTIPART-ATTACK.conf
index 13847061de..3450045364 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-922-MULTIPART-ATTACK.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-922-MULTIPART-ATTACK.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -38,17 +38,17 @@ SecRule &MULTIPART_PART_HEADERS:_charset_ "!@eq 0" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/255/153',\
     tag:'paranoia-level/1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule ARGS:_charset_ "!@within |%{tx.allowed_request_content_type_charset}|" \
         "t:lowercase,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 # Only allow specific charsets same as Rule 920600
 # Note: this is in phase:2 because these are headers that come in the body
-SecRule MULTIPART_PART_HEADERS "@rx ^content-type\s*+:\s*+(.*)$" \
+SecRule MULTIPART_PART_HEADERS "@rx ^content-type\s*:\s*(.*)$" \
     "id:922110,\
     phase:2,\
     block,\
@@ -63,12 +63,12 @@ SecRule MULTIPART_PART_HEADERS "@rx ^content-type\s*+:\s*+(.*)$" \
     tag:'OWASP_CRS',\
     tag:'capec/272/220',\
     tag:'paranoia-level/1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
-    SecRule TX:1 "!@rx ^(?:(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+)\/(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+))(?:\s*+;\s*+(?:(?:charset\s*+=\s*+(?:\"?(?:iso-8859-15?|windows-1252|utf-8)\b\"?))|(?:(?:c(?:h(?:a(?:r(?:s(?:e[^t\"(),\/:;<=>?![\x5c\]{}]|[^e\"(),/:;<=>?![\x5c\]{}])|[^s\"(),/:;<=>?![\x5c\]{}])|[^r\"(),/:;<=>?![\x5c\]{}])|[^a\"(),/:;<=>?![\x5c\]{}])|[^h\"(),/:;<=>?![\x5c\]{}])|[^c\"(),/:;<=>?![\x5c\]{}])[^\"(),/:;<=>?![\x5c\]{}]*(?:)\s*+=\s*+[^(),/:;<=>?![\x5c\]{}]+)|;?))*(?:\s*+,\s*+(?:(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+)\/(?:\*|[^\"(),\/:;<=>?![\x5c\]{}]+))(?:\s*+;\s*+(?:(?:charset\s*+=\s*+(?:\"?(?:iso-8859-15?|windows-1252|utf-8)\b\"?))|(?:(?:c(?:h(?:a(?:r(?:s(?:e[^t\"(),\/:;<=>?![\x5c\]{}]|[^e\"(),/:;<=>?![\x5c\]{}])|[^s\"(),/:;<=>?![\x5c\]{}])|[^r\"(),/:;<=>?![\x5c\]{}])|[^a\"(),/:;<=>?![\x5c\]{}])|[^h\"(),/:;<=>?![\x5c\]{}])|[^c\"(),/:;<=>?![\x5c\]{}])[^\"(),/:;<=>?![\x5c\]{}]*(?:)\s*+=\s*+[^(),/:;<=>?![\x5c\]{}]+)|;?))*)*$" \
+    SecRule TX:1 "!@rx ^(?:(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)/(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)|\*)(?:[\s\v]*;[\s\v]*(?:charset[\s\v]*=[\s\v]*\"?(?:iso-8859-15?|utf-8|windows-1252)\b\"?|(?:[^\s\v -\"\(-\),/:-\?\[-\]c\{\}]|c(?:[^!-\"\(-\),/:-\?\[-\]h\{\}]|h(?:[^!-\"\(-\),/:-\?\[-\]a\{\}]|a(?:[^!-\"\(-\),/:-\?\[-\]r\{\}]|r(?:[^!-\"\(-\),/:-\?\[-\]s\{\}]|s(?:[^!-\"\(-\),/:-\?\[-\]e\{\}]|e[^!-\"\(-\),/:-\?\[-\]t\{\}]))))))[^!-\"\(-\),/:-\?\[-\]\{\}]*[\s\v]*=[\s\v]*[^!\(-\),/:-\?\[-\]\{\}]+);?)*(?:[\s\v]*,[\s\v]*(?:(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)/(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)|\*)(?:[\s\v]*;[\s\v]*(?:charset[\s\v]*=[\s\v]*\"?(?:iso-8859-15?|utf-8|windows-1252)\b\"?|(?:[^\s\v -\"\(-\),/:-\?\[-\]c\{\}]|c(?:[^!-\"\(-\),/:-\?\[-\]h\{\}]|h(?:[^!-\"\(-\),/:-\?\[-\]a\{\}]|a(?:[^!-\"\(-\),/:-\?\[-\]r\{\}]|r(?:[^!-\"\(-\),/:-\?\[-\]s\{\}]|s(?:[^!-\"\(-\),/:-\?\[-\]e\{\}]|e[^!-\"\(-\),/:-\?\[-\]t\{\}]))))))[^!-\"\(-\),/:-\?\[-\]\{\}]*[\s\v]*=[\s\v]*[^!\(-\),/:-\?\[-\]\{\}]+);?)*)*$" \
         "t:lowercase,\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 # Content-Transfer-Encoding was deprecated by rfc7578 in 2015 and should not be used (see: https://www.rfc-editor.org/rfc/rfc7578#section-4.7)
 # Note: this is in phase:2 because these are headers that come in the body
@@ -87,6 +87,6 @@ SecRule MULTIPART_PART_HEADERS "@rx content-transfer-encoding:(.*)" \
     tag:'OWASP_CRS',\
     tag:'capec/272/220',\
     tag:'paranoia-level/1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf
new file mode 100644
index 0000000000..097e7f54d3
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf
@@ -0,0 +1,203 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:930011,phase:1,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:930012,phase:2,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+#
+# -=[ Directory Traversal Attacks ]=-
+#
+# Ref: https://github.com/wireghoul/dotdotpwn
+#
+# [ Encoded /../ Payloads ]
+#
+# Regular expression generated from regex-assembly/930100.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 930100
+#
+SecRule REQUEST_URI_RAW|ARGS|REQUEST_HEADERS|!REQUEST_HEADERS:Referer|FILES|XML:/* "@rx (?i)(?:[/\x5c]|%(?:2(?:f|5(?:2f|5c|c(?:1%259c|0%25af))|%46)|5c|c(?:0%(?:[2aq]f|5c|9v)|1%(?:[19p]c|8s|af))|(?:bg%q|(?:e|f(?:8%8)?0%8)0%80%a)f|u(?:221[5-6]|EFC8|F025|002f)|%3(?:2(?:%(?:%6|4)6|F)|5%%63)|1u)|0x(?:2f|5c))(?:\.(?:%0[0-1]|\?)?|\?\.?|%(?:2(?:(?:5(?:2|c0%25a))?e|%45)|c0(?:\.|%[25-6ae-f]e)|u(?:(?:ff0|002)e|2024)|%32(?:%(?:%6|4)5|E)|(?:e|f(?:(?:8|c%80)%8)?0%8)0%80%ae)|0x2e){2,3}(?:[/\x5c]|%(?:2(?:f|5(?:2f|5c|c(?:1%259c|0%25af))|%46)|5c|c(?:0%(?:[2aq]f|5c|9v)|1%(?:[19p]c|8s|af))|(?:bg%q|(?:e|f(?:8%8)?0%8)0%80%a)f|u(?:221[5-6]|EFC8|F025|002f)|%3(?:2(?:%(?:%6|4)6|F)|5%%63)|1u)|0x(?:2f|5c))" \
+    "id:930100,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Path Traversal Attack (/../) or (/.../)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-lfi',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/255/153/126',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}'"
+
+#
+# [ Decoded /../ or /..;/ Payloads ]
+#
+# To prevent '..' from triggering, the regexp is split into two parts:
+# - ../
+# - /..
+# OR
+# - .../
+# - /...
+#
+# Semicolon added to prevent path traversal via reverse proxy mapping '/..;/' (Tomcat)
+#
+SecRule REQUEST_URI|ARGS|REQUEST_HEADERS|!REQUEST_HEADERS:Referer|FILES|XML:/* "@rx (?:(?:^|[\x5c/;])\.{2,3}[\x5c/;]|[\x5c/;]\.{2,3}(?:[\x5c/;]|$))" \
+    "id:930110,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:removeNulls,t:cmdLine,\
+    msg:'Path Traversal Attack (/../) or (/.../)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-lfi',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/255/153/126',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    multiMatch,\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ OS File Access ]=-
+#
+# We check for OS file access with the help of a local file with OS files data.
+#
+# Ref: https://github.com/lightos/Panoptic/blob/master/cases.xml
+#
+# If you wonder where support for Google OAuth2 has gone, see:
+# https://github.com/coreruleset/google-oauth2-plugin
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@pmFromFile lfi-os-files.data" \
+    "id:930120,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:normalizePathWin,\
+    msg:'OS File Access Attempt',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-lfi',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/255/153/126',\
+    tag:'PCI/6.5.4',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ Restricted File Access ]=-
+#
+# Detects attempts to retrieve application source code, metadata,
+# credentials and version control history possibly reachable in a web root.
+#
+SecRule REQUEST_FILENAME "@pmFromFile restricted-files.data" \
+    "id:930130,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:normalizePathWin,\
+    msg:'Restricted File Access Attempt',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-lfi',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/255/153/126',\
+    tag:'PCI/6.5.4',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:930013,phase:1,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:930014,phase:2,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+#
+# -=[ OS File Access ]=-
+#
+# This is a stricter sibling of rule 930120.
+# This stricter sibling checks for OS file data in request headers referer and user-agent.
+# We check for OS file access with the help of a local file with OS files data.
+#
+# Ref: https://github.com/lightos/Panoptic/blob/master/cases.xml
+#
+SecRule REQUEST_HEADERS:Referer|REQUEST_HEADERS:User-Agent "@pmFromFile lfi-os-files.data" \
+    "id:930121,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:normalizePathWin,\
+    msg:'OS File Access Attempt in REQUEST_HEADERS',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-lfi',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/255/153/126',\
+    tag:'PCI/6.5.4',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:930015,phase:1,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:930016,phase:2,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:930017,phase:1,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:930018,phase:2,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-REQUEST-930-APPLICATION-ATTACK-LFI"
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf
new file mode 100644
index 0000000000..80d77d2299
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf
@@ -0,0 +1,189 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+#
+# RFI Attacks
+#
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:931011,phase:1,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:931012,phase:2,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+# -=[ Rule Logic ]=-
+# These rules look for common types of Remote File Inclusion (RFI) attack methods.
+#	- URL Contains an IP Address
+#	- The PHP "include()" Function
+#	- RFI Data Ends with Question Mark(s) (?)
+#	- RFI Host Doesn't Match Local Host
+#
+# -=[ References ]=-
+# http://projects.webappsec.org/Remote-File-Inclusion
+# http://tacticalwebappsec.blogspot.com/2009/06/generic-remote-file-inclusion-attack.html
+#
+SecRule ARGS "@rx ^(?i:file|ftps?|https?)://(?:\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})" \
+    "id:931100,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Possible Remote File Inclusion (RFI) Attack: URL Parameter using IP Address',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rfi',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/175/253',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+SecRule QUERY_STRING|REQUEST_BODY "@rx (?i)(?:\binclude\s*\([^)]*|mosConfig_absolute_path|_CONF\[path\]|_SERVER\[DOCUMENT_ROOT\]|GALLERY_BASEDIR|path\[docroot\]|appserv_root|config\[root_dir\])=(?:file|ftps?|https?)://" \
+    "id:931110,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Possible Remote File Inclusion (RFI) Attack: Common RFI Vulnerable Parameter Name used w/URL Payload',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rfi',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/175/253',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+SecRule ARGS "@rx ^(?i:file|ftps?|https?).*?\?+$" \
+    "id:931120,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Possible Remote File Inclusion (RFI) Attack: URL Payload Used w/Trailing Question Mark Character (?)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rfi',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/175/253',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:931013,phase:1,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:931014,phase:2,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+# url:file:// can be used by Java applications using
+# org.apache.commons.io.IOUtils to access internal files, so this has been added
+#
+# This rule has one (stricter) sibling: 931131.
+# That rule applies the same regular expression to the request filename in phase 1.
+#
+# Regular expression generated from regex-assembly/931130.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 931130
+#
+SecRule ARGS "@rx (?i)(?:(?:url|jar):)?(?:a(?:cap|f[ps]|ttachment)|b(?:eshare|itcoin|lob)|c(?:a(?:llto|p)|id|vs|ompress.(?:zlib|bzip2))|d(?:a(?:v|ta)|ict|n(?:s|tp))|e(?:d2k|xpect)|f(?:(?:ee)?d|i(?:le|nger|sh)|tps?)|g(?:it|o(?:pher)?|lob)|h(?:323|ttps?)|i(?:ax|cap|(?:ma|p)ps?|rc[6s]?)|ja(?:bbe)?r|l(?:dap[is]?|ocal_file)|m(?:a(?:ilto|ven)|ms|umble)|n(?:e(?:tdoc|ws)|fs|ntps?)|ogg|p(?:aparazzi|h(?:ar|p)|op(?:2|3s?)|r(?:es|oxy)|syc)|r(?:mi|sync|tm(?:f?p)?|ar)|s(?:3|ftp|ips?|m(?:[bs]|tps?)|n(?:ews|mp)|sh(?:2(?:.(?:s(?:hell|(?:ft|c)p)|exec|tunnel))?)?|vn(?:\+ssh)?)|t(?:e(?:amspeak|lnet)|ftp|urns?)|u(?:dp|nreal|t2004)|v(?:entrilo|iew-source|nc)|w(?:ebcal|ss?)|x(?:mpp|ri)|zip)://(?:[^@]+@)?([^/]*)" \
+    "id:931130,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rfi',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/175/253',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rfi_parameter_%{MATCHED_VAR_NAME}=.%{tx.1}',\
+    chain"
+    SecRule TX:/rfi_parameter_.*/ "!@endsWith .%{request_headers.host}" \
+        "setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# This is a (stricter) sibling of 931130.
+#
+# Regular expression generated from regex-assembly/931131.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 931131
+#
+SecRule REQUEST_FILENAME "@rx (?i)(?:(?:url|jar):)?(?:a(?:cap|f[ps]|ttachment)|b(?:eshare|itcoin|lob)|c(?:a(?:llto|p)|id|vs|ompress.(?:zlib|bzip2))|d(?:a(?:v|ta)|ict|n(?:s|tp))|e(?:d2k|xpect)|f(?:(?:ee)?d|i(?:le|nger|sh)|tps?)|g(?:it|o(?:pher)?|lob)|h(?:323|ttps?)|i(?:ax|cap|(?:ma|p)ps?|rc[6s]?)|ja(?:bbe)?r|l(?:dap[is]?|ocal_file)|m(?:a(?:ilto|ven)|ms|umble)|n(?:e(?:tdoc|ws)|fs|ntps?)|ogg|p(?:aparazzi|h(?:ar|p)|op(?:2|3s?)|r(?:es|oxy)|syc)|r(?:mi|sync|tm(?:f?p)?|ar)|s(?:3|ftp|ips?|m(?:[bs]|tps?)|n(?:ews|mp)|sh(?:2(?:.(?:s(?:hell|(?:ft|c)p)|exec|tunnel))?)?|vn(?:\+ssh)?)|t(?:e(?:amspeak|lnet)|ftp|urns?)|u(?:dp|nreal|t2004)|v(?:entrilo|iew-source|nc)|w(?:ebcal|ss?)|x(?:mpp|ri)|zip)://(?:[^@]+@)?([^/]*)" \
+    "id:931131,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rfi',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/175/253',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rfi_parameter_%{MATCHED_VAR_NAME}=.%{tx.1}',\
+    chain"
+    SecRule TX:/rfi_parameter_.*/ "!@endsWith .%{request_headers.host}" \
+        "setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:931015,phase:1,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:931016,phase:2,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:931017,phase:1,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:931018,phase:2,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-REQUEST-931-APPLICATION-ATTACK-RFI"
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf
new file mode 100644
index 0000000000..6dabf3e34b
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf
@@ -0,0 +1,1824 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:932011,phase:1,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:932012,phase:2,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+
+# [ Unix command injection ]
+#
+# This rule detects Unix command injections.
+# A command injection takes a form such as:
+#
+#   foo.jpg;uname -a
+#   foo.jpg||uname -a
+#
+# The vulnerability exists when an application executes a shell command
+# without proper input escaping/validation.
+#
+# This rule is also triggered by an Oracle WebLogic Remote Command Execution exploit:
+# [ Oracle WebLogic vulnerability CVE-2017-10271 - Exploit tested: https://www.exploit-db.com/exploits/43458 ]
+#
+# To prevent false positives, we look for a 'starting sequence' that
+# precedes a command in shell syntax, such as: ; | & $( ` <( >(
+# Anatomy of the regexp with examples of patterns caught:
+#
+# 1. Starting tokens
+#
+# ;        ;ifconfig
+# \{       {ifconfig}
+# \|       |ifconfig
+# \|\|     ||ifconfig
+# &        &ifconfig
+# &&       &&ifconfig
+# \n       ;\nifconfig
+# \r       ;\rifconfig
+# \$\(     $(ifconfig)
+# \$\(\(   $((ifconfig))
+# `        `ifconfig`
+# \${      ${ifconfig}
+# <\(      <( ifconfig )
+# >\(      >( ifconfig )
+# \(\s*\)  a() ( ifconfig; ); a
+#
+# 2. Command prefixes
+#
+# {        { ifconfig }
+# \s*\(\s* ( ifconfig )
+# \w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+   VARNAME=xyz ifconfig
+# !\s*     ! ifconfig
+# \$       $ifconfig
+#
+# 3. Quoting
+#
+# '        'ifconfig'
+# \"       "ifconfig"
+#
+# 4. Paths
+#
+# [\?\*\[\]\(\)\-\|+\w'\"\./\x5c]+/   /sbin/ifconfig, /s?in/./ifconfig, /s[a-b]in/ifconfig etc.
+#
+# An effort was made to combat evasions by shell quoting (e.g. 'ls',
+# 'l'"s", \l\s are all valid). ModSecurity has a t:cmdLine
+# transformation built-in to deal with this, but unfortunately, it
+# replaces ';' characters and lowercases the payload, which is less
+# useful for this case. However, emulating the transformation makes
+# the regexp more complex.
+#
+# This is the base Rule to prevent Unix Command Injection
+# for prefix + two and three characters.
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932230.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932230
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\n\r;`\{]|\|\|?|&&?|\$(?:\(\(?|\{)|[<>]\(|\([\s\v]*\))[\s\v]*(?:[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:7[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[arx])?|(?:(?:b[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z|x)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z|h[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[\s\v&\),<>\|].*|[ckz][\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h|d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?f|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:n[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?v|s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h)|f[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[dg]|g[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[&,<>\|]|(?:[\--\.0-9A-Z_a-z][\"'\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\*\-0-9\?-@_a-\{]*)?\x5c?)+[\s\v&,<>\|]).*|p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?g)|i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?r[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?b|l[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:s|z[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:4|[\s\v&\),<>\|].*))|p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:h[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[\s\v&\),<>\|].*|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|x[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z)|r[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?c(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[\s\v&\),<>\|].*)?|s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|(?:e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|(?:s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?)?h)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[\s\v&\),<>\|].*|v[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n)|u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?3[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m)\b" \
+    "id:932230,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix Command Injection (2-3 chars)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# [ Unix command injection ]
+#
+# This is the base Rule to prevent Unix Command Injection
+# for prefix + more than 4 characters.
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932235.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932235
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\n\r;`\{]|\|\|?|&&?|\$(?:\(\(?|\{)|[<>]\(|\([\s\v]*\))[\s\v]*(?:[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:(?:HEAD|POST|y(?:arn|elp))[\s\v&\)<>\|]|a(?:dd(?:group|user)|getty|l(?:ias|pine)[\s\v&\)<>\|]|nsible-playbook|pt(?:-get|itude[\s\v&\)<>\|])|r(?:ch[\s\v&\)<>\|]|ia2c)|s(?:cii(?:-xfr|85)|pell)|tobm|xel)|b(?:a(?:s(?:e(?:32|64|n(?:ame[\s\v&\)<>\|]|c))|h[\s\v&\)<>\|])|tch[\s\v&\)<>\|])|lkid|pftrace|r(?:eaksw|idge[\s\v&\)<>\|])|sd(?:cat|iff|tar)|u(?:iltin|n(?:dler[\s\v&\)<>\|]|zip2)|s(?:ctl|ybox))|y(?:ebug|obu)|z(?:c(?:at|mp)|diff|e(?:grep|xe)|f?grep|ip2(?:recover)?|less|more))|c(?:a(?:ncel|psh)[\s\v&\)<>\|]|ertbot|h(?:attr|(?:dir|root)[\s\v&\)<>\|]|eck_(?:by_ssh|cups|log|memory|raid|s(?:sl_cert|tatusfile))|(?:flag|pas)s|g(?:passwd|rp)|mod|o(?:om|wn)|sh)|lang(?:[\s\v&\)<>\|]|\+\+)|o(?:(?:b|pro)c|lumn[\s\v&\)<>\|]|m(?:m(?:and[\s\v&\)<>\|])?|p(?:oser|ress)[\s\v&\)<>\|])|w(?:say|think))|p(?:an|io|ulimit)|r(?:ash[\s\v&\)<>\|]|on(?:tab)?)|s(?:plit|vtool)|u(?:psfilter|rl[\s\v&\)<>\|]))|d(?:(?:a(?:sh|te)|i(?:alog|ff))[\s\v&\)<>\|]|hclient|m(?:esg|idecode|setup)|o(?:as|(?:cker|ne)[\s\v&\)<>\|]|sbox)|pkg|vips)|e(?:2fsck|(?:asy_instal|va)l|cho[\s\v&\)<>\|]|fax|grep|macs|n(?:d(?:if|sw)|v-update)|sac|x(?:ec[\s\v&\)<>\|]|iftool|p(?:(?:and|(?:ec|or)t)[\s\v&\)<>\|]|r)))|f(?:acter|(?:etch|lock|unction)[\s\v&\)<>\|]|grep|i(?:le(?:[\s\v&\)<>\|]|test)|(?:n(?:d|ger)|sh)[\s\v&\)<>\|])|o(?:ld[\s\v&\)<>\|]|reach)|ping|tp(?:stats|who))|g(?:awk[\s\v&\)<>\|]|core|e(?:ni(?:e[\s\v&\)<>\|]|soimage)|tfacl[\s\v&\)<>\|])|hci|i(?:mp[\s\v&\)<>\|]|nsh)|r(?:ep[\s\v&\)<>\|]|oup(?:[\s\v&\)<>\|]|mod))|tester|unzip|z(?:cat|exe|ip))|h(?:(?:ash|i(?:ghlight|story))[\s\v&\)<>\|]|e(?:ad[\s\v&\)<>\|]|xdump)|ost(?:id|name)|ping3|t(?:digest|op|passwd))|i(?:conv|f(?:config|top)|nstall[\s\v&\)<>\|]|onice|p(?:6?tables|config)|spell)|j(?:ava[\s\v&\)<>\|]|exec|o(?:(?:bs|in)[\s\v&\)<>\|]|urnalctl)|runscript)|k(?:ill(?:[\s\v&\)<>\|]|all)|nife[\s\v&\)<>\|]|sshell)|l(?:a(?:st(?:[\s\v&\)<>\|]|comm|log(?:in)?)|tex[\s\v&\)<>\|])|dconfig|ess(?:[\s\v&\)<>\|]|echo|(?:fil|pip)e)|ftp(?:get)?|(?:inks|ynx)[\s\v&\)<>\|]|o(?:(?:ca(?:l|te)|ok)[\s\v&\)<>\|]|g(?:inctl|(?:nam|sav)e)|setup)|s(?:-F|b_release|cpu|hw|mod|of|pci|usb)|trace|ua(?:la)?tex|wp-(?:d(?:ownload|ump)|mirror|request)|z(?:4c(?:at)?|c(?:at|mp)|diff|[e-f]?grep|less|m(?:a(?:dec|info)?|ore)))|m(?:a(?:il(?:[\s\v&\)<>q\|]|x[\s\v&\)<>\|])|ke[\s\v&\)<>\|]|ster\.passwd|wk)|k(?:dir[\s\v&\)<>\|]|fifo|nod|temp)|locate|o(?:(?:re|unt)[\s\v&\)<>\|]|squitto)|sg(?:attrib|c(?:at|onv)|filter|merge|uniq)|utt[\s\v&\)<>\|]|ysql(?:admin|dump(?:slow)?|hotcopy|show)?)|n(?:a(?:no[\s\v&\)<>\|]|sm|wk)|c(?:\.(?:openbsd|traditional)|at)|e(?:ofetch|t(?:(?:c|st)at|kit-ftp|plan))|(?:ice|ull)[\s\v&\)<>\|]|map|o(?:de[\s\v&\)<>\|]|hup)|ping|roff|s(?:enter|lookup|tat))|o(?:ctave[\s\v&\)<>\|]|nintr|p(?:en(?:ssl|v(?:pn|t))|kg))|p(?:a(?:(?:cman|rted|tch)[\s\v&\)<>\|]|s(?:swd|te[\s\v&\)<>\|]))|d(?:f(?:la)?tex|ksh)|er(?:f|l(?:5|sh)?|ms[\s\v&\)<>\|])|(?:ft|gre)p|hp(?:-cgi|[57])|i(?:(?:co|ng)[\s\v&\)<>\|]|dstat|gz)|k(?:exec|g_?info|ill)|opd|rint(?:env|f[\s\v&\)<>\|])|s(?:ed|ftp|ql)|tar(?:diff|grep)?|u(?:ppet[\s\v&\)<>\|]|shd)|wd\.db|ython[^\s\v])|r(?:ak(?:e[\s\v&\)<>\|]|u)|bash|e(?:a(?:delf|lpath)|(?:dcarpet|name|p(?:eat|lace))[\s\v&\)<>\|]|stic)|l(?:ogin|wrap)|m(?:dir[\s\v&\)<>\|]|user)|nano|oute[\s\v&\)<>\|]|pm(?:db|(?:quer|verif)y)|sync|u(?:by[^\s\v]|n-(?:mailcap|parts))|vi(?:ew|m))|s(?:(?:ash|nap)[\s\v&\)<>\|]|c(?:hed|r(?:een|ipt)[\s\v&\)<>\|])|diff|e(?:(?:lf|rvice)[\s\v&\)<>\|]|ndmail|t(?:arch|env|facl[\s\v&\)<>\|]|sid))|ftp|h(?:\.distrib|(?:adow|ells)[\s\v&\)<>\|]|u(?:f|tdown[\s\v&\)<>\|]))|l(?:eep[\s\v&\)<>\|]|sh)|mbclient|o(?:cat|elim|(?:rt|urce)[\s\v&\)<>\|])|p(?:lit[\s\v&\)<>\|]|wd\.db)|qlite3|sh(?:-key(?:ge|sca)n|pass)|t(?:art-stop-daemon|d(?:buf|err|in|out)|r(?:ace|ings[\s\v&\)<>\|]))|udo|ys(?:ctl|tem(?:ctl|d-resolve)))|t(?:a(?:il[\s\v&\)<>f\|]|sk(?:[\s\v&\)<>\|]|set))|c(?:l?sh|p(?:dump|ing|traceroute))|elnet|ftp|ime(?:(?:out)?[\s\v&\)<>\|]|datectl)|mux|ouch[\s\v&\)<>\|]|r(?:aceroute6?|off)|shark)|u(?:limit[\s\v&\)<>\|]|n(?:ame|(?:compress|s(?:et|hare))[\s\v&\)<>\|]|expand|iq|l(?:ink[\s\v&\)<>\|]|z(?:4|ma))|(?:pig|x)z|rar|z(?:ip[\s\v&\)<>\|]|std))|p(?:2date[\s\v&\)<>\|]|date-alternatives)|ser(?:(?:ad|mo)d|del)|u(?:de|en)code)|v(?:algrind|i(?:ew[\s\v&\)<>\|]|gr|mdiff|pw|rsh)|olatility[\s\v&\)<>\|])|w(?:a(?:ll|tch)[\s\v&\)<>\|]|get|h(?:iptail[\s\v&\)<>\|]|o(?:ami|is))|i(?:reshark|sh[\s\v&\)<>\|]))|x(?:args|e(?:la)?tex|mo(?:dmap|re)|pad|term|z(?:c(?:at|mp)|d(?:ec|iff)|[e-f]?grep|less|more))|z(?:athura|c(?:at|mp)|diff|e(?:grep|ro[\s\v&\)<>\|])|f?grep|ip(?:c(?:loak|mp)|details|grep|info|(?:merg|not)e|split|tool)|less|more|run|s(?:oelim|td(?:(?:ca|m)t|grep|less)?)|ypper))" \
+    "id:932235,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix Command Injection (command without evasion)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Windows PowerShell, cmdlets and options ]
+#
+# Detect some common PowerShell commands, cmdlets and options.
+# These commands should be relatively uncommon in normal text, but
+# potentially useful for code injection.
+#
+# If you are not running Windows, it is safe to disable this rule.
+#
+# https://learn.microsoft.com/en-us/previous-versions/technet-magazine/ff714569(v=msdn.10)
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@pmFromFile windows-powershell-commands.data" \
+    "id:932120,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:cmdLine,\
+    msg:'Remote Command Execution: Windows PowerShell Command Found',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'language-powershell',\
+    tag:'platform-windows',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Windows Powershell cmdlet aliases ]
+#
+# Attempts to detect aliases of the common PowerShell cmdlets in windows-powershell-commands.data
+# If you are not running Windows, it is safe to disable this rule.
+#
+# There are other aliases which are similar to Unix, but they are properly handled by rule 932105
+#
+# Regular expression generated from regex-assembly/932125.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932125
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:[\n\r;`\{]|\|\|?|&&?)[\s\v]*[\s\v\"'-\(,@]*(?:[\"'\.-9A-Z_a-z]+/|(?:[\"'\x5c\^]*[0-9A-Z_a-z][\"'\x5c\^]*:.*|[ \"'\.-9A-Z\x5c\^-_a-z]*)\x5c)?[\"\^]*(?:(?:a[\"\^]*(?:c|s[\"\^]*n[\"\^]*p)|e[\"\^]*(?:b[\"\^]*p|p[\"\^]*(?:a[\"\^]*l|c[\"\^]*s[\"\^]*v|s[\"\^]*n)|[tx][\"\^]*s[\"\^]*n)|f[\"\^]*(?:[cltw]|o[\"\^]*r[\"\^]*e[\"\^]*a[\"\^]*c[\"\^]*h)|i[\"\^]*(?:[cr][\"\^]*m|e[\"\^]*x|h[\"\^]*y|i|p[\"\^]*(?:a[\"\^]*l|c[\"\^]*s[\"\^]*v|m[\"\^]*o|s[\"\^]*n)|s[\"\^]*e|w[\"\^]*(?:m[\"\^]*i|r))|m[\"\^]*(?:a[\"\^]*n|[dipv]|o[\"\^]*u[\"\^]*n[\"\^]*t)|o[\"\^]*g[\"\^]*v|p[\"\^]*(?:o[\"\^]*p|u[\"\^]*s[\"\^]*h)[\"\^]*d|t[\"\^]*r[\"\^]*c[\"\^]*m|w[\"\^]*j[\"\^]*b)[\"\^]*[\s\v,\.-/;-<>].*|c[\"\^]*(?:(?:(?:d|h[\"\^]*d[\"\^]*i[\"\^]*r|v[\"\^]*p[\"\^]*a)[\"\^]*|p[\"\^]*(?:[ip][\"\^]*)?)[\s\v,\.-/;-<>].*|l[\"\^]*(?:(?:[cipv]|h[\"\^]*y)[\"\^]*[\s\v,\.-/;-<>].*|s)|n[\"\^]*s[\"\^]*n)|d[\"\^]*(?:(?:b[\"\^]*p|e[\"\^]*l|i[\"\^]*(?:f[\"\^]*f|r))[\"\^]*[\s\v,\.-/;-<>].*|n[\"\^]*s[\"\^]*n)|g[\"\^]*(?:(?:(?:(?:a[\"\^]*)?l|b[\"\^]*p|d[\"\^]*r|h[\"\^]*y|(?:w[\"\^]*m[\"\^]*)?i|j[\"\^]*b|[u-v])[\"\^]*|c[\"\^]*(?:[ims][\"\^]*)?|m[\"\^]*(?:o[\"\^]*)?|s[\"\^]*(?:n[\"\^]*(?:p[\"\^]*)?|v[\"\^]*))[\s\v,\.-/;-<>].*|e[\"\^]*r[\"\^]*r|p[\"\^]*(?:(?:s[\"\^]*)?[\s\v,\.-/;-<>].*|v))|l[\"\^]*s|n[\"\^]*(?:(?:a[\"\^]*l|d[\"\^]*r|[iv]|m[\"\^]*o|s[\"\^]*n)[\"\^]*[\s\v,\.-/;-<>].*|p[\"\^]*s[\"\^]*s[\"\^]*c)|r[\"\^]*(?:(?:(?:(?:b[\"\^]*)?p|e[\"\^]*n|(?:w[\"\^]*m[\"\^]*)?i|j[\"\^]*b|n[\"\^]*[ip])[\"\^]*|d[\"\^]*(?:r[\"\^]*)?|m[\"\^]*(?:(?:d[\"\^]*i[\"\^]*r|o)[\"\^]*)?|s[\"\^]*n[\"\^]*(?:p[\"\^]*)?|v[\"\^]*(?:p[\"\^]*a[\"\^]*)?)[\s\v,\.-/;-<>].*|c[\"\^]*(?:j[\"\^]*b[\"\^]*[\s\v,\.-/;-<>].*|s[\"\^]*n)|u[\"\^]*j[\"\^]*b)|s[\"\^]*(?:(?:(?:a[\"\^]*(?:j[\"\^]*b|l|p[\"\^]*s|s[\"\^]*v)|b[\"\^]*p|[civ]|w[\"\^]*m[\"\^]*i)[\"\^]*|l[\"\^]*(?:s[\"\^]*)?|p[\"\^]*(?:(?:j[\"\^]*b|p[\"\^]*s|s[\"\^]*v)[\"\^]*)?)[\s\v,\.-/;-<>].*|h[\"\^]*c[\"\^]*m|u[\"\^]*j[\"\^]*b))(?:\.[\"\^]*[0-9A-Z_a-z]+)?\b" \
+    "id:932125,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Windows Powershell Alias Command Injection',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-windows',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Unix shell expressions ]
+#
+# Detects the following patterns which are common in Unix shell scripts
+# and one-liners:
+#
+# $(foo)    Command substitution
+# ${foo}    Parameter expansion
+# <(foo)    Process substitution
+# >(foo)    Process substitution
+# $((foo))  Arithmetic expansion
+# /e[t]c    Shell glob expression to bypass wordlists
+#
+# Regular expression generated from regex-assembly/932130.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932130
+#
+# This rule has a stricter sibling: 932131 (PL2) that applies the same regex to User-Agent and Referer
+#
+# This rule is essential to defend against the Log4J / Log4Shell attacks (see also rule 944150)
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \$(?:\((?:.*|\(.*\))\)|\{.*\})|[<>]\(.*\)|/[0-9A-Z_a-z]*\[!?.+\]" \
+    "id:932130,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:cmdLine,\
+    msg:'Remote Command Execution: Unix Shell Expression Found',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Windows FOR, IF commands ]
+#
+# This rule detects Windows command shell FOR and IF commands.
+# If you are not running Windows, it is safe to disable this rule.
+#
+# Examples:
+#
+#   FOR              %a IN (set) DO
+#   FOR /D           %a IN (dirs) DO
+#   FOR /F "options" %a IN (text|"text") DO
+#   FOR /L           %a IN (start,step,end) DO
+#   FOR /R C:\dir    %A IN (set) DO
+#
+#   IF [/I] [NOT] EXIST filename | DEFINED define | ERRORLEVEL n | CMDEXTVERSION n
+#   IF [/I] [NOT] item1   [==|EQU|NEQ|LSS|LEQ|GTR|GEQ] item2
+#   IF [/I] [NOT] (item1) [==|EQU|NEQ|LSS|LEQ|GTR|GEQ] (item2)
+#
+# http://ss64.com/nt/if.html
+# http://ss64.com/nt/for.html
+#
+# Regular expression generated from regex-assembly/932140.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932140
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \b(?:for(?:/[dflr].*)? %+[^ ]+ in\(.*\)[\s\v]?do|if(?:/i)?(?: not)?(?: (?:e(?:xist|rrorlevel)|defined|cmdextversion)\b|[ \(].*(?:\b(?:g(?:eq|tr)|equ|neq|l(?:eq|ss))\b|==)))" \
+    "id:932140,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:cmdLine,\
+    msg:'Remote Command Execution: Windows FOR/IF Command Found',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-windows',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Unix direct remote command execution ]
+#
+# Detects Unix commands at the start of a parameter (direct RCE).
+# Example: foo=wget%20www.example.com
+#
+# In this rule we use a different check from command injection (rule 932230), where a
+# command string is appended (injected) to a regular parameter, and then
+# passed to a shell unescaped.
+#
+# Additionaly, we require a trailing space (denoting command parameters) or command
+# separator character after the command.
+#
+# This rule is also triggered by an Oracle WebLogic Remote Command Execution exploit:
+# [ Oracle WebLogic vulnerability CVE-2017-10271 - Exploit tested: https://www.exploit-db.com/exploits/43458 ]
+#
+# An effort was made to combat evasions by shell quoting (e.g. 'ls',
+# 'l'"s", \l\s are all valid). ModSecurity has a t:cmdLine
+# transformation built-in to deal with this, but unfortunately, it
+# replaces ';' characters and lowercases the payload, which is less
+# useful for this case. However, emulating the transformation makes
+# the regexp more complex.
+#
+# This is the base Rule to prevent Direct Unix Command Injection
+# without prefix match.
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932250.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932250
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:^|=)[\s\v]*(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:7[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[arx])?|(?:b[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z|x)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z|[ckz][\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h|d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?f|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:n[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?v|s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h)|f[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[dg]|g[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?c|p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?g)|(?:h[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?u|u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?r[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?b|l[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:s|z(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?4)?)|p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:h[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|x[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z)|r[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?c(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p)?|s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|(?:s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?)?h|v[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n)|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?3[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m)[\s\v&\)<>\|]" \
+    "id:932250,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Direct Unix Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# [ Unix command injection ]
+#
+# This rule complements rule 932250 for commands of 4 characters and up.
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932260.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932260
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:^|=)[\s\v]*(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:a(?:ddgroup|xel)|b(?:ase(?:32|64|nc)|lkid|sd(?:cat|iff|tar)|u(?:iltin|nzip2|sybox)|yobu|z(?:c(?:at|mp)|diff|e(?:grep|xe)|f?grep|ip2(?:recover)?|less|more))|c(?:h(?:g(?:passwd|rp)|pass|sh)|lang\+\+|oproc|ron)|d(?:iff[\s\v&\)<>\|]|mesg|oas)|e(?:2fsck|grep)|f(?:grep|iletest|tp(?:stats|who))|g(?:r(?:ep[\s\v&\)<>\|]|oupmod)|unzip|z(?:cat|exe|ip))|htop|l(?:ast(?:comm|log(?:in)?)|ess(?:echo|(?:fil|pip)e)|ftp(?:get)?|osetup|s(?:-F|b_release|cpu|mod|of|pci|usb)|wp-download|z(?:4c(?:at)?|c(?:at|mp)|diff|[e-f]?grep|less|m(?:a(?:dec|info)?|ore)))|m(?:a(?:ilq|ster\.passwd)|k(?:fifo|nod|temp)|locate|ysql(?:admin|dump(?:slow)?|hotcopy|show))|n(?:c(?:\.(?:openbsd|traditional)|at)|et(?:(?:c|st)at|kit-ftp|plan)|ohup|ping|stat)|onintr|p(?:dksh|erl5?|(?:ft|gre)p|hp(?:-cgi|[57])|igz|k(?:exec|ill)|(?:op|se)d|rint(?:env|f[\s\v&\)<>\|])|tar(?:diff|grep)?|wd\.db|ython[2-3])|r(?:(?:bas|ealpat)h|m(?:dir[\s\v&\)<>\|]|user)|nano|sync)|s(?:diff|e(?:ndmail|t(?:env|sid))|ftp|(?:h\.distri|pwd\.d)b|ocat|td(?:err|in|out)|udo|ysctl)|t(?:ailf|c(?:p(?:ing|traceroute)|sh)|elnet|imeout[\s\v&\)<>\|]|raceroute6?)|u(?:n(?:ame|lz(?:4|ma)|(?:pig|x)z|rar|zstd)|ser(?:(?:ad|mo)d|del))|vi(?:gr|pw)|w(?:get|hoami)|x(?:args|z(?:c(?:at|mp)|d(?:ec|iff)|[e-f]?grep|less|more))|z(?:c(?:at|mp)|diff|[e-f]?grep|ip(?:c(?:loak|mp)|details|grep|info|(?:merg|not)e|split|tool)|less|more|run|std(?:(?:ca|m)t|grep|less)?))" \
+    "id:932260,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Direct Unix Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    chain"
+    SecRule MATCHED_VAR "!@rx [0-9]\s*\'\s*[0-9]" \
+        "t:none,\
+        setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# [ Unix shell history invocation ]
+#
+# Detects Unix shell history invocations in any context.
+#
+# Example:
+#   GET /?rce=example.com
+#   GET /?rce=curl%20
+#   GET /?rce=!-1!-2
+#
+# Will execute `curl example.com`. We should be able to detect the '!-<digit>' sequence with a very low risk of false-positives since the sequence is very specific
+# and does not allow for whitespaces in between.
+#
+# This rule has stricter siblings:
+#   * 932331 (PL3)
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx !-\d" \
+    "id:932330,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix shell history invocation',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Unix shell snippets ]
+#
+# Detect some common sequences found in shell commands and scripts.
+#
+# Some commands which were restricted in earlier rules due to FP,
+# have been added here with their full path, in order to catch some
+# cases where the full path is sent.
+#
+# Rule relations:
+#
+#  .932160 (base rule, PL1, unix shell commands with full path)
+#  ..932161 (stricter sibling, PL2, unix shell commands with full path in User-Agent and Referer request headers)
+#
+# This rule is also triggered by an Apache Struts Remote Code Execution exploit:
+# [ Apache Struts vulnerability CVE-2017-9805 - Exploit tested: https://www.exploit-db.com/exploits/42627 ]
+#
+# This rule is also triggered by an Oracle WebLogic Remote Command Execution exploit:
+# [ Oracle WebLogic vulnerability CVE-2017-10271 - Exploit tested: https://www.exploit-db.com/exploits/43458 ]
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@pmFromFile unix-shell.data" \
+    "id:932160,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:cmdLine,t:normalizePath,\
+    msg:'Remote Command Execution: Unix Shell Code Found',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Shellshock vulnerability (CVE-2014-6271 and CVE-2014-7169) ]
+#
+# Detect exploitation of "Shellshock" GNU Bash RCE vulnerability.
+#
+# Based on ModSecurity rules created by Red Hat.
+# Permission for use was granted by Martin Prpic <secalert@redhat.com>
+#
+# https://access.redhat.com/articles/1212303
+#
+SecRule REQUEST_HEADERS|REQUEST_LINE "@rx ^\(\s*\)\s+{" \
+    "id:932170,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:urlDecode,\
+    msg:'Remote Command Execution: Shellshock (CVE-2014-6271)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+SecRule ARGS_NAMES|ARGS|FILES_NAMES "@rx ^\(\s*\)\s+{" \
+    "id:932171,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecode,t:urlDecodeUni,\
+    msg:'Remote Command Execution: Shellshock (CVE-2014-6271)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Unix shell alias detection ]
+#
+# Detects Unix shell alias invocations in any context.
+#
+# Example:
+#   GET /?rce=alias%20a=b
+#
+# Shell aliasing can be performed to substitute anything in commands, escaping
+#
+# References: https://pubs.opengroup.org/onlinepubs/007904975/basedefs/xbd_chap03.html#tag_03_10 :
+# "In the shell command language, a word consisting solely of underscores, digits, and alphabetics
+# from the portable character set and any of the following characters: '!', '%', ',', '@'."
+#
+# Implementations may allow other characters within alias names as an extension.
+#
+# Regular expression generated from regex-assembly/932175.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932175
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \ba[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?l[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?s\b[\s\v]+[!-\"%',0-9@-Z_a-z]+=[^\s\v]" \
+    "id:932175,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix shell alias invocation',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ Restricted File Upload ]=-
+#
+# Detects attempts to upload a file with a forbidden filename.
+#
+# Many application contain Unrestricted File Upload vulnerabilities.
+# https://owasp.org/www-community/vulnerabilities/Unrestricted_File_Upload
+#
+# These might be abused to upload configuration files or other files
+# that affect the behavior of the web server, possibly causing remote
+# code execution.
+#
+SecRule FILES|REQUEST_HEADERS:X-Filename|REQUEST_HEADERS:X_Filename|REQUEST_HEADERS:X-File-Name \
+    "@pmFromFile restricted-upload.data" \
+    "id:932180,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Restricted File Upload Attempt',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# [ Windows command injection ]
+#
+# This rule detects Windows shell command injections.
+# If you are not running Windows, it is safe to disable this rule.
+#
+# New in CRSv4: The rules 932110 and 932115 were reorganized and renumbered to 932370 and 932380.
+# The new rules target specific Windows binaries to simplify future updates of the command list.
+#
+# A command injection takes a form such as:
+#
+#   foo.jpg&ver /r
+#   foo.jpg|ver /r
+#
+# The vulnerability exists when an application executes a shell command
+# without proper input escaping/validation.
+#
+# To prevent false positives, we look for a 'starting sequence' that
+# precedes a command in CMD syntax, such as: ; | & `
+#
+# Anatomy of the regexp:
+#
+# 1. Starting tokens
+#
+# ;        ;cmd
+# \{       {cmd
+# \|       |cmd
+# \|\|     ||cmd
+# &        &cmd
+# &&       &&cmd
+# \n       \ncmd
+# \r       \rcmd
+# `        `cmd
+#
+# 2. Command prefixes
+#
+# (        (cmd)
+# ,        ,cmd
+# @        @cmd
+# '        'cmd'
+# "        "cmd"
+# \s       spacing+cmd
+#
+# 3. Paths
+#
+# [\w'\"\./]+/                          /path/cmd
+# [\x5c'\"\^]*\w[\x5c'\"\^]*:.*\x5c     C:\Program Files\cmd
+# [\^\.\w '\"/\x5c]*\x5c)?[\"\^]*       \\net\share\dir\cmd
+#
+# 4. Quoting
+#
+# \"       "cmd"
+# \^       ^cmd
+#
+# 5. Extension/switches
+#
+# \.[\"\^]*\w+      cmd.com, cmd.exe, etc.
+# /b                cmd/h
+#
+# An effort is made to combat evasions by CMD syntax; for example,
+# the following strings are valid: c^md, @cmd, "c"md. ModSecurity
+# has a t:cmdLine transformation built-in to deal with some of these,
+# but unfortunately, that transformation replaces ';' characters (so
+# we cannot match on the start of a command) and '\' characters (so we
+# have trouble matching paths). This makes the regexp more complex.
+#
+# This rule is case-insensitive.
+#
+# Regular expression generated from regex-assembly/932370.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932370
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:t[\"\^]*i[\"\^]*m[\"\^]*e|[\n\r;`\{]|\|\|?|&&?)[\s\v]*[\s\v\"'-\(,@]*(?:[\"'\.-9A-Z_a-z]+/|(?:[\"'\x5c\^]*[0-9A-Z_a-z][\"'\x5c\^]*:.*|[ \"'\.-9A-Z\x5c\^-_a-z]*)\x5c)?[\"\^]*(?:a[\"\^]*(?:c[\"\^]*c[\"\^]*c[\"\^]*h[\"\^]*e[\"\^]*c[\"\^]*k[\"\^]*c[\"\^]*o[\"\^]*n[\"\^]*s[\"\^]*o[\"\^]*l[\"\^]*e|d[\"\^]*(?:p[\"\^]*l[\"\^]*u[\"\^]*s|v[\"\^]*p[\"\^]*a[\"\^]*c[\"\^]*k)|(?:g[\"\^]*e[\"\^]*n[\"\^]*t[\"\^]*e[\"\^]*x[\"\^]*e[\"\^]*c[\"\^]*u[\"\^]*t[\"\^]*o|s[\"\^]*p[\"\^]*n[\"\^]*e[\"\^]*t[\"\^]*_[\"\^]*c[\"\^]*o[\"\^]*m[\"\^]*p[\"\^]*i[\"\^]*l[\"\^]*e)[\"\^]*r|p[\"\^]*p[\"\^]*(?:i[\"\^]*n[\"\^]*s[\"\^]*t[\"\^]*a[\"\^]*l[\"\^]*l[\"\^]*e[\"\^]*r|v[\"\^]*l[\"\^]*p)|t[\"\^]*(?:[\s\v,\.-/;-<>].*|b[\"\^]*r[\"\^]*o[\"\^]*k[\"\^]*e[\"\^]*r))|b[\"\^]*(?:a[\"\^]*s[\"\^]*h|g[\"\^]*i[\"\^]*n[\"\^]*f[\"\^]*o|i[\"\^]*t[\"\^]*s[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*i[\"\^]*n)|c[\"\^]*(?:d[\"\^]*b|e[\"\^]*r[\"\^]*t[\"\^]*(?:o[\"\^]*c|r[\"\^]*e[\"\^]*q|u[\"\^]*t[\"\^]*i[\"\^]*l)|l[\"\^]*_[\"\^]*(?:i[\"\^]*n[\"\^]*v[\"\^]*o[\"\^]*c[\"\^]*a[\"\^]*t[\"\^]*i[\"\^]*o[\"\^]*n|l[\"\^]*o[\"\^]*a[\"\^]*d[\"\^]*a[\"\^]*s[\"\^]*s[\"\^]*e[\"\^]*m[\"\^]*b[\"\^]*l[\"\^]*y|m[\"\^]*u[\"\^]*t[\"\^]*e[\"\^]*x[\"\^]*v[\"\^]*e[\"\^]*r[\"\^]*i[\"\^]*f[\"\^]*i[\"\^]*e[\"\^]*r[\"\^]*s)|m[\"\^]*(?:d(?:[\"\^]*(?:k[\"\^]*e[\"\^]*y|l[\"\^]*3[\"\^]*2))?|s[\"\^]*t[\"\^]*p)|o[\"\^]*(?:m[\"\^]*s[\"\^]*v[\"\^]*c[\"\^]*s|n[\"\^]*(?:f[\"\^]*i[\"\^]*g[\"\^]*s[\"\^]*e[\"\^]*c[\"\^]*u[\"\^]*r[\"\^]*i[\"\^]*t[\"\^]*y[\"\^]*p[\"\^]*o[\"\^]*l[\"\^]*i[\"\^]*c[\"\^]*y|h[\"\^]*o[\"\^]*s[\"\^]*t|t[\"\^]*r[\"\^]*o[\"\^]*l)|r[\"\^]*e[\"\^]*g[\"\^]*e[\"\^]*n)|r[\"\^]*e[\"\^]*a[\"\^]*t[\"\^]*e[\"\^]*d[\"\^]*u[\"\^]*m[\"\^]*p|s[\"\^]*(?:c(?:[\"\^]*r[\"\^]*i[\"\^]*p[\"\^]*t)?|i)|u[\"\^]*s[\"\^]*t[\"\^]*o[\"\^]*m[\"\^]*s[\"\^]*h[\"\^]*e[\"\^]*l[\"\^]*l[\"\^]*h[\"\^]*o[\"\^]*s[\"\^]*t)|d[\"\^]*(?:a[\"\^]*t[\"\^]*a[\"\^]*s[\"\^]*v[\"\^]*c[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l|e[\"\^]*(?:f[\"\^]*a[\"\^]*u[\"\^]*l[\"\^]*t[\"\^]*p[\"\^]*a[\"\^]*c[\"\^]*k|s[\"\^]*k(?:[\"\^]*t[\"\^]*o[\"\^]*p[\"\^]*i[\"\^]*m[\"\^]*g[\"\^]*d[\"\^]*o[\"\^]*w[\"\^]*n[\"\^]*l[\"\^]*d[\"\^]*r)?|v[\"\^]*(?:i[\"\^]*c[\"\^]*e[\"\^]*c[\"\^]*r[\"\^]*e[\"\^]*d[\"\^]*e[\"\^]*n[\"\^]*t[\"\^]*i[\"\^]*a[\"\^]*l[\"\^]*d[\"\^]*e[\"\^]*p[\"\^]*l[\"\^]*o[\"\^]*y[\"\^]*m[\"\^]*e[\"\^]*n[\"\^]*t|t[\"\^]*o[\"\^]*o[\"\^]*l[\"\^]*s[\"\^]*l[\"\^]*a[\"\^]*u[\"\^]*n[\"\^]*c[\"\^]*h[\"\^]*e[\"\^]*r))|f[\"\^]*s[\"\^]*(?:h[\"\^]*i[\"\^]*m|v[\"\^]*c)|i[\"\^]*(?:a[\"\^]*n[\"\^]*t[\"\^]*z|s[\"\^]*k[\"\^]*s[\"\^]*h[\"\^]*a[\"\^]*d[\"\^]*o[\"\^]*w)|n[\"\^]*(?:s[\"\^]*c[\"\^]*m[\"\^]*d|x)|o[\"\^]*t[\"\^]*n[\"\^]*e[\"\^]*t|u[\"\^]*m[\"\^]*p[\"\^]*6[\"\^]*4|x[\"\^]*c[\"\^]*a[\"\^]*p)|e[\"\^]*(?:s[\"\^]*e[\"\^]*n[\"\^]*t[\"\^]*u[\"\^]*t[\"\^]*l|v[\"\^]*e[\"\^]*n[\"\^]*t[\"\^]*v[\"\^]*w[\"\^]*r|x[\"\^]*(?:c[\"\^]*e[\"\^]*l|p[\"\^]*(?:a[\"\^]*n[\"\^]*d|l[\"\^]*o[\"\^]*r[\"\^]*e[\"\^]*r)|t[\"\^]*(?:e[\"\^]*x[\"\^]*p[\"\^]*o[\"\^]*r[\"\^]*t|r[\"\^]*a[\"\^]*c[\"\^]*3[\"\^]*2)))|f[\"\^]*(?:i[\"\^]*n[\"\^]*(?:d[\"\^]*s[\"\^]*t|g[\"\^]*e)[\"\^]*r|l[\"\^]*t[\"\^]*m[\"\^]*c|o[\"\^]*r[\"\^]*f[\"\^]*i[\"\^]*l[\"\^]*e[\"\^]*s|s[\"\^]*(?:i(?:[\"\^]*a[\"\^]*n[\"\^]*y[\"\^]*c[\"\^]*p[\"\^]*u)?|u[\"\^]*t[\"\^]*i[\"\^]*l)|t[\"\^]*p)|g[\"\^]*(?:f[\"\^]*x[\"\^]*d[\"\^]*o[\"\^]*w[\"\^]*n[\"\^]*l[\"\^]*o[\"\^]*a[\"\^]*d[\"\^]*w[\"\^]*r[\"\^]*a[\"\^]*p[\"\^]*p[\"\^]*e[\"\^]*r|p[\"\^]*s[\"\^]*c[\"\^]*r[\"\^]*i[\"\^]*p[\"\^]*t)|h[\"\^]*h|i[\"\^]*(?:e[\"\^]*(?:4[\"\^]*u[\"\^]*i[\"\^]*n[\"\^]*i[\"\^]*t|a[\"\^]*d[\"\^]*v[\"\^]*p[\"\^]*a[\"\^]*c[\"\^]*k|e[\"\^]*x[\"\^]*e[\"\^]*c|f[\"\^]*r[\"\^]*a[\"\^]*m[\"\^]*e)|l[\"\^]*a[\"\^]*s[\"\^]*m|m[\"\^]*e[\"\^]*w[\"\^]*d[\"\^]*b[\"\^]*l[\"\^]*d|n[\"\^]*(?:f[\"\^]*d[\"\^]*e[\"\^]*f[\"\^]*a[\"\^]*u[\"\^]*l[\"\^]*t[\"\^]*i[\"\^]*n[\"\^]*s[\"\^]*t[\"\^]*a[\"\^]*l|s[\"\^]*t[\"\^]*a[\"\^]*l[\"\^]*l[\"\^]*u[\"\^]*t[\"\^]*i)[\"\^]*l)|j[\"\^]*s[\"\^]*c|l[\"\^]*(?:a[\"\^]*u[\"\^]*n[\"\^]*c[\"\^]*h[\"\^]*-[\"\^]*v[\"\^]*s[\"\^]*d[\"\^]*e[\"\^]*v[\"\^]*s[\"\^]*h[\"\^]*e[\"\^]*l[\"\^]*l|d[\"\^]*i[\"\^]*f[\"\^]*d[\"\^]*e)|m[\"\^]*(?:a[\"\^]*(?:k[\"\^]*e[\"\^]*c[\"\^]*a[\"\^]*b|n[\"\^]*a[\"\^]*g[\"\^]*e[\"\^]*-[\"\^]*b[\"\^]*d[\"\^]*e|v[\"\^]*i[\"\^]*n[\"\^]*j[\"\^]*e[\"\^]*c[\"\^]*t)|f[\"\^]*t[\"\^]*r[\"\^]*a[\"\^]*c[\"\^]*e|i[\"\^]*c[\"\^]*r[\"\^]*o[\"\^]*s[\"\^]*o[\"\^]*f[\"\^]*t|m[\"\^]*c|p[\"\^]*c[\"\^]*m[\"\^]*d[\"\^]*r[\"\^]*u[\"\^]*n|s[\"\^]*(?:(?:b[\"\^]*u[\"\^]*i[\"\^]*l|o[\"\^]*h[\"\^]*t[\"\^]*m[\"\^]*e)[\"\^]*d|c[\"\^]*o[\"\^]*n[\"\^]*f[\"\^]*i[\"\^]*g|d[\"\^]*(?:e[\"\^]*p[\"\^]*l[\"\^]*o[\"\^]*y|t)|h[\"\^]*t[\"\^]*(?:a|m[\"\^]*l)|i[\"\^]*e[\"\^]*x[\"\^]*e[\"\^]*c|p[\"\^]*u[\"\^]*b|x[\"\^]*s[\"\^]*l))|n[\"\^]*(?:e[\"\^]*t[\"\^]*s[\"\^]*h|t[\"\^]*d[\"\^]*s[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l)|o[\"\^]*(?:d[\"\^]*b[\"\^]*c[\"\^]*c[\"\^]*o[\"\^]*n[\"\^]*f|f[\"\^]*f[\"\^]*l[\"\^]*i[\"\^]*n[\"\^]*e[\"\^]*s[\"\^]*c[\"\^]*a[\"\^]*n[\"\^]*n[\"\^]*e[\"\^]*r[\"\^]*s[\"\^]*h[\"\^]*e[\"\^]*l[\"\^]*l|n[\"\^]*e[\"\^]*d[\"\^]*r[\"\^]*i[\"\^]*v[\"\^]*e[\"\^]*s[\"\^]*t[\"\^]*a[\"\^]*n[\"\^]*d[\"\^]*a[\"\^]*l[\"\^]*o[\"\^]*n[\"\^]*e[\"\^]*u[\"\^]*p[\"\^]*d[\"\^]*a[\"\^]*t[\"\^]*e[\"\^]*r|p[\"\^]*e[\"\^]*n[\"\^]*c[\"\^]*o[\"\^]*n[\"\^]*s[\"\^]*o[\"\^]*l[\"\^]*e)|p[\"\^]*(?:c[\"\^]*(?:a[\"\^]*l[\"\^]*u[\"\^]*a|w[\"\^]*(?:r[\"\^]*u[\"\^]*n|u[\"\^]*t[\"\^]*l))|(?:e[\"\^]*s[\"\^]*t[\"\^]*e|s)[\"\^]*r|(?:k[\"\^]*t[\"\^]*m[\"\^]*o|u[\"\^]*b[\"\^]*p[\"\^]*r)[\"\^]*n|n[\"\^]*p[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l|o[\"\^]*w[\"\^]*e[\"\^]*r[\"\^]*p[\"\^]*n[\"\^]*t|r[\"\^]*(?:e[\"\^]*s[\"\^]*e[\"\^]*n[\"\^]*t[\"\^]*a[\"\^]*t[\"\^]*i[\"\^]*o[\"\^]*n[\"\^]*h[\"\^]*o[\"\^]*s[\"\^]*t|i[\"\^]*n[\"\^]*t(?:[\"\^]*b[\"\^]*r[\"\^]*m)?|o[\"\^]*(?:c[\"\^]*d[\"\^]*u[\"\^]*m[\"\^]*p|t[\"\^]*o[\"\^]*c[\"\^]*o[\"\^]*l[\"\^]*h[\"\^]*a[\"\^]*n[\"\^]*d[\"\^]*l[\"\^]*e[\"\^]*r)))|r[\"\^]*(?:a[\"\^]*s[\"\^]*a[\"\^]*u[\"\^]*t[\"\^]*o[\"\^]*u|c[\"\^]*s[\"\^]*i|(?:d[\"\^]*r[\"\^]*l[\"\^]*e[\"\^]*a[\"\^]*k[\"\^]*d[\"\^]*i[\"\^]*a|p[\"\^]*c[\"\^]*p[\"\^]*i[\"\^]*n)[\"\^]*g|e[\"\^]*(?:g(?:[\"\^]*(?:a[\"\^]*s[\"\^]*m|e[\"\^]*d[\"\^]*i[\"\^]*t|i[\"\^]*(?:n[\"\^]*i|s[\"\^]*t[\"\^]*e[\"\^]*r[\"\^]*-[\"\^]*c[\"\^]*i[\"\^]*m[\"\^]*p[\"\^]*r[\"\^]*o[\"\^]*v[\"\^]*i[\"\^]*d[\"\^]*e[\"\^]*r)|s[\"\^]*v[\"\^]*(?:c[\"\^]*s|r[\"\^]*3[\"\^]*2)))?|(?:m[\"\^]*o[\"\^]*t|p[\"\^]*l[\"\^]*a[\"\^]*c)[\"\^]*e)|u[\"\^]*n[\"\^]*(?:d[\"\^]*l[\"\^]*l[\"\^]*3[\"\^]*2|(?:e[\"\^]*x[\"\^]*e|s[\"\^]*c[\"\^]*r[\"\^]*i[\"\^]*p[\"\^]*t)[\"\^]*h[\"\^]*e[\"\^]*l[\"\^]*p[\"\^]*e[\"\^]*r|o[\"\^]*n[\"\^]*c[\"\^]*e))|s[\"\^]*(?:c[\"\^]*(?:[\s\v,\.-/;-<>].*|h[\"\^]*t[\"\^]*a[\"\^]*s[\"\^]*k[\"\^]*s|r[\"\^]*i[\"\^]*p[\"\^]*t[\"\^]*r[\"\^]*u[\"\^]*n[\"\^]*n[\"\^]*e[\"\^]*r)|e[\"\^]*t[\"\^]*(?:r[\"\^]*e[\"\^]*s|t[\"\^]*i[\"\^]*n[\"\^]*g[\"\^]*s[\"\^]*y[\"\^]*n[\"\^]*c[\"\^]*h[\"\^]*o[\"\^]*s[\"\^]*t|u[\"\^]*p[\"\^]*a[\"\^]*p[\"\^]*i)|h[\"\^]*(?:d[\"\^]*o[\"\^]*c[\"\^]*v[\"\^]*w|e[\"\^]*l[\"\^]*l[\"\^]*3[\"\^]*2)|q[\"\^]*(?:l[\"\^]*(?:d[\"\^]*u[\"\^]*m[\"\^]*p[\"\^]*e[\"\^]*r|(?:t[\"\^]*o[\"\^]*o[\"\^]*l[\"\^]*s[\"\^]*)?p[\"\^]*s)|u[\"\^]*i[\"\^]*r[\"\^]*r[\"\^]*e[\"\^]*l)|s[\"\^]*h|t[\"\^]*o[\"\^]*r[\"\^]*d[\"\^]*i[\"\^]*a[\"\^]*g|y[\"\^]*(?:n[\"\^]*c[\"\^]*a[\"\^]*p[\"\^]*p[\"\^]*v[\"\^]*p[\"\^]*u[\"\^]*b[\"\^]*l[\"\^]*i[\"\^]*s[\"\^]*h[\"\^]*i[\"\^]*n[\"\^]*g[\"\^]*s[\"\^]*e[\"\^]*r[\"\^]*v[\"\^]*e[\"\^]*r|s[\"\^]*s[\"\^]*e[\"\^]*t[\"\^]*u[\"\^]*p))|t[\"\^]*(?:e[\"\^]*[\s\v,\.-/;-<>].*|r[\"\^]*a[\"\^]*c[\"\^]*k[\"\^]*e[\"\^]*r|t[\"\^]*(?:d[\"\^]*i[\"\^]*n[\"\^]*j[\"\^]*e[\"\^]*c[\"\^]*t|t[\"\^]*r[\"\^]*a[\"\^]*c[\"\^]*e[\"\^]*r))|u[\"\^]*(?:n[\"\^]*r[\"\^]*e[\"\^]*g[\"\^]*m[\"\^]*p[\"\^]*2|p[\"\^]*d[\"\^]*a[\"\^]*t[\"\^]*e|r[\"\^]*l|t[\"\^]*i[\"\^]*l[\"\^]*i[\"\^]*t[\"\^]*y[\"\^]*f[\"\^]*u[\"\^]*n[\"\^]*c[\"\^]*t[\"\^]*i[\"\^]*o[\"\^]*n[\"\^]*s)|v[\"\^]*(?:b[\"\^]*c|e[\"\^]*r[\"\^]*c[\"\^]*l[\"\^]*s[\"\^]*i[\"\^]*d|i[\"\^]*s[\"\^]*u[\"\^]*a[\"\^]*l[\"\^]*u[\"\^]*i[\"\^]*a[\"\^]*v[\"\^]*e[\"\^]*r[\"\^]*i[\"\^]*f[\"\^]*y[\"\^]*n[\"\^]*a[\"\^]*t[\"\^]*i[\"\^]*v[\"\^]*e|s[\"\^]*(?:i[\"\^]*i[\"\^]*s[\"\^]*e[\"\^]*x[\"\^]*e[\"\^]*l[\"\^]*a[\"\^]*u[\"\^]*n[\"\^]*c[\"\^]*h|j[\"\^]*i[\"\^]*t[\"\^]*d[\"\^]*e[\"\^]*b[\"\^]*u[\"\^]*g[\"\^]*g)[\"\^]*e[\"\^]*r)|w[\"\^]*(?:a[\"\^]*b|(?:f|m[\"\^]*i)[\"\^]*c|i[\"\^]*n[\"\^]*(?:g[\"\^]*e[\"\^]*t|r[\"\^]*m|w[\"\^]*o[\"\^]*r[\"\^]*d)|l[\"\^]*r[\"\^]*m[\"\^]*d[\"\^]*r|o[\"\^]*r[\"\^]*k[\"\^]*f[\"\^]*o[\"\^]*l[\"\^]*d[\"\^]*e[\"\^]*r[\"\^]*s|s[\"\^]*(?:(?:c[\"\^]*r[\"\^]*i[\"\^]*p|r[\"\^]*e[\"\^]*s[\"\^]*e)[\"\^]*t|l)|t[\"\^]*[\s\v,\.-/;-<>].*|u[\"\^]*a[\"\^]*u[\"\^]*c[\"\^]*l[\"\^]*t)|x[\"\^]*w[\"\^]*i[\"\^]*z[\"\^]*a[\"\^]*r[\"\^]*d|z[\"\^]*i[\"\^]*p[\"\^]*f[\"\^]*l[\"\^]*d[\"\^]*r)(?:\.[\"\^]*[0-9A-Z_a-z]+)?\b" \
+    "id:932370,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Windows Command Injection',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-windows',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+#
+# This rule detects Windows shell command injections.
+# If you are not running Windows, it is safe to disable this rule.
+#
+# New in CRSv4: The rules 932110 and 932115 were reorganized and renumbered to 932370 and 932380.
+# The new rules target specific Windows binaries to simplify future updates of the command list.
+#
+# See rule 932370 above for further explanation.
+#
+# This rule is case-insensitive.
+#
+# Regular expression generated from regex-assembly/932380.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932380
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:t[\"\^]*i[\"\^]*m[\"\^]*e|[\n\r;`\{]|\|\|?|&&?)[\s\v]*[\s\v\"'-\(,@]*(?:[\"'\.-9A-Z_a-z]+/|(?:[\"'\x5c\^]*[0-9A-Z_a-z][\"'\x5c\^]*:.*|[ \"'\.-9A-Z\x5c\^-_a-z]*)\x5c)?[\"\^]*(?:a[\"\^]*(?:s[\"\^]*s[\"\^]*o[\"\^]*c|t[\"\^]*(?:m[\"\^]*a[\"\^]*d[\"\^]*m|t[\"\^]*r[\"\^]*i[\"\^]*b)|u[\"\^]*(?:d[\"\^]*i[\"\^]*t[\"\^]*p[\"\^]*o[\"\^]*l|t[\"\^]*o[\"\^]*(?:c[\"\^]*(?:h[\"\^]*k|o[\"\^]*n[\"\^]*v)|(?:f[\"\^]*m|m[\"\^]*o[\"\^]*u[\"\^]*n)[\"\^]*t)))|b[\"\^]*(?:c[\"\^]*d[\"\^]*(?:b[\"\^]*o[\"\^]*o|e[\"\^]*d[\"\^]*i)[\"\^]*t|(?:d[\"\^]*e[\"\^]*h[\"\^]*d|o[\"\^]*o[\"\^]*t)[\"\^]*c[\"\^]*f[\"\^]*g|i[\"\^]*t[\"\^]*s[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*i[\"\^]*n)|c[\"\^]*(?:a[\"\^]*c[\"\^]*l[\"\^]*s|e[\"\^]*r[\"\^]*t[\"\^]*(?:r[\"\^]*e[\"\^]*q|u[\"\^]*t[\"\^]*i[\"\^]*l)|h[\"\^]*(?:c[\"\^]*p|d[\"\^]*i[\"\^]*r|g[\"\^]*(?:l[\"\^]*o[\"\^]*g[\"\^]*o[\"\^]*n|p[\"\^]*o[\"\^]*r[\"\^]*t|u[\"\^]*s[\"\^]*r)|k[\"\^]*(?:d[\"\^]*s[\"\^]*k|n[\"\^]*t[\"\^]*f[\"\^]*s))|l[\"\^]*e[\"\^]*a[\"\^]*n[\"\^]*m[\"\^]*g[\"\^]*r|m[\"\^]*(?:d(?:[\"\^]*k[\"\^]*e[\"\^]*y)?|s[\"\^]*t[\"\^]*p)|s[\"\^]*c[\"\^]*r[\"\^]*i[\"\^]*p[\"\^]*t)|d[\"\^]*(?:c[\"\^]*(?:d[\"\^]*i[\"\^]*a[\"\^]*g|g[\"\^]*p[\"\^]*o[\"\^]*f[\"\^]*i[\"\^]*x)|e[\"\^]*(?:f[\"\^]*r[\"\^]*a[\"\^]*g|l)|f[\"\^]*s[\"\^]*(?:d[\"\^]*i[\"\^]*a|r[\"\^]*m[\"\^]*i)[\"\^]*g|i[\"\^]*(?:a[\"\^]*n[\"\^]*t[\"\^]*z|r|s[\"\^]*(?:k[\"\^]*(?:c[\"\^]*o[\"\^]*(?:m[\"\^]*p|p[\"\^]*y)|p[\"\^]*(?:a[\"\^]*r[\"\^]*t|e[\"\^]*r[\"\^]*f)|r[\"\^]*a[\"\^]*i[\"\^]*d|s[\"\^]*h[\"\^]*a[\"\^]*d[\"\^]*o[\"\^]*w)|p[\"\^]*d[\"\^]*i[\"\^]*a[\"\^]*g))|n[\"\^]*s[\"\^]*c[\"\^]*m[\"\^]*d|(?:o[\"\^]*s[\"\^]*k[\"\^]*e|r[\"\^]*i[\"\^]*v[\"\^]*e[\"\^]*r[\"\^]*q[\"\^]*u[\"\^]*e[\"\^]*r)[\"\^]*y)|e[\"\^]*(?:n[\"\^]*d[\"\^]*l[\"\^]*o[\"\^]*c[\"\^]*a[\"\^]*l|v[\"\^]*e[\"\^]*n[\"\^]*t[\"\^]*c[\"\^]*r[\"\^]*e[\"\^]*a[\"\^]*t[\"\^]*e)|E[\"\^]*v[\"\^]*n[\"\^]*t[\"\^]*c[\"\^]*m[\"\^]*d|f[\"\^]*(?:c|i[\"\^]*(?:l[\"\^]*e[\"\^]*s[\"\^]*y[\"\^]*s[\"\^]*t[\"\^]*e[\"\^]*m[\"\^]*s|n[\"\^]*d[\"\^]*s[\"\^]*t[\"\^]*r)|l[\"\^]*a[\"\^]*t[\"\^]*t[\"\^]*e[\"\^]*m[\"\^]*p|o[\"\^]*r(?:[\"\^]*f[\"\^]*i[\"\^]*l[\"\^]*e[\"\^]*s)?|r[\"\^]*e[\"\^]*e[\"\^]*d[\"\^]*i[\"\^]*s[\"\^]*k|s[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l|(?:t[\"\^]*y[\"\^]*p|v[\"\^]*e[\"\^]*u[\"\^]*p[\"\^]*d[\"\^]*a[\"\^]*t)[\"\^]*e)|g[\"\^]*(?:e[\"\^]*t[\"\^]*(?:m[\"\^]*a[\"\^]*c|t[\"\^]*y[\"\^]*p[\"\^]*e)|o[\"\^]*t[\"\^]*o|p[\"\^]*(?:f[\"\^]*i[\"\^]*x[\"\^]*u[\"\^]*p|(?:r[\"\^]*e[\"\^]*s[\"\^]*u[\"\^]*l[\"\^]*)?t|u[\"\^]*p[\"\^]*d[\"\^]*a[\"\^]*t[\"\^]*e)|r[\"\^]*a[\"\^]*f[\"\^]*t[\"\^]*a[\"\^]*b[\"\^]*l)|h[\"\^]*(?:e[\"\^]*l[\"\^]*p[\"\^]*c[\"\^]*t[\"\^]*r|o[\"\^]*s[\"\^]*t[\"\^]*n[\"\^]*a[\"\^]*m[\"\^]*e)|i[\"\^]*(?:c[\"\^]*a[\"\^]*c[\"\^]*l[\"\^]*s|f|p[\"\^]*(?:c[\"\^]*o[\"\^]*n[\"\^]*f[\"\^]*i[\"\^]*g|x[\"\^]*r[\"\^]*o[\"\^]*u[\"\^]*t[\"\^]*e)|r[\"\^]*f[\"\^]*t[\"\^]*p)|j[\"\^]*e[\"\^]*t[\"\^]*p[\"\^]*a[\"\^]*c[\"\^]*k|k[\"\^]*(?:l[\"\^]*i[\"\^]*s[\"\^]*t|s[\"\^]*e[\"\^]*t[\"\^]*u[\"\^]*p|t[\"\^]*(?:m[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l|p[\"\^]*a[\"\^]*s[\"\^]*s))|l[\"\^]*(?:o[\"\^]*(?:d[\"\^]*c[\"\^]*t[\"\^]*r|g[\"\^]*(?:m[\"\^]*a[\"\^]*n|o[\"\^]*f[\"\^]*f))|p[\"\^]*[q-r])|m[\"\^]*(?:a[\"\^]*(?:c[\"\^]*f[\"\^]*i[\"\^]*l[\"\^]*e|k[\"\^]*e[\"\^]*c[\"\^]*a[\"\^]*b|p[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*i[\"\^]*n)|k[\"\^]*(?:d[\"\^]*i[\"\^]*r|l[\"\^]*i[\"\^]*n[\"\^]*k)|m[\"\^]*c|o[\"\^]*u[\"\^]*n[\"\^]*t[\"\^]*v[\"\^]*o[\"\^]*l|q[\"\^]*(?:b[\"\^]*k[\"\^]*u[\"\^]*p|(?:t[\"\^]*g[\"\^]*)?s[\"\^]*v[\"\^]*c)|s[\"\^]*(?:d[\"\^]*t|i[\"\^]*(?:e[\"\^]*x[\"\^]*e[\"\^]*c|n[\"\^]*f[\"\^]*o[\"\^]*3[\"\^]*2)|t[\"\^]*s[\"\^]*c))|n[\"\^]*(?:b[\"\^]*t[\"\^]*s[\"\^]*t[\"\^]*a[\"\^]*t|e[\"\^]*t[\"\^]*(?:c[\"\^]*f[\"\^]*g|d[\"\^]*o[\"\^]*m|s[\"\^]*(?:h|t[\"\^]*a[\"\^]*t))|f[\"\^]*s[\"\^]*(?:a[\"\^]*d[\"\^]*m[\"\^]*i[\"\^]*n|s[\"\^]*(?:h[\"\^]*a[\"\^]*r[\"\^]*e|t[\"\^]*a[\"\^]*t))|l[\"\^]*(?:b[\"\^]*m[\"\^]*g[\"\^]*r|t[\"\^]*e[\"\^]*s[\"\^]*t)|s[\"\^]*l[\"\^]*o[\"\^]*o[\"\^]*k[\"\^]*u[\"\^]*p|t[\"\^]*(?:b[\"\^]*a[\"\^]*c[\"\^]*k[\"\^]*u[\"\^]*p|c[\"\^]*m[\"\^]*d[\"\^]*p[\"\^]*r[\"\^]*o[\"\^]*m[\"\^]*p[\"\^]*t|f[\"\^]*r[\"\^]*s[\"\^]*u[\"\^]*t[\"\^]*l))|o[\"\^]*(?:f[\"\^]*f[\"\^]*l[\"\^]*i[\"\^]*n[\"\^]*e|p[\"\^]*e[\"\^]*n[\"\^]*f[\"\^]*i[\"\^]*l[\"\^]*e[\"\^]*s)|p[\"\^]*(?:a[\"\^]*(?:g[\"\^]*e[\"\^]*f[\"\^]*i[\"\^]*l[\"\^]*e[\"\^]*c[\"\^]*o[\"\^]*n[\"\^]*f[\"\^]*i|t[\"\^]*h[\"\^]*p[\"\^]*i[\"\^]*n)[\"\^]*g|(?:b[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*i|k[\"\^]*t[\"\^]*m[\"\^]*o)[\"\^]*n|e[\"\^]*(?:n[\"\^]*t[\"\^]*n[\"\^]*t|r[\"\^]*f[\"\^]*m[\"\^]*o[\"\^]*n)|n[\"\^]*p[\"\^]*u[\"\^]*(?:n[\"\^]*a[\"\^]*t[\"\^]*t[\"\^]*e[\"\^]*n[\"\^]*d|t[\"\^]*i[\"\^]*l)|o[\"\^]*(?:p[\"\^]*d|w[\"\^]*e[\"\^]*r[\"\^]*s[\"\^]*h[\"\^]*e[\"\^]*l[\"\^]*l)|r[\"\^]*n[\"\^]*(?:c[\"\^]*n[\"\^]*f[\"\^]*g|(?:d[\"\^]*r[\"\^]*v|m[\"\^]*n[\"\^]*g)[\"\^]*r|j[\"\^]*o[\"\^]*b[\"\^]*s|p[\"\^]*o[\"\^]*r[\"\^]*t|q[\"\^]*c[\"\^]*t[\"\^]*l)|u[\"\^]*(?:b[\"\^]*p[\"\^]*r[\"\^]*n|s[\"\^]*h[\"\^]*(?:d|p[\"\^]*r[\"\^]*i[\"\^]*n[\"\^]*t[\"\^]*e[\"\^]*r[\"\^]*c[\"\^]*o[\"\^]*n[\"\^]*n[\"\^]*e[\"\^]*c[\"\^]*t[\"\^]*i[\"\^]*o[\"\^]*n[\"\^]*s))|w[\"\^]*(?:l[\"\^]*a[\"\^]*u[\"\^]*n[\"\^]*c[\"\^]*h[\"\^]*e[\"\^]*r|s[\"\^]*h))|q[\"\^]*(?:a[\"\^]*p[\"\^]*p[\"\^]*s[\"\^]*r[\"\^]*v|p[\"\^]*r[\"\^]*o[\"\^]*c[\"\^]*e[\"\^]*s[\"\^]*s|u[\"\^]*s[\"\^]*e[\"\^]*r|w[\"\^]*i[\"\^]*n[\"\^]*s[\"\^]*t[\"\^]*a)|r[\"\^]*(?:d(?:[\"\^]*p[\"\^]*s[\"\^]*i[\"\^]*g[\"\^]*n)?|e[\"\^]*(?:f[\"\^]*s[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l|g(?:[\"\^]*(?:i[\"\^]*n[\"\^]*i|s[\"\^]*v[\"\^]*r[\"\^]*3[\"\^]*2))?|l[\"\^]*o[\"\^]*g|(?:(?:p[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*i|s[\"\^]*c[\"\^]*a)[\"\^]*)?n|x[\"\^]*e[\"\^]*c)|i[\"\^]*s[\"\^]*e[\"\^]*t[\"\^]*u[\"\^]*p|m[\"\^]*d[\"\^]*i[\"\^]*r|o[\"\^]*b[\"\^]*o[\"\^]*c[\"\^]*o[\"\^]*p[\"\^]*y|p[\"\^]*c[\"\^]*(?:i[\"\^]*n[\"\^]*f[\"\^]*o|p[\"\^]*i[\"\^]*n[\"\^]*g)|s[\"\^]*h|u[\"\^]*n[\"\^]*d[\"\^]*l[\"\^]*l[\"\^]*3[\"\^]*2|w[\"\^]*i[\"\^]*n[\"\^]*s[\"\^]*t[\"\^]*a)|s[\"\^]*(?:a[\"\^]*n|c[\"\^]*(?:h[\"\^]*t[\"\^]*a[\"\^]*s[\"\^]*k[\"\^]*s|w[\"\^]*c[\"\^]*m[\"\^]*d)|e[\"\^]*(?:c[\"\^]*e[\"\^]*d[\"\^]*i[\"\^]*t|r[\"\^]*v[\"\^]*e[\"\^]*r[\"\^]*(?:(?:c[\"\^]*e[\"\^]*i[\"\^]*p|w[\"\^]*e[\"\^]*r)[\"\^]*o[\"\^]*p[\"\^]*t[\"\^]*i[\"\^]*n|m[\"\^]*a[\"\^]*n[\"\^]*a[\"\^]*g[\"\^]*e[\"\^]*r[\"\^]*c[\"\^]*m[\"\^]*d)|t[\"\^]*x)|f[\"\^]*c|(?:h[\"\^]*o[\"\^]*w[\"\^]*m[\"\^]*o[\"\^]*u[\"\^]*n|u[\"\^]*b[\"\^]*s)[\"\^]*t|x[\"\^]*s[\"\^]*t[\"\^]*r[\"\^]*a[\"\^]*c[\"\^]*e|y[\"\^]*s[\"\^]*(?:o[\"\^]*c[\"\^]*m[\"\^]*g[\"\^]*r|t[\"\^]*e[\"\^]*m[\"\^]*i[\"\^]*n[\"\^]*f[\"\^]*o))|t[\"\^]*(?:a[\"\^]*(?:k[\"\^]*e[\"\^]*o[\"\^]*w[\"\^]*n|p[\"\^]*i[\"\^]*c[\"\^]*f[\"\^]*g|s[\"\^]*k[\"\^]*(?:k[\"\^]*i[\"\^]*l[\"\^]*l|l[\"\^]*i[\"\^]*s[\"\^]*t))|(?:c[\"\^]*m[\"\^]*s[\"\^]*e[\"\^]*t[\"\^]*u|f[\"\^]*t)[\"\^]*p|(?:(?:e[\"\^]*l[\"\^]*n[\"\^]*e|i[\"\^]*m[\"\^]*e[\"\^]*o[\"\^]*u)[\"\^]*|r[\"\^]*a[\"\^]*c[\"\^]*e[\"\^]*r[\"\^]*(?:p[\"\^]*)?)t|l[\"\^]*n[\"\^]*t[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*n|p[\"\^]*m[\"\^]*(?:t[\"\^]*o[\"\^]*o[\"\^]*l|v[\"\^]*s[\"\^]*c[\"\^]*m[\"\^]*g[\"\^]*r)|s[\"\^]*(?:(?:d[\"\^]*i[\"\^]*s[\"\^]*)?c[\"\^]*o[\"\^]*n|e[\"\^]*c[\"\^]*i[\"\^]*m[\"\^]*p|k[\"\^]*i[\"\^]*l[\"\^]*l|p[\"\^]*r[\"\^]*o[\"\^]*f)|y[\"\^]*p[\"\^]*e[\"\^]*p[\"\^]*e[\"\^]*r[\"\^]*f|z[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l)|u[\"\^]*n[\"\^]*(?:e[\"\^]*x[\"\^]*p[\"\^]*o[\"\^]*s[\"\^]*e|i[\"\^]*q[\"\^]*u[\"\^]*e[\"\^]*i[\"\^]*d|l[\"\^]*o[\"\^]*d[\"\^]*c[\"\^]*t[\"\^]*r)|v[\"\^]*(?:o[\"\^]*l|s[\"\^]*s[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*i[\"\^]*n)|w[\"\^]*(?:a[\"\^]*i[\"\^]*t[\"\^]*f[\"\^]*o[\"\^]*r|b[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*i[\"\^]*n|(?:d[\"\^]*s|e[\"\^]*(?:c|v[\"\^]*t))[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l|h[\"\^]*(?:e[\"\^]*r[\"\^]*e|o[\"\^]*a[\"\^]*m[\"\^]*i)|i[\"\^]*n[\"\^]*(?:n[\"\^]*t(?:[\"\^]*3[\"\^]*2)?|r[\"\^]*s)|m[\"\^]*i[\"\^]*c|s[\"\^]*c[\"\^]*r[\"\^]*i[\"\^]*p[\"\^]*t)|x[\"\^]*c[\"\^]*o[\"\^]*p[\"\^]*y)(?:\.[\"\^]*[0-9A-Z_a-z]+)?\b" \
+    "id:932380,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Windows Command Injection',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-windows',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:932013,phase:1,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:932014,phase:2,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+# [ Unix command injection ]
+#
+# This rule targets pefix + the source command (dot character) at PL2.
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932231.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932231
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\n\r;`\{]|\|\|?|&&?|\$(?:\(\(?|\{)|[<>]\(|\([\s\v]*\))[\s\v]*(?:[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*\.[\s\v].*\b" \
+    "id:932231,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix Command Injection',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# This is a stricter sibling of rule 932130.
+#
+# It applies the same regular expression to the
+# User-Agent and Referer HTTP headers.
+#
+# Unlike the sibling rule, this rule runs in phase 1.
+#
+SecRule REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer "@rx (?:\$(?:\((?:\(.*\)|.*)\)|\{.*})|[<>]\(.*\)|\[!?.+\])" \
+    "id:932131,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:cmdLine,\
+    msg:'Remote Command Execution: Unix Shell Expression Found',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ Rule 932200 ]=-
+#
+# Block RCE Bypass using different techniques:
+# - uninitialized variables (https://www.secjuice.com/web-application-firewall-waf-evasion/)
+# - string concatenations (https://medium.com/secjuice/web-application-firewall-waf-evasion-techniques-2-125995f3e7b0)
+# - globbing patterns (https://medium.com/secjuice/waf-evasion-techniques-718026d693d8)
+#
+# Examples:
+# - foo;cat$u+/etc$u/passwd
+# - bar;cd+/etc;/bin$u/ca*+passwd
+# - foo;ca\t+/et\c/pa\s\swd
+# - foo;c'at'+/etc/pa's'swd
+# - foo;c$@at+/et$@c/pas$@swd
+# - foo;c$!at+/et$!c/pas$!swd
+# - foo;c$*at+/et$*c/pas$*swd
+# - foo;c$?at+/et$?c/pas$?swd
+# - foo;c$-at+/et$-c/pas$-swd
+# - foo;c$_at+/et$_c/pas$_swd
+# - foo;c$$at+/et$$c/pas$$swd
+#
+# Regex notes: https://regex101.com/r/V6wrCO/1
+#
+# Regular expression generated from regex-assembly/932200.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932200
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|ARGS_NAMES|ARGS|XML:/* "@rx ['\*\?\x5c`][^\n/]+/|/[^/]+?['\*\?\x5c`]|\$[!#-\$\(\*\-0-9\?-\[_a-\{]" \
+    "id:932200,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:lowercase,t:urlDecodeUni,\
+    msg:'RCE Bypass Technique',\
+    logdata:'Matched Data: %{TX.0} found within %{TX.932200_MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.932200_matched_var_name=%{matched_var_name}',\
+    chain"
+    SecRule MATCHED_VAR "@rx /" \
+        "t:none,t:urlDecodeUni,\
+        chain"
+        SecRule MATCHED_VAR "@rx \s" \
+            "t:none,t:urlDecodeUni,\
+            setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+            setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ Rule 932205 ]=-
+#
+# Sibling of 932200 targeting the Referer header. URLs cause false positives in rule 932200
+# and must be handled with additional checks.
+#
+# Regular expression generated from regex-assembly/932205.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932205
+#
+SecRule REQUEST_HEADERS:Referer "@rx ^[^\.]+\.[^;\?]+[;\?](.*(['\*\?\x5c`][^\n/]+/|/[^/]+?['\*\?\x5c`]|\$[!#-\$\(\*\-0-9\?-\[_a-\{]))" \
+    "id:932205,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:lowercase,t:urlDecodeUni,\
+    msg:'RCE Bypass Technique',\
+    logdata:'Matched Data: %{TX.2} found within %{TX.932205_MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.932205_matched_var_name=%{matched_var_name}',\
+    chain"
+    SecRule TX:1 "@rx /" \
+        "t:none,t:urlDecodeUni,\
+        chain"
+        SecRule TX:1 "@rx \s" \
+            "t:none,t:urlDecodeUni,\
+            setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+            setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ Rule 932206 ]=-
+#
+# Sibling of 932200 targeting the Referer header. URLs cause false positives in rule 932200
+# and must be handled with additional checks.
+#
+# Regular expression generated from regex-assembly/932206.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932206
+#
+SecRule REQUEST_HEADERS:Referer "@rx ^[^\.]*?(?:['\*\?\x5c`][^\n/]+/|/[^/]+?['\*\?\x5c`]|\$[!#-\$\(\*\-0-9\?-\[_a-\{])" \
+    "id:932206,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:lowercase,t:urlDecodeUni,\
+    msg:'RCE Bypass Technique',\
+    logdata:'Matched Data: %{TX.0} found within %{TX.932206_MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.932206_matched_var_name=%{matched_var_name}',\
+    chain"
+    SecRule MATCHED_VAR "@rx /" \
+        "t:none,t:urlDecodeUni,\
+        chain"
+        SecRule MATCHED_VAR "@rx \s" \
+            "t:none,t:urlDecodeUni,\
+            setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+            setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/932220.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932220
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i).\|(?:[\s\v]*|t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\n\r;`\{]|\|\|?|&&?|\$(?:\(\(?|\{)|[<>]\(|\([\s\v]*\))[\s\v]*(?:[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:7[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[arx])?|G[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?E[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?T|a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:b|(?:p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?)?t|r(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[jp])?|s(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h)?|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[ks])|b[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z|c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[8-9][\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?9|[au][\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t|c|(?:m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?)?p|s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h)|d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[dfu]|i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[gr])|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[bdx]|n[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?v|q[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n|s(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h)?)|f[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[c-dgi]|m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t|t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p)|g[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[chr][\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?c|d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?b|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m|i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t|o|p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?g)|h[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:d|u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p)|i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[dp]|r[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?b)|j[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:j[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?s|q)|k[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h|l[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:d(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d)?|[nps]|u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?a|z(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?4)?)|m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n|t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?r|v)|n[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[cl]|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t|(?:p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?)?m)|o[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:[at][\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?x|d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?b|f|(?:k[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?)?g|h[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[cp]|r(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?y)?|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|x[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?z)|r[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?r|c(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p)?|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[dv]|(?:p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?)?m)|s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[dt]|[g-hu]|s(?:[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h)?|v[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n)|t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[cr]|b[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?l|[co][\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[ex]|i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?c)|u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|l)|v[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:3[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m|c)|x[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:x[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|z)|y[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:e[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?s|u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m)|z[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p|s[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?h))" \
+    "id:932220,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix Command Injection with pipe',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# -=[ Rule 932240 ]=-
+#
+# Generic RCE Bypass blocking using different techniques: see https://github.com/coreruleset/coreruleset/issues/2632
+#
+# This rule complements rule 932230 with generic evasion detection.
+# Anything that uses a well-known evasion technique should be blocked at this level.
+# The chained rule will exclude false positives due to german thousands separators (e.g., 10'000).
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932240.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932240
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS|XML:/* "@rx (?i)[\-0-9_a-z]+(?:[\"'\[-\]]+|\$+[!#\*\-0-9\?-@\x5c_a-\{]+|``|[\$<>]\(\))[\s\v]*[\-0-9_a-z]+" \
+    "id:932240,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix Command Injection evasion attempt detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    chain"
+    SecRule MATCHED_VAR "!@rx [0-9]\s*\'\s*[0-9]" \
+        "t:none,\
+        setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+
+
+# [ Sqlite System Command Execution ]
+#
+# This rule prevents execution of SQLite CLI commands like .system and .shell
+#
+# You can find a vulnerable script and a sample payload here:
+# https://github.com/qxxxb/ctf/tree/master/2021/zer0pts_ctf/baby_sqli
+#
+# List of sqlite3 CLI commands:
+# https://sqlite.org/cli.html
+#
+# Regular expression generated from regex-assembly/932210.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932210
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ;[\s\v]*\.[\s\v]*[\"']?(?:a(?:rchive|uth)|b(?:a(?:ckup|il)|inary)|c(?:d|h(?:anges|eck)|lone|onnection)|d(?:atabases|b(?:config|info)|ump)|e(?:cho|qp|x(?:cel|it|p(?:ert|lain)))|f(?:ilectrl|ullschema)|he(?:aders|lp)|i(?:mpo(?:rt|ster)|ndexes|otrace)|l(?:i(?:mi|n)t|o(?:ad|g))|(?:mod|n(?:onc|ullvalu)|unmodul)e|o(?:nce|pen|utput)|p(?:arameter|r(?:int|o(?:gress|mpt)))|quit|re(?:ad|cover|store)|s(?:ave|c(?:anstats|hema)|e(?:lftest|parator|ssion)|h(?:a3sum|ell|ow)?|tats|ystem)|t(?:ables|estc(?:ase|trl)|ime(?:out|r)|race)|vfs(?:info|list|name)|width)" \
+    "id:932210,\
+    phase:2,\
+    block,\
+    t:none,t:escapeSeqDecode,t:compressWhitespace,\
+    msg:'Remote Command Execution: SQLite System Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# -=[ SMTP/IMAP/POP3 Command Execution ]=-
+#
+# Rationale
+# =========
+#
+# The rules for email command execution are based on the RFCs for each protocol.
+# Some of the commands have optional and/or additional parameters, so we tried to be
+# precise to avoid as many FP in PL2 rules.
+# For those commands that resemble common English words, and may pose a higher risk of false positives,
+# they have been split off to a sibling rule in PL3.
+
+# =[ SMTP Command Execution ]=
+#
+# This rule prevents execution of SMTP related system commands.
+#
+# List of SMTP commands: from rfc 5321 (https://www.rfc-editor.org/rfc/rfc5321)
+#
+# Regular expression generated from regex-assembly/932300.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932300
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \r\n(?s:.)*?\b(?:(?i:E)(?:HLO [\--\.A-Za-z\x17f\x212a]{1,255}|XPN .{1,64})|HELO [\--\.A-Za-z\x17f\x212a]{1,255}|MAIL FROM:<.{1,64}(?i:@).{1,255}(?i:>)|(?i:R)(?:CPT TO:(?:(?i:<).{1,64}(?i:@).{1,255}(?i:>)|(?i: ))?(?i:<).{1,64}(?i:>)|SET\b)|VRFY .{1,64}(?: <.{1,64}(?i:@).{1,255}(?i:>)|(?i:@).{1,255})|AUTH [\-0-9A-Z_a-z\x17f\x212a]{1,20}(?i: )(?:(?:[\+/-9A-Z_a-z\x17f\x212a]{4})*(?:[\+/-9A-Z_a-z\x17f\x212a]{2}(?i:=)|[\+/-9A-Z_a-z\x17f\x212a]{3}))?(?i:=)|STARTTLS\b|NOOP\b(?:(?i: ).{1,255})?)" \
+    "id:932300,\
+    phase:2,\
+    block,\
+    t:none,t:escapeSeqDecode,\
+    msg:'Remote Command Execution: SMTP Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/137/134',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# =[ IMAP Command Execution ]=
+#
+# This rule prevents execution of IMAP4 related system commands.
+#
+# List of IMAP4 commands: from rfc 3501 (https://datatracker.ietf.org/doc/html/rfc3501#section-9)
+#
+# Note: Mailbox International Naming Convention uses UTF-7, so it was left out explicitly.
+#
+# Regular expression generated from regex-assembly/932310.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932310
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?is)\r\n[0-9A-Z_a-z]{1,50}\b (?:A(?:PPEND (?:[\"-#%-&\*\--9A-Z\x5c_a-z]+)?(?: \([ \x5ca-z]+\))?(?: \"?[0-9]{1,2}-[0-9A-Z_a-z]{3}-[0-9]{4} [0-9]{2}:[0-9]{2}:[0-9]{2} [\+\-][0-9]{4}\"?)? \{[0-9]{1,20}\+?\}|UTHENTICATE [\-0-9_a-z]{1,20}\r\n)|L(?:SUB (?:[\"-#\*\.-9A-Z_a-z~]+)? (?:[\"%-&\*\.-9A-Z\x5c_a-z]+)?|ISTRIGHTS (?:[\"%-&\*\--9A-Z\x5c_a-z]+)?)|S(?:TATUS (?:[\"%-&\*\--9A-Z\x5c_a-z]+)? \((?:U(?:NSEEN|IDNEXT)|MESSAGES|UIDVALIDITY|RECENT| )+\)|ETACL (?:[\"%-&\*\--9A-Z\x5c_a-z]+)? [\+\-][ac-eik-lpr-tw-x]+?)|UID (?:COPY|FETCH|STORE) (?:[\*,0-:]+)?|(?:(?:DELETE|GET)ACL|MYRIGHTS) (?:[\"%-&\*\--9A-Z\x5c_a-z]+)?)" \
+    "id:932310,\
+    phase:2,\
+    block,\
+    t:none,t:escapeSeqDecode,\
+    msg:'Remote Command Execution: IMAP Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/137/134',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# =[ POP3 Command Execution ]=
+#
+# This rule prevents execution of POP3 related system commands.
+#
+# List of POP3 commands:
+# - from rfc 1939 (https://www.rfc-editor.org/rfc/rfc1939#appendix-B)
+# - extensions from rfc 2449 (https://www.rfc-editor.org/rfc/rfc2449)
+#
+# These commands all have some kind of parameter that makes them a good PL2 target.
+#
+# Regular expression generated from regex-assembly/932320.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932320
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?is)\r\n.*?\b(?:(?:LIST|TOP [0-9]+)(?: [0-9]+)?|U(?:SER .+?|IDL(?: [0-9]+)?)|PASS .+?|(?:RETR|DELE) [0-9]+?|A(?:POP [0-9A-Z_a-z]+ [0-9a-f]{32}|UTH [\-0-9A-Z_]{1,20} (?:(?:[\+/-9A-Z_a-z]{4})*(?:[\+/-9A-Z_a-z]{2}=|[\+/-9A-Z_a-z]{3}))?=))" \
+    "id:932320,\
+    phase:2,\
+    block,\
+    t:none,t:escapeSeqDecode,\
+    msg:'Remote Command Execution: POP3 Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/137/134',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# [ Unix command injection ]
+#
+# This is a stricter sibling of rules 932230, 932235, 932250, 932260.
+# This stricter sibling detects Unix RCE with and without prefix and words of any length.
+# It uses the same regex.
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932236.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932236
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:(?:^|=)[\s\v]*(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*|(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\n\r;`\{]|\|\|?|&&?|\$(?:\(\(?|\{)|[<>]\(|\([\s\v]*\))[\s\v]*(?:[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*)[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:7z[arx]?|(?:(?:GE|POS)T|HEAD)[\s\v&\)<>\|]|a(?:(?:b|w[ks]|l(?:ias|pine))[\s\v&\)<>\|]|pt(?:[\s\v&\)<>\|]|-get)|r(?:[\s\v&\)<>j\|]|(?:p|ch)[\s\v&\)<>\|]|ia2c)|s(?:h?[\s\v&\)<>\|]|cii(?:-xfr|85)|pell)|t(?:[\s\v&\)<>\|]|obm)|dd(?:group|user)|getty|nsible-playbook|xel)|b(?:z(?:z[\s\v&\)<>\|]|c(?:at|mp)|diff|e(?:grep|xe)|f?grep|ip2(?:recover)?|less|more)|a(?:s(?:e(?:32|64|n(?:ame[\s\v&\)<>\|]|c))|h[\s\v&\)<>\|])|tch[\s\v&\)<>\|])|lkid|pftrace|r(?:eaksw|idge[\s\v&\)<>\|])|sd(?:cat|iff|tar)|u(?:iltin|n(?:dler[\s\v&\)<>\|]|zip2)|s(?:ctl|ybox))|y(?:ebug|obu))|c(?:[8-9]9|(?:a(?:t|ncel|psh)|c)[\s\v&\)<>\|]|mp|p(?:[\s\v&\)<>\|]|an|io|ulimit)|s(?:h|plit|vtool)|u(?:(?:t|rl)[\s\v&\)<>\|]|psfilter)|ertbot|h(?:attr|(?:dir|root)[\s\v&\)<>\|]|eck_(?:by_ssh|cups|log|memory|raid|s(?:sl_cert|tatusfile))|(?:flag|pas)s|g(?:passwd|rp)|mod|o(?:om|wn)|sh)|lang(?:[\s\v&\)<>\|]|\+\+)|o(?:(?:b|pro)c|lumn[\s\v&\)<>\|]|m(?:m(?:and[\s\v&\)<>\|])?|p(?:oser|ress)[\s\v&\)<>\|])|w(?:say|think))|r(?:ash[\s\v&\)<>\|]|on(?:tab)?))|d(?:(?:[du]|i(?:(?:alo)?g|r|ff)|a(?:sh|te))[\s\v&\)<>\|]|f|hclient|m(?:esg|idecode|setup)|o(?:as|(?:cker|ne)[\s\v&\)<>\|]|sbox)|pkg|vips)|e(?:(?:[bd]|cho)[\s\v&\)<>\|]|n(?:v(?:-update)?|d(?:if|sw))|qn|s(?:[\s\v&\)<>h\|]|ac)|x(?:(?:ec)?[\s\v&\)<>\|]|iftool|p(?:(?:and|(?:ec|or)t)[\s\v&\)<>\|]|r))|2fsck|(?:asy_instal|va)l|fax|grep|macs)|f(?:(?:c|etch|lock|unction)[\s\v&\)<>\|]|d|g(?:rep)?|i(?:(?:n(?:d|ger)|sh)?[\s\v&\)<>\|]|le(?:[\s\v&\)<>\|]|test))|mt|tp(?:[\s\v&\)<>\|]|stats|who)|acter|o(?:ld[\s\v&\)<>\|]|reach)|ping)|g(?:c(?:c[^\s\v]|ore)|db|e(?:(?:m|tfacl)[\s\v&\)<>\|]|ni(?:e[\s\v&\)<>\|]|soimage))|hci?|i(?:(?:t|mp)[\s\v&\)<>\|]|nsh)|(?:o|awk)[\s\v&\)<>\|]|pg|r(?:c|ep[\s\v&\)<>\|]|oup(?:[\s\v&\)<>\|]|mod))|tester|unzip|z(?:cat|exe|ip))|h(?:(?:d|up|ash|i(?:ghlight|story))[\s\v&\)<>\|]|e(?:ad[\s\v&\)<>\|]|xdump)|ost(?:id|name)|ping3|t(?:digest|op|passwd))|i(?:d|p(?:6?tables|config)?|rb|conv|f(?:config|top)|nstall[\s\v&\)<>\|]|onice|spell)|j(?:js|q|ava[\s\v&\)<>\|]|exec|o(?:(?:bs|in)[\s\v&\)<>\|]|urnalctl)|runscript)|k(?:s(?:h|shell)|ill(?:[\s\v&\)<>\|]|all)|nife[\s\v&\)<>\|])|l(?:d(?:d?[\s\v&\)<>\|]|config)|(?:[np]|inks|ynx)[\s\v&\)<>\|]|s(?:-F|b_release|cpu|hw|mod|of|pci|usb)?|ua(?:[\s\v&\)<>\|]|(?:la)?tex)|z(?:[\s\v&\)4<>\|]|4c(?:at)?|c(?:at|mp)|diff|[e-f]?grep|less|m(?:a(?:dec|info)?|ore))|a(?:st(?:[\s\v&\)<>\|]|comm|log(?:in)?)|tex[\s\v&\)<>\|])|ess(?:[\s\v&\)<>\|]|echo|(?:fil|pip)e)|ftp(?:get)?|o(?:(?:ca(?:l|te)|ok)[\s\v&\)<>\|]|g(?:inctl|(?:nam|sav)e)|setup)|trace|wp-(?:d(?:ownload|ump)|mirror|request))|m(?:a(?:(?:n|ke)[\s\v&\)<>\|]|il(?:[\s\v&\)<>q\|]|x[\s\v&\)<>\|])|ster\.passwd|wk)|tr|(?:v|utt)[\s\v&\)<>\|]|k(?:dir[\s\v&\)<>\|]|fifo|nod|temp)|locate|o(?:(?:re|unt)[\s\v&\)<>\|]|squitto)|sg(?:attrib|c(?:at|onv)|filter|merge|uniq)|ysql(?:admin|dump(?:slow)?|hotcopy|show)?)|n(?:c(?:[\s\v&\)<>\|]|\.(?:openbsd|traditional)|at)|e(?:t(?:[\s\v&\)<>\|]|(?:c|st)at|kit-ftp|plan)|ofetch)|(?:(?:ul)?l|ice)[\s\v&\)<>\|]|m(?:[\s\v&\)<>\|]|ap)|p(?:m[\s\v&\)<>\|]|ing)|a(?:no[\s\v&\)<>\|]|sm|wk)|o(?:de[\s\v&\)<>\|]|hup)|roff|s(?:enter|lookup|tat))|o(?:(?:d|ctave)[\s\v&\)<>\|]|nintr|p(?:en(?:ssl|v(?:pn|t))|kg))|p(?:a(?:(?:x|rted|tch)[\s\v&\)<>\|]|s(?:swd|te[\s\v&\)<>\|]))|d(?:b|f(?:la)?tex|ksh)|f(?:[\s\v&\)<>\|]|tp)|g(?:rep)?|hp(?:[\s\v&\)57<>\|]|-cgi)|i(?:(?:co?|ng)[\s\v&\)<>\|]|p[^\s\v]|dstat|gz)|k(?:g(?:_?info)?|exec|ill)|r(?:y?[\s\v&\)<>\|]|int(?:env|f[\s\v&\)<>\|]))|t(?:x|ar(?:diff|grep)?)|wd(?:\.db)?|xz|er(?:f|l(?:5|sh)?|ms[\s\v&\)<>\|])|opd|s(?:ed|ftp|ql)|u(?:ppet[\s\v&\)<>\|]|shd)|ython[^\s\v])|r(?:a(?:r[\s\v&\)<>\|]|k(?:e[\s\v&\)<>\|]|u))|c(?:p[\s\v&\)<>\|])?|e(?:(?:d(?:carpet)?|v|name|p(?:eat|lace))[\s\v&\)<>\|]|a(?:delf|lpath)|stic)|m(?:(?:dir)?[\s\v&\)<>\|]|user)|pm(?:[\s\v&\)<>\|]|db|(?:quer|verif)y)|bash|l(?:ogin|wrap)|nano|oute[\s\v&\)<>\|]|sync|u(?:by[^\s\v]|n-(?:mailcap|parts))|vi(?:ew|m))|s(?:c(?:p|hed|r(?:een|ipt)[\s\v&\)<>\|])|e(?:(?:d|lf|rvice)[\s\v&\)<>\|]|t(?:arch|env|facl[\s\v&\)<>\|]|sid)?|ndmail)|(?:g|ash|nap)[\s\v&\)<>\|]|h(?:(?:adow|ells)?[\s\v&\)<>\|]|\.distrib|u(?:f|tdown[\s\v&\)<>\|]))|s(?:[\s\v&\)<>\|]|h(?:[\s\v&\)<>\|]|-key(?:ge|sca)n|pass))|u(?:[\s\v&\)<>\|]|do)|vn|diff|ftp|l(?:eep[\s\v&\)<>\|]|sh)|mbclient|o(?:cat|elim|(?:rt|urce)[\s\v&\)<>\|])|p(?:lit[\s\v&\)<>\|]|wd\.db)|qlite3|t(?:art-stop-daemon|d(?:buf|err|in|out)|r(?:ace|ings[\s\v&\)<>\|]))|ys(?:ctl|tem(?:ctl|d-resolve)))|t(?:a(?:c|r[\s\v&\)<>\|]|il[\s\v&\)<>f\|]|sk(?:[\s\v&\)<>\|]|set))|bl|c(?:p(?:[\s\v&\)<>\|]|dump|ing|traceroute)|l?sh)|e(?:[ex][\s\v&\)<>\|]|lnet)|i(?:c[\s\v&\)<>\|]|me(?:(?:out)?[\s\v&\)<>\|]|datectl))|o(?:p|uch[\s\v&\)<>\|])|ftp|mux|r(?:aceroute6?|off)|shark)|u(?:dp|l(?:imit)?[\s\v&\)<>\|]|n(?:ame|(?:compress|s(?:et|hare))[\s\v&\)<>\|]|expand|iq|l(?:ink[\s\v&\)<>\|]|z(?:4|ma))|(?:pig|x)z|rar|z(?:ip[\s\v&\)<>\|]|std))|pdate-alternatives|ser(?:(?:ad|mo)d|del)|u(?:de|en)code)|v(?:i(?:m(?:[\s\v&\)<>\|]|diff)|ew[\s\v&\)<>\|]|gr|pw|rsh)|algrind|olatility[\s\v&\)<>\|])|w(?:3m|c|a(?:ll|tch)[\s\v&\)<>\|]|get|h(?:iptail[\s\v&\)<>\|]|o(?:ami|is))|i(?:reshark|sh[\s\v&\)<>\|]))|x(?:(?:x|pa)d|z(?:[\s\v&\)<>\|]|c(?:at|mp)|d(?:ec|iff)|[e-f]?grep|less|more)|args|e(?:la)?tex|mo(?:dmap|re)|term)|y(?:(?:e(?:s|lp)|arn)[\s\v&\)<>\|]|um)|z(?:ip(?:[\s\v&\)<>\|]|c(?:loak|mp)|details|grep|info|(?:merg|not)e|split|tool)|s(?:h|oelim|td(?:(?:ca|m)t|grep|less)?)|athura|c(?:at|mp)|diff|e(?:grep|ro[\s\v&\)<>\|])|f?grep|less|more|run|ypper))" \
+    "id:932236,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix Command Injection (command without evasion)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# [ Unix command injection ]
+#
+# This is a sibling of rule 932236.
+# This sibling detects Unix RCE in request headers Referer and User-Agent.
+# It uses the same regex but excludes known user-agents to avoid false positives.
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+#
+# Regular expression generated from regex-assembly/932239.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932239
+#
+SecRule REQUEST_HEADERS:Referer|REQUEST_HEADERS:User-Agent "@rx (?i)(?:(?:^|=)[\s\v]*(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*|(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\n\r;`\{]|\|\|?|&&?|\$(?:\(\(?|\{)|[<>]\(|\([\s\v]*\))[\s\v]*(?:[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*)[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:7z[arx]?|(?:(?:GE|POS)T|HEAD)[\s\v&\)<>\|]|a(?:(?:b|w[ks]|l(?:ias|pine))[\s\v&\)<>\|]|pt(?:[\s\v&\)<>\|]|-get)|r(?:[\s\v&\)<>j\|]|(?:p|ch)[\s\v&\)<>\|]|ia2c)|s(?:h?[\s\v&\)<>\|]|cii(?:-xfr|85)|pell)|t(?:[\s\v&\)<>\|]|obm)|dd(?:group|user)|getty|nsible-playbook|xel)|b(?:z(?:z[\s\v&\)<>\|]|c(?:at|mp)|diff|e(?:grep|xe)|f?grep|ip2(?:recover)?|less|more)|a(?:s(?:e(?:32|64|n(?:ame[\s\v&\)<>\|]|c))|h[\s\v&\)<>\|])|tch[\s\v&\)<>\|])|lkid|pftrace|r(?:eaksw|idge[\s\v&\)<>\|])|sd(?:cat|iff|tar)|u(?:iltin|n(?:dler[\s\v&\)<>\|]|zip2)|s(?:ctl|ybox))|y(?:ebug|obu))|c(?:[8-9]9|(?:a(?:t|ncel|psh)|c)[\s\v&\)<>\|]|mp|p(?:[\s\v&\)<>\|]|io|ulimit)|s(?:h|plit|vtool)|u(?:t[\s\v&\)<>\|]|psfilter)|ertbot|h(?:attr|(?:dir|root)[\s\v&\)<>\|]|eck_(?:by_ssh|cups|log|memory|raid|s(?:sl_cert|tatusfile))|(?:flag|pas)s|g(?:passwd|rp)|mod|o(?:om|wn)|sh)|lang(?:[\s\v&\)<>\|]|\+\+)|o(?:(?:b|pro)c|lumn[\s\v&\)<>\|]|m(?:m(?:and[\s\v&\)<>\|])?|p(?:oser|ress)[\s\v&\)<>\|])|w(?:say|think))|r(?:ash[\s\v&\)<>\|]|on(?:tab)?))|d(?:(?:[du]|i(?:(?:alo)?g|r|ff)|a(?:sh|te))[\s\v&\)<>\|]|f|hclient|m(?:esg|idecode|setup)|o(?:as|(?:cker|ne)[\s\v&\)<>\|]|sbox)|pkg|vips)|e(?:(?:[bd]|cho)[\s\v&\)<>\|]|n(?:v(?:-update)?|d(?:if|sw))|qn|s(?:[\s\v&\)<>h\|]|ac)|x(?:(?:ec)?[\s\v&\)<>\|]|iftool|p(?:(?:and|(?:ec|or)t)[\s\v&\)<>\|]|r))|2fsck|(?:asy_instal|va)l|fax|grep|macs)|f(?:(?:c|etch|lock|unction)[\s\v&\)<>\|]|d|g(?:rep)?|i(?:(?:n(?:d|ger)|sh)?[\s\v&\)<>\|]|le(?:[\s\v&\)<>\|]|test))|mt|tp(?:[\s\v&\)<>\|]|stats|who)|acter|o(?:ld[\s\v&\)<>\|]|reach)|ping)|g(?:c(?:c[^\s\v]|ore)|db|e(?:(?:m|tfacl)[\s\v&\)<>\|]|ni(?:e[\s\v&\)<>\|]|soimage))|hci?|i(?:(?:t|mp)[\s\v&\)<>\|]|nsh)|(?:o|awk)[\s\v&\)<>\|]|pg|r(?:c|ep[\s\v&\)<>\|]|oup(?:[\s\v&\)<>\|]|mod))|tester|unzip|z(?:cat|exe|ip))|h(?:(?:d|up|ash|i(?:ghlight|story))[\s\v&\)<>\|]|e(?:ad[\s\v&\)<>\|]|xdump)|ost(?:id|name)|ping3|t(?:digest|op|passwd))|i(?:d|p(?:6?tables|config)?|rb|conv|f(?:config|top)|nstall[\s\v&\)<>\|]|onice|spell)|j(?:js|q|ava[\s\v&\)<>\|]|exec|o(?:(?:bs|in)[\s\v&\)<>\|]|urnalctl)|runscript)|k(?:s(?:h|shell)|ill(?:[\s\v&\)<>\|]|all)|nife[\s\v&\)<>\|])|l(?:d(?:d?[\s\v&\)<>\|]|config)|(?:[np]|ynx)[\s\v&\)<>\|]|s(?:-F|b_release|cpu|hw|mod|of|pci|usb)?|ua(?:[\s\v&\)<>\|]|(?:la)?tex)|z(?:[\s\v&\)4<>\|]|4c(?:at)?|c(?:at|mp)|diff|[e-f]?grep|less|m(?:a(?:dec|info)?|ore))|a(?:st(?:[\s\v&\)<>\|]|comm|log(?:in)?)|tex[\s\v&\)<>\|])|ess(?:[\s\v&\)<>\|]|echo|(?:fil|pip)e)|ftp(?:get)?|o(?:(?:ca(?:l|te)|ok)[\s\v&\)<>\|]|g(?:inctl|(?:nam|sav)e)|setup)|trace|wp-(?:d(?:ownload|ump)|mirror|request))|m(?:a(?:(?:n|ke)[\s\v&\)<>\|]|il(?:[\s\v&\)<>q\|]|x[\s\v&\)<>\|])|ster\.passwd|wk)|tr|(?:v|utt)[\s\v&\)<>\|]|k(?:dir[\s\v&\)<>\|]|fifo|nod|temp)|locate|o(?:(?:re|unt)[\s\v&\)<>\|]|squitto)|sg(?:attrib|c(?:at|onv)|filter|merge|uniq)|ysql(?:admin|dump(?:slow)?|hotcopy|show)?)|n(?:c(?:[\s\v&\)<>\|]|\.(?:openbsd|traditional)|at)|e(?:t(?:[\s\v&\)<>\|]|(?:c|st)at|kit-ftp|plan)|ofetch)|(?:(?:ul)?l|ice)[\s\v&\)<>\|]|m(?:[\s\v&\)<>\|]|ap)|p(?:m[\s\v&\)<>\|]|ing)|a(?:no[\s\v&\)<>\|]|sm|wk)|o(?:de[\s\v&\)<>\|]|hup)|roff|s(?:enter|lookup|tat))|o(?:(?:d|ctave)[\s\v&\)<>\|]|nintr|p(?:en(?:ssl|v(?:pn|t))|kg))|p(?:a(?:(?:x|rted|tch)[\s\v&\)<>\|]|s(?:swd|te[\s\v&\)<>\|]))|d(?:b|f(?:la)?tex|ksh)|f(?:[\s\v&\)<>\|]|tp)|g(?:rep)?|hp(?:[\s\v&\)57<>\|]|-cgi)|i(?:(?:co?|ng)[\s\v&\)<>\|]|p[^\s\v]|dstat|gz)|k(?:g(?:_?info)?|exec|ill)|r(?:y?[\s\v&\)<>\|]|int(?:env|f[\s\v&\)<>\|]))|t(?:x|ar(?:diff|grep)?)|wd(?:\.db)?|xz|er(?:f|l(?:5|sh)?|ms[\s\v&\)<>\|])|opd|s(?:ed|ftp|ql)|u(?:ppet[\s\v&\)<>\|]|shd)|ython[2-3])|r(?:a(?:r[\s\v&\)<>\|]|k(?:e[\s\v&\)<>\|]|u))|c(?:p[\s\v&\)<>\|])?|e(?:(?:d(?:carpet)?|v|name|p(?:eat|lace))[\s\v&\)<>\|]|a(?:delf|lpath)|stic)|m(?:(?:dir)?[\s\v&\)<>\|]|user)|pm(?:[\s\v&\)<>\|]|db|(?:quer|verif)y)|bash|l(?:ogin|wrap)|nano|oute[\s\v&\)<>\|]|sync|u(?:by[^\s\v]|n-(?:mailcap|parts))|vi(?:ew|m))|s(?:c(?:p|hed|r(?:een|ipt)[\s\v&\)<>\|])|e(?:(?:d|lf|rvice)[\s\v&\)<>\|]|t(?:arch|env|facl[\s\v&\)<>\|]|sid)?|ndmail)|(?:g|ash)[\s\v&\)<>\|]|h(?:(?:adow|ells)?[\s\v&\)<>\|]|\.distrib|u(?:f|tdown[\s\v&\)<>\|]))|s(?:[\s\v&\)<>\|]|h(?:[\s\v&\)<>\|]|-key(?:ge|sca)n|pass))|u(?:[\s\v&\)<>\|]|do)|vn|diff|ftp|l(?:eep[\s\v&\)<>\|]|sh)|mbclient|o(?:cat|elim|(?:rt|urce)[\s\v&\)<>\|])|p(?:lit[\s\v&\)<>\|]|wd\.db)|qlite3|t(?:art-stop-daemon|d(?:buf|err|in|out)|r(?:ace|ings[\s\v&\)<>\|]))|ys(?:ctl|tem(?:ctl|d-resolve)))|t(?:a(?:c|r[\s\v&\)<>\|]|il[\s\v&\)<>f\|]|sk(?:[\s\v&\)<>\|]|set))|bl|c(?:p(?:[\s\v&\)<>\|]|dump|ing|traceroute)|l?sh)|e(?:[ex][\s\v&\)<>\|]|lnet)|i(?:c[\s\v&\)<>\|]|me(?:(?:out)?[\s\v&\)<>\|]|datectl))|o(?:p|uch[\s\v&\)<>\|])|ftp|mux|r(?:aceroute6?|off)|shark)|u(?:dp|l(?:imit)?[\s\v&\)<>\|]|n(?:ame|(?:compress|s(?:et|hare))[\s\v&\)<>\|]|expand|iq|l(?:ink[\s\v&\)<>\|]|z(?:4|ma))|(?:pig|x)z|rar|z(?:ip[\s\v&\)<>\|]|std))|pdate-alternatives|ser(?:(?:ad|mo)d|del)|u(?:de|en)code)|v(?:i(?:m(?:[\s\v&\)<>\|]|diff)|ew[\s\v&\)<>\|]|gr|pw|rsh)|algrind|olatility[\s\v&\)<>\|])|w(?:c|a(?:ll|tch)[\s\v&\)<>\|]|h(?:iptail[\s\v&\)<>\|]|o(?:ami|is))|i(?:reshark|sh[\s\v&\)<>\|]))|x(?:(?:x|pa)d|z(?:[\s\v&\)<>\|]|c(?:at|mp)|d(?:ec|iff)|[e-f]?grep|less|more)|args|e(?:la)?tex|mo(?:dmap|re)|term)|y(?:(?:e(?:s|lp)|arn)[\s\v&\)<>\|]|um)|z(?:ip(?:[\s\v&\)<>\|]|c(?:loak|mp)|details|grep|info|(?:merg|not)e|split|tool)|s(?:h|oelim|td(?:(?:ca|m)t|grep|less)?)|athura|c(?:at|mp)|diff|e(?:grep|ro[\s\v&\)<>\|])|f?grep|less|more|run|ypper))" \
+    "id:932239,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix Command Injection found in user-agent or referer header',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# [ Unix shell snippets ]
+#
+# Detect some common sequences found in shell commands and scripts.
+#
+# Some commands which were restricted in earlier rules due to FP,
+# have been added here with their full path, in order to catch some
+# cases where the full path is sent.
+#
+# Rule relations:
+#
+#  .932160 (base rule, PL1, unix shell commands with full path)
+#  ..932161 (stricter sibling, PL2, unix shell commands with full path in User-Agent and Referer request headers)
+#
+SecRule REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer "@pmFromFile unix-shell.data" \
+    "id:932161,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:cmdLine,t:normalizePath,\
+    msg:'Remote Command Execution: Unix Shell Code Found in REQUEST_HEADERS',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:932015,phase:1,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:932016,phase:2,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+# [ Unix command injection ]
+#
+# This rule targets pefix + commans that are prone to false positive detection at PL3.
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932232.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932232
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\n\r;`\{]|\|\|?|&&?|\$(?:\(\(?|\{)|[<>]\(|\([\s\v]*\))[\s\v]*(?:[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:(?:(?:a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?2[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|v[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[\s\v&\),<>\|].*|d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?f|p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[\s\v&\),<>\|].*|s)|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:h[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?o|[\s\v&\),<>\|].*))\b" \
+    "id:932232,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Remote Command Execution: Unix Command Injection',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+# [ Unix command injection ]
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932237.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932237
+#
+SecRule REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer "@rx (?i)\b(?:7z[arx]?|(?:(?:GE|POS)T|HEAD)[\s\v&\)<>\|]|a(?:(?:b|w[ks]|l(?:ias|pine))[\s\v&\)<>\|]|pt(?:(?:itude)?[\s\v&\)<>\|]|-get)|r(?:[\s\v&\)<>j\|]|(?:p|ch)[\s\v&\)<>\|]|ia2c)|s(?:h?[\s\v&\)<>\|]|cii(?:-xfr|85)|pell)|t(?:[\s\v&\)<>\|]|obm)|dd(?:group|user)|getty|nsible-playbook|xel)|b(?:z(?:z[\s\v&\)<>\|]|c(?:at|mp)|diff|e(?:grep|xe)|f?grep|ip2(?:recover)?|less|more)|a(?:s(?:e(?:32|64|n(?:ame[\s\v&\)<>\|]|c))|h[\s\v&\)<>\|])|tch[\s\v&\)<>\|])|lkid|pftrace|r(?:eaksw|idge[\s\v&\)<>\|])|sd(?:cat|iff|tar)|u(?:iltin|n(?:dler[\s\v&\)<>\|]|zip2)|s(?:ctl|ybox))|y(?:ebug|obu))|c(?:[8-9]9|(?:a(?:t|ncel|psh)|c)[\s\v&\)<>\|]|mp|p(?:[\s\v&\)<>\|]|io|ulimit)|s(?:h|plit|vtool)|u(?:t[\s\v&\)<>\|]|psfilter)|ertbot|h(?:attr|(?:dir|root)[\s\v&\)<>\|]|eck_(?:by_ssh|cups|log|memory|raid|s(?:sl_cert|tatusfile))|(?:flag|pas)s|g(?:passwd|rp)|mod|o(?:om|wn)|sh)|lang(?:[\s\v&\)<>\|]|\+\+)|o(?:(?:b|pro)c|lumn[\s\v&\)<>\|]|m(?:m(?:and[\s\v&\)<>\|])?|p(?:oser|ress)[\s\v&\)<>\|])|w(?:say|think))|r(?:ash[\s\v&\)<>\|]|on(?:tab)?))|d(?:(?:[du]|i(?:(?:alo)?g|r|ff)|a(?:sh|te))[\s\v&\)<>\|]|n?f|hclient|m(?:esg|idecode|setup)|o(?:as|(?:cker|ne)[\s\v&\)<>\|]|sbox)|pkg|vips)|e(?:(?:[bd]|cho)[\s\v&\)<>\|]|n(?:v(?:-update)?|d(?:if|sw))|qn|s(?:[\s\v&\)<>h\|]|ac)|x(?:(?:ec)?[\s\v&\)<>\|]|iftool|p(?:(?:and|(?:ec|or)t)[\s\v&\)<>\|]|r))|2fsck|(?:asy_instal|va)l|fax|grep|macs)|f(?:(?:c|etch|lock|unction)[\s\v&\)<>\|]|d|g(?:rep)?|i(?:(?:n(?:d|ger)|sh)?[\s\v&\)<>\|]|le(?:[\s\v&\)<>\|]|test))|mt|tp(?:[\s\v&\)<>\|]|stats|who)|acter|o(?:ld[\s\v&\)<>\|]|reach)|ping)|g(?:c(?:c[^\s\v]|ore)|db|e(?:(?:m|tfacl)[\s\v&\)<>\|]|ni(?:e[\s\v&\)<>\|]|soimage))|hci?|i(?:(?:t|mp)[\s\v&\)<>\|]|nsh)|(?:o|awk)[\s\v&\)<>\|]|pg|r(?:c|ep[\s\v&\)<>\|]|oup(?:[\s\v&\)<>\|]|mod))|tester|unzip|z(?:cat|exe|ip))|h(?:(?:d|up|ash|i(?:ghlight|story))[\s\v&\)<>\|]|e(?:ad[\s\v&\)<>\|]|xdump)|ost(?:id|name)|ping3|t(?:digest|op|passwd))|i(?:d|p(?:6?tables|config)?|rb|conv|f(?:config|top)|nstall[\s\v&\)<>\|]|onice|spell)|j(?:js|q|ava[\s\v&\)<>\|]|exec|o(?:(?:bs|in)[\s\v&\)<>\|]|urnalctl)|runscript)|k(?:s(?:h|shell)|ill(?:[\s\v&\)<>\|]|all)|nife[\s\v&\)<>\|])|l(?:d(?:d?[\s\v&\)<>\|]|config)|(?:[np]|ynx)[\s\v&\)<>\|]|s(?:-F|b_release|cpu|hw|mod|of|pci|usb)?|ua(?:[\s\v&\)<>\|]|(?:la)?tex)|z(?:[\s\v&\)4<>\|]|4c(?:at)?|c(?:at|mp)|diff|[e-f]?grep|less|m(?:a(?:dec|info)?|ore))|a(?:st(?:[\s\v&\)<>\|]|comm|log(?:in)?)|tex[\s\v&\)<>\|])|ess(?:[\s\v&\)<>\|]|echo|(?:fil|pip)e)|ftp(?:get)?|o(?:(?:ca(?:l|te)|ok)[\s\v&\)<>\|]|g(?:inctl|(?:nam|sav)e)|setup)|trace|wp-(?:d(?:ownload|ump)|mirror|request))|m(?:a(?:(?:n|ke)[\s\v&\)<>\|]|il(?:[\s\v&\)<>q\|]|x[\s\v&\)<>\|])|ster\.passwd|wk)|tr|(?:v|utt)[\s\v&\)<>\|]|k(?:dir[\s\v&\)<>\|]|fifo|nod|temp)|locate|o(?:(?:re|unt)[\s\v&\)<>\|]|squitto)|sg(?:attrib|c(?:at|onv)|filter|merge|uniq)|ysql(?:admin|dump(?:slow)?|hotcopy|show)?)|n(?:c(?:[\s\v&\)<>\|]|\.(?:openbsd|traditional)|at)|e(?:t(?:[\s\v&\)<>\|]|(?:c|st)at|kit-ftp|plan)|ofetch)|(?:(?:ul)?l|ice)[\s\v&\)<>\|]|m(?:[\s\v&\)<>\|]|ap)|p(?:m[\s\v&\)<>\|]|ing)|a(?:no[\s\v&\)<>\|]|sm|wk)|o(?:de[\s\v&\)<>\|]|hup)|roff|s(?:enter|lookup|tat))|o(?:(?:d|ctave)[\s\v&\)<>\|]|nintr|p(?:en(?:ssl|v(?:pn|t))|kg))|p(?:a(?:(?:x|cman|rted|tch)[\s\v&\)<>\|]|s(?:swd|te[\s\v&\)<>\|]))|d(?:b|f(?:la)?tex|ksh)|f(?:[\s\v&\)<>\|]|tp)|g(?:rep)?|hp(?:[\s\v&\)57<>\|]|-cgi)|i(?:(?:co?|ng)[\s\v&\)<>\|]|p[^\s\v]|dstat|gz)|k(?:g(?:_?info)?|exec|ill)|r(?:y?[\s\v&\)<>\|]|int(?:env|f[\s\v&\)<>\|]))|s(?:[\s\v&\)<>\|]|ed|ftp|ql)?|t(?:x|ar(?:diff|grep)?)|wd(?:\.db)?|xz|er(?:f|l(?:5|sh)?|ms[\s\v&\)<>\|])|opd|u(?:ppet[\s\v&\)<>\|]|shd)|ython[2-3])|r(?:a(?:r[\s\v&\)<>\|]|k(?:e[\s\v&\)<>\|]|u))|c(?:p[\s\v&\)<>\|])?|e(?:(?:d(?:carpet)?|v|name|p(?:eat|lace))[\s\v&\)<>\|]|a(?:delf|lpath)|stic)|m(?:(?:dir)?[\s\v&\)<>\|]|user)|pm(?:[\s\v&\)<>\|]|db|(?:quer|verif)y)|bash|l(?:ogin|wrap)|nano|oute[\s\v&\)<>\|]|sync|u(?:by[^\s\v]|n-(?:mailcap|parts))|vi(?:ew|m))|s(?:c(?:p|hed|r(?:een|ipt)[\s\v&\)<>\|])|e(?:(?:d|lf|rvice)[\s\v&\)<>\|]|t(?:arch|env|facl[\s\v&\)<>\|]|sid)?|ndmail)|(?:g|ash)[\s\v&\)<>\|]|h(?:(?:adow|ells)?[\s\v&\)<>\|]|\.distrib|u(?:f|tdown[\s\v&\)<>\|]))|s(?:[\s\v&\)<>\|]|h(?:[\s\v&\)<>\|]|-key(?:ge|sca)n|pass))|u(?:[\s\v&\)<>\|]|do)|vn|diff|ftp|l(?:eep[\s\v&\)<>\|]|sh)|mbclient|o(?:cat|elim|(?:rt|urce)[\s\v&\)<>\|])|p(?:lit[\s\v&\)<>\|]|wd\.db)|qlite3|t(?:art-stop-daemon|d(?:buf|err|in|out)|r(?:ace|ings[\s\v&\)<>\|]))|ys(?:ctl|tem(?:ctl|d-resolve)))|t(?:a(?:c|r[\s\v&\)<>\|]|il[\s\v&\)<>f\|]|sk(?:[\s\v&\)<>\|]|set))|bl|c(?:p(?:[\s\v&\)<>\|]|dump|ing|traceroute)|l?sh)|e(?:[ex][\s\v&\)<>\|]|lnet)|i(?:c[\s\v&\)<>\|]|me(?:(?:out)?[\s\v&\)<>\|]|datectl))|o(?:p|uch[\s\v&\)<>\|])|ftp|mux|r(?:aceroute6?|off)|shark)|u(?:dp|l(?:imit)?[\s\v&\)<>\|]|n(?:ame|(?:compress|s(?:et|hare))[\s\v&\)<>\|]|expand|iq|l(?:ink[\s\v&\)<>\|]|z(?:4|ma))|(?:pig|x)z|rar|z(?:ip[\s\v&\)<>\|]|std))|p(?:2date[\s\v&\)<>\|]|date-alternatives)|ser(?:(?:ad|mo)d|del)|u(?:de|en)code)|v(?:i(?:(?:ew)?[\s\v&\)<>\|]|m(?:[\s\v&\)<>\|]|diff)|gr|pw|rsh)|algrind|olatility[\s\v&\)<>\|])|w(?:[\s\v&\)<>c\|]|h(?:o(?:[\s\v&\)<>\|]|ami|is)?|iptail[\s\v&\)<>\|])|a(?:ll|tch)[\s\v&\)<>\|]|i(?:reshark|sh[\s\v&\)<>\|]))|x(?:(?:x|pa)d|z(?:[\s\v&\)<>\|]|c(?:at|mp)|d(?:ec|iff)|[e-f]?grep|less|more)|args|e(?:la)?tex|mo(?:dmap|re)|term)|y(?:(?:e(?:s|lp)|arn)[\s\v&\)<>\|]|um)|z(?:ip(?:[\s\v&\)<>\|]|c(?:loak|mp)|details|grep|info|(?:merg|not)e|split|tool)|s(?:h|oelim|td(?:(?:ca|m)t|grep|less)?)|athura|c(?:at|mp)|diff|e(?:grep|ro[\s\v&\)<>\|])|f?grep|less|more|run|ypper))\b" \
+    "id:932237,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:cmdLine,t:normalizePath,\
+    msg:'Remote Command Execution: Unix Shell Code Found in REQUEST_HEADERS',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/3',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+# [ Unix command injection ]
+#
+# Rule relations:
+#
+#  .932230 (base rule, PL1, targets prefix + two and three character commands)
+#  ..932231 (stricter sibling, PL2, targets prefix + the source shortcut command)
+#  ..932232 (stricter sibling, PL3, targets prefix + additional command words)
+#  .932235 (base rule, PL1, targets prefix + known command word of length > 3 without evasion)
+#
+#  .932250 (base rule, PL1, targets two and three character commands)
+#  .932260 (base rule, PL1, targets known command word of length > 3 without evasion)
+#
+#  .932240 (generic detection, PL2, targets generic evasion attempts)
+#  .932236 (stricter sibling of 932230, 932235, 932250, 932260, PL2,
+#       - with and without prefix
+#       - words of any length)
+#  ..932239 (sibling of 932236, PL2,
+#       - with and without prefix
+#       - words of any length
+#       - targets request headers user-agent and referer only
+#       - excluded words: known user-agents)
+#  ..932238 (stricter sibling of 932236, PL3,
+#       - no excluded words)
+#  .932237 (stricter sibling of 932230, 932235, 932250, 932260, PL3,
+#       - targets request headers user-agent and referer only
+#       - without prefix
+#       - with word boundaries
+#       - words of any length
+#       - excluded words: known user-agents)
+#
+#
+# Regular expression generated from regex-assembly/932238.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932238
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/*|REQUEST_HEADERS:Referer|REQUEST_HEADERS:User-Agent "@rx (?i)(?:(?:^|=)[\s\v]*(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*|(?:t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|[\n\r;`\{]|\|\|?|&&?|\$(?:\(\(?|\{)|[<>]\(|\([\s\v]*\))[\s\v]*(?:[\$\{]|(?:[\s\v]*\(|!)[\s\v]*|[0-9A-Z_a-z]+=(?:[^\s\v]*|\$(?:.*|.*)|[<>].*|'.*'|\".*\")[\s\v]+)*)[\s\v]*[\"']*(?:[\"'-\+\--9\?A-\]_a-z\|]+/)?[\"'\x5c]*(?:(?:(?:a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d|u[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?2[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?t)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?e|v[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?i)[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[\s\v&\),<>\|].*|d[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?f|p[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?c[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?m[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?a[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?n[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?[\s\v&\),<>\|].*|s)|w[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?(?:h[\"'\)\[-\x5c]*(?:(?:(?:\|\||&&)[\s\v]*)?\$[!#\(\*\-0-9\?-@_a-\{]*)?\x5c?o|[\s\v&\),<>\|].*))" \
+    "id:932238,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:cmdLine,t:normalizePath,\
+    msg:'Remote Command Execution: Unix Shell Code Found in REQUEST_HEADERS',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/3',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ Bypass Rule 930120 (wildcard) ]=-
+#
+# When Paranoia Level is set to 1 and 2, a Remote Command Execution
+# could be exploited bypassing rule 930120 (OS File Access Attempt)
+# by using wildcard characters.
+#
+# In some other cases, it could be bypassed even if the Paranoia Level is set to 3.
+# Please, keep in mind that this rule could lead to many false positives.
+#
+# The following two blog posts explain the evasions this rule is designed to detect:
+# - https://medium.com/secjuice/waf-evasion-techniques-718026d693d8
+# - https://medium.com/secjuice/web-application-firewall-waf-evasion-techniques-2-125995f3e7b0
+
+SecRule ARGS "@rx /(?:[?*]+[a-z/]+|[a-z/]+[?*]+)" \
+    "id:932190,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecode,t:urlDecodeUni,t:normalizePath,t:cmdLine,\
+    msg:'Remote Command Execution: Wildcard bypass technique attempt',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+
+# -=[ SMTP commands ]=-
+#
+# This rule prevents execution of SMTP related system commands.
+#
+# These commands may have a higher risk of false positives.
+# For explanation of this rule, see above rule 932300.
+#
+# Rule 932301 is a stricter sibling of rule 932300.
+#
+# Regular expression generated from regex-assembly/932301.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932301
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \r\n(?s:.)*?\b(?:DATA|QUIT|HELP(?: .{1,255})?)" \
+    "id:932301,\
+    phase:2,\
+    block,\
+    t:none,t:escapeSeqDecode,\
+    msg:'Remote Command Execution: SMTP Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/3',\
+    tag:'OWASP_CRS',\
+    tag:'capec/137/134',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+# =[ IMAP4 Command Execution ]=
+#
+# This rule prevents execution of IMAP4 related system commands.
+#
+# These commands may have a higher risk of false positives.
+# For explanation of this rule, see above rule 932310.
+#
+# Rule 932311 is a stricter sibling of rule 932310.
+#
+# Regular expression generated from regex-assembly/932311.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932311
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?is)\r\n[0-9A-Z_a-z]{1,50}\b (?:C(?:(?:REATE|OPY [\*,0-:]+) [\"-#%-&\*\--9A-Z\x5c_a-z]+|APABILITY|HECK|LOSE)|DELETE [\"-#%-&\*\--\.0-9A-Z\x5c_a-z]+|EX(?:AMINE [\"-#%-&\*\--\.0-9A-Z\x5c_a-z]+|PUNGE)|FETCH [\*,0-:]+|L(?:IST [\"-#\*\--9A-Z\x5c_a-z~]+? [\"-#%-&\*\--9A-Z\x5c_a-z]+|OG(?:IN [\--\.0-9@_a-z]{1,40} .*?|OUT))|RENAME [\"-#%-&\*\--9A-Z\x5c_a-z]+? [\"-#%-&\*\--9A-Z\x5c_a-z]+|S(?:E(?:LECT [\"-#%-&\*\--9A-Z\x5c_a-z]+|ARCH(?: CHARSET [\--\.0-9A-Z_a-z]{1,40})? (?:(KEYWORD \x5c)?(?:A(?:LL|NSWERED)|BCC|D(?:ELETED|RAFT)|(?:FLAGGE|OL)D|RECENT|SEEN|UN(?:(?:ANSWER|FLAGG)ED|D(?:ELETED|RAFT)|SEEN)|NEW)|(?:BODY|CC|FROM|HEADER .{1,100}|NOT|OR .{1,255}|T(?:EXT|O)) .{1,255}|LARGER [0-9]{1,20}|[\*,0-:]+|(?:BEFORE|ON|S(?:ENT(?:(?:BEFOR|SINC)E|ON)|INCE)) \"?[0-9]{1,2}-[0-9A-Z_a-z]{3}-[0-9]{4}\"?|S(?:MALLER [0-9]{1,20}|UBJECT .{1,255})|U(?:ID [\*,0-:]+?|NKEYWORD \x5c(Seen|(?:Answer|Flagg)ed|D(?:eleted|raft)|Recent))))|T(?:ORE [\*,0-:]+? [\+\-]?FLAGS(?:\.SILENT)? (?:\(\x5c[a-z]{1,20}\))?|ARTTLS)|UBSCRIBE [\"-#%-&\*\--9A-Z\x5c_a-z]+)|UN(?:SUBSCRIBE [\"-#%-&\*\--9A-Z\x5c_a-z]+|AUTHENTICATE)|NOOP)" \
+    "id:932311,\
+    phase:2,\
+    block,\
+    t:none,t:escapeSeqDecode,\
+    msg:'Remote Command Execution: IMAP Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/3',\
+    tag:'OWASP_CRS',\
+    tag:'capec/137/134',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+# =[ POP3 Command Execution ]=
+#
+# This rule prevents execution of POP3 related system commands.
+#
+# These commands may have a higher risk of false positives.
+# For explanation of this rule, see above rule 932320.
+#
+# Rule 932321 is a stricter sibling of rule 932320.
+#
+# Regular expression generated from regex-assembly/932321.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 932321
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \r\n(?s:.)*?\b(?:(?:QUI|STA|RSE)(?i:T)|NOOP|CAPA)" \
+    "id:932321,\
+    phase:2,\
+    block,\
+    t:none,t:escapeSeqDecode,\
+    msg:'Remote Command Execution: POP3 Command Execution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/3',\
+    tag:'OWASP_CRS',\
+    tag:'capec/137/134',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+
+# =[ Unix shell history invocation ]=
+#
+# This rule is a stricter sibling of 932330.
+# Shell history can also be invoked by providing an absolute position: '!1' or by repeating the last command '!!'.
+# The latter might seem harmless as you would expect that it already requires a successful exploitation, but it is a threat in disguise.
+#
+# Imagine the following requests:
+#   GET /?rce=c
+#   GET /?rce=!!!!
+# The last request will invoke /usr/bin/cc, which is otherwise blocked by 932150.
+#
+# Neither !1 nor !! is necessarily valid speech, but blocking either of them is much more likely to cause false-positives than 932330.
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx !(?:\d|!)" \
+    "id:932331,\
+    phase:2,\
+    block,\
+    t:none,\
+    msg:'Remote Command Execution: Unix shell history invocation',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-shell',\
+    tag:'platform-unix',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/3',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/88',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:932017,phase:1,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:932018,phase:2,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-REQUEST-932-APPLICATION-ATTACK-RCE"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-933-APPLICATION-ATTACK-PHP.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf
similarity index 72%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-933-APPLICATION-ATTACK-PHP.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf
index 58be88f2f7..4a8e149710 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-933-APPLICATION-ATTACK-PHP.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,18 +14,18 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:933011,phase:1,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:933012,phase:2,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:933011,phase:1,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:933012,phase:2,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 #
 # -=[ PHP Injection Attacks ]=-
 #
 # [ References ]
-# http://rips-scanner.sourceforge.net/
-# https://www.owasp.org/index.php/PHP_Top_5#P1:_Remote_Code_Executionh
+# https://rips-scanner.sourceforge.net/
+# https://wiki.owasp.org/index.php/PHP_Top_5#P1:_Remote_Code_Executionh
 #
 
 #
@@ -44,12 +44,12 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:933012,phase:2,pass,nolog,skipAf
 # Therefore, that pattern is now checked by rule 933190 in paranoia levels
 # 3 or higher.
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:<\?(?:[^x]|x[^m]|xm[^l]|xml[^\s]|xml$|$)|<\?php|\[(?:\/|\\\\)?php\])" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:<\?(?:[^x]|x[^m]|xm[^l]|xml[^\s]|xml$|$)|<\?php|\[(?:/|\x5c)?php\])" \
     "id:933100,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:lowercase,\
+    t:none,t:lowercase,\
     msg:'PHP Injection Attack: PHP Open Tag Found',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -59,11 +59,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # [ PHP Script Uploads ]
@@ -72,7 +71,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 # (.php, .phps, .phtml, .php5 etc).
 #
 # Many application contain Unrestricted File Upload vulnerabilities.
-# https://www.owasp.org/index.php/Unrestricted_File_Upload
+# https://owasp.org/www-community/vulnerabilities/Unrestricted_File_Upload
 #
 # Attackers may use such a vulnerability to achieve remote code execution
 # by uploading a .php file. If the upload storage location is predictable
@@ -80,13 +79,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 # .php file and have the code within it executed on the server.
 #
 # Also block files with just dot (.) characters after the extension:
-# https://community.rapid7.com/community/metasploit/blog/2013/08/15/time-to-patch-joomla
+# https://www.rapid7.com/blog/post/2013/08/15/time-to-patch-joomla/
 #
 # Some AJAX uploaders use the nonstandard request headers X-Filename,
 # X_Filename, or X-File-Name to transmit the file name to the server;
 # scan these request headers as well as multipart/form-data file names.
 #
-SecRule FILES|REQUEST_HEADERS:X-Filename|REQUEST_HEADERS:X_Filename|REQUEST_HEADERS:X.Filename|REQUEST_HEADERS:X-File-Name "@rx .*\.(?:php\d*|phtml)\.*$" \
+SecRule FILES|REQUEST_HEADERS:X-Filename|REQUEST_HEADERS:X_Filename|REQUEST_HEADERS:X.Filename|REQUEST_HEADERS:X-File-Name "@rx .*\.ph(?:p\d*|tml|ar|ps|t|pt)\.*$" \
     "id:933110,\
     phase:2,\
     block,\
@@ -101,11 +100,10 @@ SecRule FILES|REQUEST_HEADERS:X-Filename|REQUEST_HEADERS:X_Filename|REQUEST_HEAD
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -116,9 +114,9 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:normalisePath,t:lowercase,\
+    t:none,t:normalisePath,\
     msg:'PHP Injection Attack: Configuration Directive Found',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.933120_TX_0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
     tag:'language-php',\
     tag:'platform-multi',\
@@ -126,14 +124,14 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
+    setvar:'tx.933120_tx_0=%{tx.0}',\
     chain"
     SecRule MATCHED_VARS "@pm =" \
         "capture,\
-        ctl:auditLogParts=+E,\
         setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -144,7 +142,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     phase:2,\
     block,\
     capture,\
-    t:none,t:normalisePath,t:urlDecodeUni,t:lowercase,\
+    t:none,t:normalisePath,t:urlDecodeUni,\
     msg:'PHP Injection Attack: Variables Found',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -154,11 +152,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -191,11 +188,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -206,7 +202,15 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 # could lead to RCE as describled by Sam Thomas at BlackHat USA 2018 (https://bit.ly/2yaKV5X), even
 # wrappers like zlib://, glob://, rar://, zip://, etc... could lead to LFI and expect:// to RCE.
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:zlib|glob|phar|ssh2|rar|ogg|expect|zip)://" \
+# Valid PHP wrappers can be found in the PHP documentation here:
+# https://www.php.net/manual/en/wrappers.php
+#
+# Regular expression generated from regex-assembly/933200.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 933200
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:bzip2|expect|glob|ogg|(?:ph|r)ar|ssh2(?:.(?:s(?:hell|(?:ft|c)p)|exec|tunnel))?|z(?:ip|lib))://" \
     "id:933200,\
     phase:2,\
     block,\
@@ -220,11 +224,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -247,7 +250,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 #		false positives in natural language or other contexts.
 #		Examples: 'chr', 'eval'.
 #		To mitigate false positives, a regexp looks for PHP function syntax, e.g. 'eval()'.
-#		Regexp is generated from function names in util/regexp-assemble/regexp-933160.data
+#		Regexp is generated from function names in util/regexp-assemble/data/933160.data
 #
 # - Rule 933151: ~1300 words of lesser importance. This includes most PHP functions and keywords.
 #		Examples: 'addslashes', 'array_diff'.
@@ -261,7 +264,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 #		Examples: 'abs', 'cos'.
 #		To mitigate false positives, a regexp matches on function syntax, e.g. 'abs()'.
 #		This rule only runs in paranoia level 3 or higher.
-#		Regexp is generated from function names in util/regexp-assemble/regexp-933161.data
+#		Regexp is generated from function names in util/regexp-assemble/data/933161.data
 #
 
 
@@ -278,7 +281,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     phase:2,\
     block,\
     capture,\
-    t:none,t:lowercase,\
+    t:none,\
     msg:'PHP Injection Attack: High-Risk PHP Function Name Found',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -288,11 +291,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -321,13 +323,12 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
 # [ Apache Struts vulnerability CVE-2018-11776 - Exploit tested: https://www.exploit-db.com/exploits/45260 ]
 # [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
 #
-# Regexp generated from util/regexp-assemble/regexp-933160.data using Regexp::Assemble.
-# See https://coreruleset.org/20190826/optimizing-regular-expressions/ for usage.
+# Regular expression generated from regex-assembly/933160.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 933160
 #
-# Note that after assemble, PHP function syntax pre/postfix is added to the Regexp::Assemble
-# output. Example: "@rx (?i)\bASSEMBLE_OUTPUT_HERE(?:\s|/\*.*\*/|//.*|#.*)*\(.*\)"
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:s(?:e(?:t(?:_(?:e(?:xception|rror)_handler|magic_quotes_runtime|include_path)|defaultstub)|ssion_s(?:et_save_handler|tart))|qlite_(?:(?:(?:unbuffered|single|array)_)?query|create_(?:aggregate|function)|p?open|exec)|tr(?:eam_(?:context_create|socket_client)|ipc?slashes|rev)|implexml_load_(?:string|file)|ocket_c(?:onnect|reate)|h(?:ow_sourc|a1_fil)e|pl_autoload_register|ystem)|p(?:r(?:eg_(?:replace(?:_callback(?:_array)?)?|match(?:_all)?|split)|oc_(?:(?:terminat|clos|nic)e|get_status|open)|int_r)|o(?:six_(?:get(?:(?:e[gu]|g)id|login|pwnam)|mk(?:fifo|nod)|ttyname|kill)|pen)|hp(?:_(?:strip_whitespac|unam)e|version|info)|g_(?:(?:execut|prepar)e|connect|query)|a(?:rse_(?:ini_file|str)|ssthru)|utenv)|r(?:unkit_(?:function_(?:re(?:defin|nam)e|copy|add)|method_(?:re(?:defin|nam)e|copy|add)|constant_(?:redefine|add))|e(?:(?:gister_(?:shutdown|tick)|name)_function|ad(?:(?:gz)?file|_exif_data|dir))|awurl(?:de|en)code)|i(?:mage(?:createfrom(?:(?:jpe|pn)g|x[bp]m|wbmp|gif)|(?:jpe|pn)g|g(?:d2?|if)|2?wbmp|xbm)|s_(?:(?:(?:execut|write?|read)ab|fi)le|dir)|ni_(?:get(?:_all)?|set)|terator_apply|ptcembed)|g(?:et(?:_(?:c(?:urrent_use|fg_va)r|meta_tags)|my(?:[gpu]id|inode)|(?:lastmo|cw)d|imagesize|env)|z(?:(?:(?:defla|wri)t|encod|fil)e|compress|open|read)|lob)|a(?:rray_(?:u(?:intersect(?:_u?assoc)?|diff(?:_u?assoc)?)|intersect_u(?:assoc|key)|diff_u(?:assoc|key)|filter|reduce|map)|ssert(?:_options)?)|h(?:tml(?:specialchars(?:_decode)?|_entity_decode|entities)|(?:ash(?:_(?:update|hmac))?|ighlight)_file|e(?:ader_register_callback|x2bin))|f(?:i(?:le(?:(?:[acm]tim|inod)e|(?:_exist|perm)s|group)?|nfo_open)|tp_(?:nb_(?:ge|pu)|connec|ge|pu)t|(?:unction_exis|pu)ts|write|open)|o(?:b_(?:get_(?:c(?:ontents|lean)|flush)|end_(?:clean|flush)|clean|flush|start)|dbc_(?:result(?:_all)?|exec(?:ute)?|connect)|pendir)|m(?:b_(?:ereg(?:_(?:replace(?:_callback)?|match)|i(?:_replace)?)?|parse_str)|(?:ove_uploaded|d5)_file|ethod_exists|ysql_query|kdir)|e(?:x(?:if_(?:t(?:humbnail|agname)|imagetype|read_data)|ec)|scapeshell(?:arg|cmd)|rror_reporting|val)|c(?:url_(?:file_create|exec|init)|onvert_uuencode|reate_function|hr)|u(?:n(?:serialize|pack)|rl(?:de|en)code|[ak]?sort)|(?:json_(?:de|en)cod|debug_backtrac|tmpfil)e|b(?:(?:son_(?:de|en)|ase64_en)code|zopen)|var_dump)(?:\s|/\*.*\*/|//.*|#.*)*\(.*\)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b\(?[\"']*(?:assert(?:_options)?|c(?:hr|reate_function)|e(?:val|x(?:ec|p))|file(?:group)?|glob|i(?:mage(?:gif|(?:jpe|pn)g|wbmp|xbm)|s_a)|md5|o(?:pendir|rd)|p(?:assthru|open|rev)|(?:read|tmp)file|un(?:pac|lin)k|s(?:tat|ubstr|ystem))(?:/(?:\*.*\*/|/.*)|#.*[\s\v]|\")*[\"']*\)?[\s\v]*\(.*\)" \
     "id:933160,\
     phase:2,\
     block,\
@@ -342,11 +343,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -363,7 +363,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
 # unserialize() call, resulting in an arbitrary PHP object(s) injection into the
 # application scope.
 #
-# https://www.owasp.org/index.php/PHP_Object_Injection
+# https://owasp.org/www-community/vulnerabilities/PHP_Object_Injection
 #
 # In serialized form, PHP objects have the following format:
 #
@@ -371,7 +371,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
 #    O:3:"Foo":0:{}
 #
 # Also detected are PHP objects with a custom unserializer:
-# http://www.phpinternalsbook.com/classes_objects/serialization.html
+# https://www.phpinternalsbook.com/php5/classes_objects/serialization.html
 # These have the following format:
 #
 #    C:11:"ArrayObject":37:{x:i:0;a:1:{s:1:"a";s:1:"b";};m:a:0:{}}
@@ -398,11 +398,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 
@@ -454,24 +453,24 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 # [ PHP Functions: Variable Function Prevent Bypass ]
 #
 # Referring to https://www.secjuice.com/php-rce-bypass-filters-sanitization-waf/
+# Regex test on https://regex101.com/r/x1tfXG/1
 # the rule 933180 could be bypassed by using the following payloads:
 #
-# - (system)('uname')
-# - (sy.(st).em)('uname')
-# - (string)"system"('uname')
-# - define('x', 'sys' . 'tem');(x)/* comment */('uname')
-# - $y = 'sys'.'tem';($y)('uname')
+# - (system)('uname');
+# - (sy.(st).em)('uname');
+# - (string)"system"('uname');
+# - define('x', 'sys' . 'tem');(x)/* comment */('uname');
+# - $y = 'sys'.'tem';($y)('uname');
 # - define('z', [['sys' .'tem']]);(z)[0][0]('uname');
-# - (system)(ls)
+# - (system)(ls);
 # - (/**/system)(ls/**/);
 # - (['system'])[0]('uname');
 # - (++[++system++][++0++])++{/*dsasd*/0}++(++ls++);
@@ -481,12 +480,17 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
 # - [ACME] this is a test (just a test)
 # - Test (with two) rounded (brackets)
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?:(?:\(|\[)[a-zA-Z0-9_.$\"'\[\](){}/*\s]+(?:\)|\])[0-9_.$\"'\[\](){}/*\s]*\([a-zA-Z0-9_.$\"'\[\](){}/*\s].*\)|\([\s]*string[\s]*\)[\s]*(?:\"|'))" \
+# Regular expression generated from regex-assembly/933210.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 933210
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?:\((?:.+\)(?:[\"'][\-0-9A-Z_a-z]+[\"'])?\(.+|[^\)]*string[^\)]*\)[\s\v\"'\--\.0-9A-\[\]_a-\{\}]+\([^\)]*)|(?:\[[0-9]+\]|\{[0-9]+\}|\$[^\(-\),\.-/;\x5c]+|[\"'][\-0-9A-Z\x5c_a-z]+[\"'])\(.+)\);" \
     "id:933210,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecode,t:replaceComments,t:compressWhitespace,\
+    t:none,t:urlDecode,t:replaceComments,t:removeWhitespace,\
     msg:'PHP Injection Attack: Variable Function Call Found',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -496,16 +500,15 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:933013,phase:1,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:933014,phase:2,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:933013,phase:1,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:933014,phase:2,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 #
@@ -530,9 +533,9 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     phase:2,\
     block,\
     capture,\
-    t:none,t:lowercase,\
+    t:none,\
     msg:'PHP Injection Attack: Medium-Risk PHP Function Name Found',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.933151_TX_0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
     tag:'language-php',\
     tag:'platform-multi',\
@@ -540,22 +543,22 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
+    setvar:'tx.933151_tx_0=%{tx.0}',\
     chain"
     SecRule MATCHED_VARS "@pm (" \
         "capture,\
-        ctl:auditLogParts=+E,\
         setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:933015,phase:1,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:933016,phase:2,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:933015,phase:1,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:933016,phase:2,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 #
@@ -574,12 +577,13 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:933016,phase:2,pass,nolog,skipAf
 # regex in this case to look for these values whereas in its sibling rule we use
 # @pmFromFile for flexibility and performance.
 #
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl < regexp-933131.data
+# Regular expression generated from regex-assembly/933131.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 933131
 #
 # This rule is a stricter sibling of rule 933130.
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:HTTP_(?:ACCEPT(?:_(?:ENCODING|LANGUAGE|CHARSET))?|(?:X_FORWARDED_FO|REFERE)R|(?:USER_AGEN|HOS)T|CONNECTION|KEEP_ALIVE)|PATH_(?:TRANSLATED|INFO)|ORIG_PATH_INFO|QUERY_STRING|REQUEST_URI|AUTH_TYPE)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx AUTH_TYPE|HTTP_(?:ACCEPT(?:_(?:CHARSET|ENCODING|LANGUAGE))?|CONNECTION|(?:HOS|USER_AGEN)T|KEEP_ALIVE|(?:REFERE|X_FORWARDED_FO)R)|ORIG_PATH_INFO|PATH_(?:INFO|TRANSLATED)|QUERY_STRING|REQUEST_URI" \
     "id:933131,\
     phase:2,\
     block,\
@@ -594,11 +598,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
     tag:'paranoia-level/3',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -619,13 +622,12 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 # [ Apache Struts vulnerability CVE-2018-11776 - Exploit tested: https://www.exploit-db.com/exploits/45262 ]
 # [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
 #
-# Regexp generated from util/regexp-assemble/regexp-933161.data using Regexp::Assemble.
-# See https://coreruleset.org/20190826/optimizing-regular-expressions/ for usage.
-#
-# Note that after assemble, PHP function syntax pre/postfix is added to the Regexp::Assemble
-# output. Example: "@rx (?i)\bASSEMBLE_OUTPUT_HERE(?:\s|/\*.*\*/|//.*|#.*)*\(.*\)"
+# Regular expression generated from regex-assembly/933161.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 933161
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:i(?:s(?:_(?:in(?:t(?:eger)?|finite)|n(?:u(?:meric|ll)|an)|(?:calla|dou)ble|s(?:calar|tring)|f(?:inite|loat)|re(?:source|al)|l(?:ink|ong)|a(?:rray)?|object|bool)|set)|n(?:(?:clud|vok)e|t(?:div|val))|(?:mplod|dat)e|conv)|s(?:t(?:r(?:(?:le|sp)n|coll)|at)|(?:e(?:rializ|ttyp)|huffl)e|i(?:milar_text|zeof|nh?)|p(?:liti?|rintf)|(?:candi|ubst)r|y(?:mlink|slog)|o(?:undex|rt)|leep|rand|qrt)|f(?:ile(?:(?:siz|typ)e|owner|pro)|l(?:o(?:atval|ck|or)|ush)|(?:rea|mo)d|t(?:ell|ok)|unction|close|gets|stat|eof)|c(?:h(?:o(?:wn|p)|eckdate|root|dir|mod)|o(?:(?:(?:nsta|u)n|mpac)t|sh?|py)|lose(?:dir|log)|(?:urren|ryp)t|eil)|e(?:x(?:(?:trac|i)t|p(?:lode)?)|a(?:ster_da(?:te|ys)|ch)|r(?:ror_log|egi?)|mpty|cho|nd)|l(?:o(?:g(?:1[0p])?|caltime)|i(?:nk(?:info)?|st)|(?:cfirs|sta)t|evenshtein|trim)|d(?:i(?:(?:skfreespac)?e|r(?:name)?)|e(?:fined?|coct)|(?:oubleva)?l|ate)|r(?:e(?:(?:quir|cod|nam)e|adlin[ek]|wind|set)|an(?:ge|d)|ound|sort|trim)|m(?:b(?:split|ereg)|i(?:crotime|n)|a(?:i[ln]|x)|etaphone|y?sql|hash)|u(?:n(?:(?:tain|se)t|iqid|link)|s(?:leep|ort)|cfirst|mask)|a(?:s(?:(?:se|o)rt|inh?)|r(?:sort|ray)|tan[2h]?|cosh?|bs)|t(?:e(?:xtdomain|mpnam)|a(?:int|nh?)|ouch|ime|rim)|h(?:e(?:ader(?:s_(?:lis|sen)t)?|brev)|ypot|ash)|p(?:a(?:thinfo|ck)|r(?:intf?|ev)|close|o[sw]|i)|g(?:et(?:t(?:ext|ype)|date)|mdate)|o(?:penlog|ctdec|rd)|b(?:asename|indec)|n(?:atsor|ex)t|k(?:sort|ey)|quotemeta|wordwrap|virtual|join)(?:\s|/\*.*\*/|//.*|#.*)*\(.*\)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:a(?:bs|s(?:in|sert(?:_options)?))|basename|c(?:h(?:eckdate|r(?:oot)?)|o(?:(?:mpac|(?:nsta|u)n)t|py|sh?)|r(?:eate_function|ypt)|urrent)|d(?:ate|e(?:coct|fined?)|ir)|e(?:nd|val|x(?:ec|p(?:lode)?|tract))|f(?:ile(?:(?:[acm]tim|inod|siz|typ)e|group|owner|perms)?|l(?:o(?:ck|or)|ush))|glob|h(?:ash|eader)|i(?:date|m(?:age(?:gif|(?:jpe|pn)g|wbmp|xbm)|plode)|s_a)|key|l(?:ink|og)|m(?:a(?:il|x)|d5|in)|n(?:ame|ext)|o(?:pendir|rd)|p(?:a(?:ck|ss(?:thru)?)|i|o(?:pen|w)|rev)|r(?:an(?:d|ge)|e(?:(?:adfil|nam)e|set)|ound)|s(?:(?:erializ|huffl)e|in|leep|(?:or|ta)t|ubstr|y(?:mlink|s(?:log|tem)))|t(?:an|(?:im|mpfil)e|ouch|rim)|u(?:cfirst|n(?:lin|pac)k)|virtual)(?:[\s\v]|/\*.*\*/|(?:#|//).*)*\(.*\)" \
     "id:933161,\
     phase:2,\
     block,\
@@ -640,11 +642,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
     tag:'paranoia-level/3',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -683,11 +684,10 @@ SecRule FILES|REQUEST_HEADERS:X-Filename|REQUEST_HEADERS:X_Filename|REQUEST_HEAD
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
     tag:'paranoia-level/3',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
 
 # [ PHP Closing Tag Found ]
@@ -713,17 +713,51 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
     tag:'paranoia-level/3',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+
+# [ PHP Functions: Variable Function Prevent Bypass ]
+#
+# This rule is a stricter sibling of 933210.
+# Unlike 933210, this rule will also match "this is a 'dog' (not a cat)", because the semi-colon at the end of the string is optional.
+# This is useful for PHP evals where the semi-colon is already hardcoded:
+# <?php eval("($input);") ?>
+#
+# Any potential function calls not at the end of a string will require a semi-colon to form valid PHP, which is automatically covered by 933210.
+#
+# Regular expression generated from regex-assembly/933211.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 933211
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?:\((?:.+\)(?:[\"'][\-0-9A-Z_a-z]+[\"'])?\(.+|[^\)]*string[^\)]*\)[\s\v\"'\--\.0-9A-\[\]_a-\{\}]+\([^\)]*)|(?:\[[0-9]+\]|\{[0-9]+\}|\$[^\(-\),\.-/;\x5c]+|[\"'][\-0-9A-Z\x5c_a-z]+[\"'])\(.+)\)(?:;|$)?" \
+    "id:933211,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecode,t:replaceComments,t:removeWhitespace,\
+    msg:'PHP Injection Attack: Variable Function Call Found',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-injection-php',\
+    tag:'paranoia-level/3',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.php_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:933017,phase:1,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:933018,phase:2,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:933017,phase:1,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:933018,phase:2,pass,nolog,skipAfter:END-REQUEST-933-APPLICATION-ATTACK-PHP"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf
new file mode 100644
index 0000000000..f191ed6dd4
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf
@@ -0,0 +1,388 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:934011,phase:1,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:934012,phase:2,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+
+# [ NodeJS Insecure unserialization / generic RCE signatures ]
+#
+# Libraries performing insecure unserialization:
+# - node-serialize: _$$ND_FUNC$$_ (CVE-2017-5941)
+# - funcster: __js_function
+#
+# See:
+# https://opsecx.com/index.php/2017/02/08/exploiting-node-js-deserialization-bug-for-remote-code-execution/
+# https://www.acunetix.com/blog/web-security-zone/deserialization-vulnerabilities-attacking-deserialization-in-js/
+#
+# Some generic snippets used:
+# - function() {
+# - new Function(
+# - eval(
+# - String.fromCharCode(
+#
+# Last two are used by nodejsshell.py,
+# https://github.com/ajinabraham/Node.Js-Security-Course/blob/master/nodejsshell.py
+#
+# As base64 is sometimes (but not always) used to encode serialized values,
+# use multiMatch and t:base64decode.
+#
+# Regular expression generated from regex-assembly/934100.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 934100
+#
+# Stricter sibling: 934101
+SecRule REQUEST_FILENAME|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx _(?:\$\$ND_FUNC\$\$_|_js_function)|(?:\beval|new[\s\v]+Function[\s\v]*)\(|String\.fromCharCode|function\(\)\{|this\.constructor|module\.exports=|\([\s\v]*[^0-9A-Z_a-z]child_process[^0-9A-Z_a-z][\s\v]*\)|process(?:\.(?:(?:a(?:ccess|ppendfile|rgv|vailability)|c(?:aveats|h(?:mod|own)|(?:los|opyfil)e|p|reate(?:read|write)stream)|ex(?:ec(?:file)?|ists)|f(?:ch(?:mod|own)|data(?:sync)?|s(?:tat|ync)|utimes)|inodes|l(?:chmod|ink|stat|utimes)|mkd(?:ir|temp)|open(?:dir)?|r(?:e(?:ad(?:dir|file|link|v)?|name)|m)|s(?:pawn(?:file)?|tat|ymlink)|truncate|u(?:n(?:link|watchfile)|times)|w(?:atchfile|rite(?:file|v)?))(?:sync)?(?:\.call)?\(|binding|constructor|env|global|main(?:Module)?|process|require)|\[[\"'`](?:(?:a(?:ccess|ppendfile|rgv|vailability)|c(?:aveats|h(?:mod|own)|(?:los|opyfil)e|p|reate(?:read|write)stream)|ex(?:ec(?:file)?|ists)|f(?:ch(?:mod|own)|data(?:sync)?|s(?:tat|ync)|utimes)|inodes|l(?:chmod|ink|stat|utimes)|mkd(?:ir|temp)|open(?:dir)?|r(?:e(?:ad(?:dir|file|link|v)?|name)|m)|s(?:pawn(?:file)?|tat|ymlink)|truncate|u(?:n(?:link|watchfile)|times)|w(?:atchfile|rite(?:file|v)?))(?:sync)?|binding|constructor|env|global|main(?:Module)?|process|require)[\"'`]\])|(?:binding|constructor|env|global|main(?:Module)?|process|require)\[|console(?:\.(?:debug|error|info|trace|warn)(?:\.call)?\(|\[[\"'`](?:debug|error|info|trace|warn)[\"'`]\])|require(?:\.(?:resolve(?:\.call)?\(|main|extensions|cache)|\[[\"'`](?:(?:resolv|cach)e|main|extensions)[\"'`]\])" \
+    "id:934100,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:jsDecode,t:removeWhitespace,t:base64Decode,t:urlDecodeUni,t:jsDecode,t:removeWhitespace,\
+    msg:'Node.js Injection Attack 1/2',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-javascript',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'attack-injection-generic',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    multiMatch,\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+SecRule REQUEST_FILENAME|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:close|exists|fork|(?:ope|spaw)n|re(?:ad|quire)|w(?:atch|rite))[\s\v]*\(" \
+    "id:934101,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:jsDecode,t:base64Decode,t:urlDecodeUni,t:jsDecode,\
+    msg:'Node.js Injection Attack 2/2',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-javascript',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'attack-injection-generic',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    multiMatch,\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# -=[ SSRF Attacks ]=-
+#
+# We provide only partial protection to SSRF. DNS Rebinding attacks needs
+# to be handled at application level, and even those might be difficult to catch.
+#
+# PL1 rules are based on common attacks on cloud providers, based on well-known URLs.
+#
+# -=[ References ]=-
+# https://highon.coffee/blog/ssrf-cheat-sheet/
+# https://cwe.mitre.org/data/definitions/918.html
+# https://capec.mitre.org/data/definitions/664.html)
+#
+# Preventing: https://cheatsheetseries.owasp.org/cheatsheets/Server_Side_Request_Forgery_Prevention_Cheat_Sheet.html
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@pmFromFile ssrf.data" \
+    "id:934110,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Possible Server Side Request Forgery (SSRF) Attack: Cloud provider metadata URL in Parameter',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-ssrf',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/664',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# JavaScript prototype pollution injection attempts
+#
+# Example from https://hackerone.com/reports/869574 critical
+# vulnerability in the TypeORM library:
+# {"text":"a","title":{"__proto__":{"where":{"name":"sqlinjection","where":null}}}}
+#
+# Test cases are based on this list of payloads:
+# https://github.com/BlackFan/client-side-prototype-pollution/blob/master/README.md
+#
+# See also: https://cwe.mitre.org/data/definitions/1321.html
+#
+# Note: only server-based (not DOM-based) attacks are covered here.
+# Stricter sibling: 934131
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:__proto__|constructor\s*(?:\.|\[)\s*prototype)" \
+    "id:934130,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:jsDecode,t:base64Decode,t:urlDecodeUni,t:jsDecode,\
+    msg:'JavaScript Prototype Pollution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-javascript',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'attack-injection-generic',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1/180/77',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    multiMatch,\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# [ Ruby generic RCE signatures ]
+#
+# Detects Ruby-based injection attacks.
+# Example: Process.spawn("id")
+#
+# Regular expression generated from regex-assembly/934150.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 934150
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx Process[\s\v]*\.[\s\v]*spawn[\s\v]*\(" \
+    "id:934150,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Ruby Injection Attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-ruby',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'attack-injection-generic',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# [ NodeJS DoS signatures ]
+#
+# NodeJS runs in a single thread, so any evaluated payloads that block execution can cause an easy DoS.
+# This rule attempts to block e.g. while(true).
+#
+# Regular expression generated from regex-assembly/934160.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 934160
+#
+SecRule REQUEST_FILENAME|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx while[\s\v]*\([\s\v\(]*(?:!+(?:false|null|undefined|NaN|[\+\-]?0|\"{2}|'{2}|`{2})|(?:!!)*(?:(?:t(?:rue|his)|[\+\-]?(?:Infinity|[1-9][0-9]*)|new [A-Za-z][0-9A-Z_a-z]*|window|String|(?:Boolea|Functio)n|Object|Array)\b|\{.*\}|\[.*\]|\"[^\"]+\"|'[^']+'|`[^`]+`)).*\)" \
+    "id:934160,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:jsDecode,t:base64Decode,t:urlDecodeUni,t:jsDecode,t:replaceComments,\
+    msg:'Node.js DoS attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-javascript',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'attack-injection-generic',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    multiMatch,\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# [ PHP data: scheme ]
+#
+# PHP supports the `data:` scheme without using `//` before the content-type.
+#
+# Regular expression generated from regex-assembly/934170.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 934170
+#
+SecRule REQUEST_FILENAME|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ^data:(?:(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)/(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)|\*)(?:[\s\v]*;[\s\v]*(?:charset[\s\v]*=[\s\v]*\"?(?:iso-8859-15?|utf-8|windows-1252)\b\"?|(?:[^\s\v -\"\(-\),/:-\?\[-\]c\{\}]|c(?:[^!-\"\(-\),/:-\?\[-\]h\{\}]|h(?:[^!-\"\(-\),/:-\?\[-\]a\{\}]|a(?:[^!-\"\(-\),/:-\?\[-\]r\{\}]|r(?:[^!-\"\(-\),/:-\?\[-\]s\{\}]|s(?:[^!-\"\(-\),/:-\?\[-\]e\{\}]|e[^!-\"\(-\),/:-\?\[-\]t\{\}]))))))[^!-\"\(-\),/:-\?\[-\]\{\}]*[\s\v]*=[\s\v]*[^!\(-\),/:-\?\[-\]\{\}]+);?)*(?:[\s\v]*,[\s\v]*(?:(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)/(?:\*|[^!-\"\(-\),/:-\?\[-\]\{\}]+)|\*)(?:[\s\v]*;[\s\v]*(?:charset[\s\v]*=[\s\v]*\"?(?:iso-8859-15?|utf-8|windows-1252)\b\"?|(?:[^\s\v -\"\(-\),/:-\?\[-\]c\{\}]|c(?:[^!-\"\(-\),/:-\?\[-\]h\{\}]|h(?:[^!-\"\(-\),/:-\?\[-\]a\{\}]|a(?:[^!-\"\(-\),/:-\?\[-\]r\{\}]|r(?:[^!-\"\(-\),/:-\?\[-\]s\{\}]|s(?:[^!-\"\(-\),/:-\?\[-\]e\{\}]|e[^!-\"\(-\),/:-\?\[-\]t\{\}]))))))[^!-\"\(-\),/:-\?\[-\]\{\}]*[\s\v]*=[\s\v]*[^!\(-\),/:-\?\[-\]\{\}]+);?)*)*" \
+    "id:934170,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'PHP data scheme attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-ssrf',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:934013,phase:1,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:934014,phase:2,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+# -=[ SSRF Attacks ]=-
+#
+# PL2 rules adds SSRF capture for common evasion techniques.
+#
+# We add captures for these evasion techniques: (see source in util/regexp-assemble/data/regexp-934120.data)
+# http://425.510.425.510/ Dotted decimal with overflow (already covered by RFI rule 931100)
+# http://2852039166/ Dotless decimal - \d{10}
+# http://7147006462/ Dotless decimal with overflow - \d{10}
+# http://0xA9.0xFE.0xA9.0xFE/ Dotted hexadecimal - (?:0x[a-f0-9]{2}\.){3}0x[a-f0-9]{2}
+# http://0xA9FEA9FE/ Dotless hexadecimal - 0x[a-f0-9]{8}
+# http://0x41414141A9FEA9FE/ Dotless hexadecimal with overflow - 0x[a-f0-9]{16}
+# http://0251.0376.0251.0376/ Dotted octal - Covered by the same below
+# http://0251.00376.000251.0000376/ Dotted octal with padding - (?:0{1,4}\d{3}\.){3}0{1,4}\d{3})
+# http://169.254.43518/ - (?:\d{1,3}\.){2}\.\d{5}
+# http://169.16689662/ - \d{1,3}\.\d{8}
+# http://[::ffff:a9fe:a9fe] IPV6 Compressed - IPv6 regex from https://ihateregex.io/expr/ipv6/, with [0-9] converted to \d and with non-capturing groups (below)
+# http://[0:0:0:0:0:ffff:a9fe:a9fe] IPV6 Expanded -  (?:(?:[0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}|(?:[0-9a-fA-F]{1,4}:){1,7}:|(?:[0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|(?:[0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|(?:[0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|(?:[0-9a-fA-F]{1,4}:){1,3}(?::[0-9a-fA-F]{1,4}){1,4}|(?:[0-9a-fA-F]{1,4}:){1,2}(?::[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:(?:(?::[0-9a-fA-F]{1,4}){1,6})|:(?:(?::[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(?::[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(?::0{1,4}){0,1}:){0,1}(?:(?:25[0-5]|(?:2[0-4]|1{0,1}\d){0,1}\d)\.){3,3}(?:25[0-5]|(?:2[0-4]|1{0,1}\d){0,1}\d)|(?:[0-9a-fA-F]{1,4}:){1,4}:(?:(?:25[0-5]|(2[0-4]|1{0,1}\d){0,1}\d)\.){3,3}(?:25[0-5]|(?:2[0-4]|1{0,1}\d){0,1}\d))
+# http://[0:0:0:0:0:ffff:169.254.169.254] IPV6/IPV4 - ((?:[0-9a-fA-F]{1,4}:){6}(?:(25[0-5]|(?:2[0-4]|1{0,1}\d){0,1}\d)\.){3,3}(?:25[0-5]|(?:2[0-4]|1{0,1}\d){0,1}\d))
+# http://[::]
+# http://127.88.23.245:22/+&@google.com:80#+@google.com:80/ (already covered by RFI rule 931100)
+# http://127.88.23.245:22/?@google.com:80/ (already covered by RFI rule 931100)
+# http://127.88.23.245:22/#@www.google.com:80/ (already covered by RFI rule 931100)
+# http://google.com:80\\@127.88.23.245:22/ (already covered by RFI rule 931100)
+# http://google.com:80+&@127.88.23.245:22/#+@google.com:80/
+# http://google.com:80+&@google.com:80#+@127.88.23.245:22/
+#
+# Regular expression generated from regex-assembly/934120.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 934120
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?i)((?:a(?:cap|f[ps]|ttachment)|b(?:eshare|itcoin|lob)|c(?:a(?:llto|p)|id|vs|ompress.(?:zlib|bzip2))|d(?:a(?:v|ta)|ict|n(?:s|tp))|e(?:d2k|xpect)|f(?:(?:ee)?d|i(?:le|nger|sh)|tps?)|g(?:it|o(?:pher)?|lob)|h(?:323|ttps?)|i(?:ax|cap|(?:ma|p)ps?|rc[6s]?)|ja(?:bbe)?r|l(?:dap[is]?|ocal_file)|m(?:a(?:ilto|ven)|ms|umble)|n(?:e(?:tdoc|ws)|fs|ntps?)|ogg|p(?:aparazzi|h(?:ar|p)|op(?:2|3s?)|r(?:es|oxy)|syc)|r(?:mi|sync|tm(?:f?p)?|ar)|s(?:3|ftp|ips?|m(?:[bs]|tps?)|n(?:ews|mp)|sh(?:2(?:.(?:s(?:hell|(?:ft|c)p)|exec|tunnel))?)?|vn(?:\+ssh)?)|t(?:e(?:amspeak|lnet)|ftp|urns?)|u(?:dp|nreal|t2004)|v(?:entrilo|iew-source|nc)|w(?:ebcal|ss?)|x(?:mpp|ri)|zip)://(?:[0-9]{10}|(?:0x[0-9a-f]{2}\.){3}0x[0-9a-f]{2}|0x(?:[0-9a-f]{8}|[0-9a-f]{16})|(?:0{1,4}[0-9]{1,3}\.){3}0{1,4}[0-9]{1,3}|[0-9]{1,3}\.(?:[0-9]{1,3}\.[0-9]{5}|[0-9]{8})|(?:\x5c\x5c[\-0-9a-z]\.?_?)+|\[[0-:a-f]+(?:[\.0-9]+|%[0-9A-Z_a-z]+)?\]|[a-z][\--\.0-9A-Z_a-z]{1,255}:[0-9]{1,5}(?:#?[\s\v]*&?@(?:(?:[0-9]{1,3}\.){3}[0-9]{1,3}|[a-z][\--\.0-9A-Z_a-z]{1,255}):[0-9]{1,5}/?)+|[\.0-9]{0,11}(?:\xe2(?:\x91[\xa0-\xbf]|\x92[\x80-\xbf]|\x93[\x80-\xa9\xab-\xbf])|\xe3\x80\x82)+))" \
+    "id:934120,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Possible Server Side Request Forgery (SSRF) Attack: URL Parameter using IP Address',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-ssrf',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/664',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \[\s*constructor\s*\]" \
+    "id:934131,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:jsDecode,t:base64Decode,t:urlDecodeUni,t:jsDecode,\
+    msg:'JavaScript Prototype Pollution',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-javascript',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'attack-injection-generic',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    multiMatch,\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# [ Perl generic RCE signatures ]
+#
+# Detects Perl-based injection attacks.
+# Example: @{[system whoami]}
+#
+# Regular expression generated from regex-assembly/934140.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 934140
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx @\{.*\}" \
+    "id:934140,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Perl Injection Attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-perl',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'attack-injection-generic',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:934015,phase:1,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:934016,phase:2,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:934017,phase:1,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:934018,phase:2,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-REQUEST-934-APPLICATION-ATTACK-GENERIC"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-941-APPLICATION-ATTACK-XSS.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf
similarity index 52%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-941-APPLICATION-ATTACK-XSS.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf
index 3b2376b9ee..4787b4dc92 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-941-APPLICATION-ATTACK-XSS.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,13 +14,55 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:941011,phase:1,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:941012,phase:2,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:941011,phase:1,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:941012,phase:2,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 
+# In CRS v4.0, we have added REQUEST_FILENAME to the list of variables to
+# be checked for XSS to catch path-based XSS exploits such as:
+# /index.php/%3Csvg/onload=alert()
+#
+# However, the REQUEST_FILENAME is always populated (while ARGS etc. are
+# only set on some requests) and we found that always checking the
+# REQUEST_FILENAME has a significant performance impact.
+# Therefore, we are disabling the REQUEST_FILENAME XSS checks when the
+# REQUEST_FILENAME is clearly not containing special characters necessary
+# for a successful XSS.
+#
+# Some bona-fide REQUEST_FILENAMEs will still contain special characters
+# and will be checked by the rules, but it will be a much lower amount,
+# and that is a trade-off we are willing to make.
+#
+# So, we check for XSS in REQUEST_FILENAME only if it contains
+# other characters than alphanumeric characters, hyphens, underscores etc.
+# typically found in filenames and paths:
+#
+# - ascii 20 (whitespace)
+# - ascii 45-47 (- . /)
+# - ascii 48-57 (0-9)
+# - ascii 65-90 (A-Z)
+# - ascii 95 (underscore)
+# - ascii 97-122 (a-z)
+#
+# If just these characters are present, we remove REQUEST_FILENAME from the target
+# list of all the 941xxx rules starting 941100.
+#
+# Please note that it would be preferable to start without REQUEST_FILENAME in the
+# target list and to add it on a case to case base, but the rule language does not
+# support this feature at runtime.
+#
+SecRule REQUEST_FILENAME "!@validateByteRange 20, 45-47, 48-57, 65-90, 95, 97-122" \
+    "id:941010,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    ctl:ruleRemoveTargetById=941100-941999;REQUEST_FILENAME"
+
+
 #
 # -=[ Libinjection - XSS Detection ]=-
 #
@@ -33,7 +75,7 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:941012,phase:2,pass,nolog,skipAf
 #               REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|
 #               ARGS_NAMES|ARGS|XML:/*
 #
-# 941101: PL2 : REQUEST_HEADERS:Referer
+# 941101: PL2 : REQUEST_FILENAME|REQUEST_HEADERS:Referer
 #
 SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|ARGS_NAMES|ARGS|XML:/* "@detectXSS" \
     "id:941100,\
@@ -49,11 +91,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -76,48 +117,21 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_F
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ XSS Filters - Category 2 ]=-
-# XSS vectors making use of event handlers like onerror, onload etc, e.g., <body onload="alert(1)">
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\s\"'`;\/0-9=\x0B\x09\x0C\x3B\x2C\x28\x3B]on[a-zA-Z]+[\s\x0B\x09\x0C\x3B\x2C\x28\x3B]*?=" \
-    "id:941120,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:removeNulls,\
-    msg:'XSS Filter - Category 2: Event Handler Vector',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-xss',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
 # -=[ XSS Filters - Category 3 ]=-
 #
-# Regexp generated from util/regexp-assemble/regexp-941130.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-941130.data
+# Regular expression generated from regex-assembly/941130.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 941130
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\s\S](?:!ENTITY\s+(?:\S+|%\s+\S+)\s+(?:PUBLIC|SYSTEM)|x(?:link:href|html|mlns)|data:text\/html|pattern\b.*?=|formaction|\@import|;base64)\b" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i).(?:\b(?:x(?:link:href|html|mlns)|data:text/html|formaction|pattern\b.*?=)|!ENTITY[\s\v]+(?:%[\s\v]+)?[^\s\v]+[\s\v]+(?:SYSTEM|PUBLIC)|@import|;base64)\b" \
     "id:941130,\
     phase:2,\
     block,\
@@ -132,23 +146,25 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
 # -=[ XSS Filters - Category 4 ]=-
 # XSS vectors making use of javascript uri and tags, e.g., <p style="background:url(javascript:alert(1))">
+# https://portswigger.net/web-security/cross-site-scripting/cheat-sheet#css-expressions-ie7
+# https://portswigger.net/web-security/cross-site-scripting/cheat-sheet#behaviors-for-older-modes-of-ie
+# examples: https://regex101.com/r/FFEpsh/1
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:<(?:(?:apple|objec)t|isindex|embed|style|form|meta)\b[^>]*?>[\s\S]*?|(?:=|U\s*?R\s*?L\s*?\()\s*?[^>]*?\s*?S\s*?C\s*?R\s*?I\s*?P\s*?T\s*?:)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)[a-z]+=(?:[^:=]+:.+;)*?[^:=]+:url\(javascript" \
     "id:941140,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:removeNulls,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:removeNulls,t:removeWhitespace,\
     msg:'XSS Filter - Category 4: Javascript URI Vector',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -158,11 +174,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -171,14 +186,12 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
 #
 # [NoScript InjectionChecker] HTML injection
 #
-# Regexp generated from util/regexp-assemble/regexp-941160.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-941160.data
-# Note that after assemble an ignore case flag (i) is added to the to the Regexp::Assemble output:
-#   Add ignore case flag between '?' and ':': "(?i:...)"
+# Regular expression generated from regex-assembly/941160.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 941160
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:<\w[\s\S]*[\s\/]|['\"](?:[\s\S]*[\s\/])?)(?:on(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|(?:peech|ound)(?:start|end)|u(?:ccess|spend|bmit)|croll|how)|m(?:o(?:z(?:(?:pointerlock|fullscreen)(?:change|error)|(?:orientation|time)change|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|b(?:e(?:fore(?:(?:(?:de)?activa|scriptexecu)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ransition(?:cancel|end|run)|ime(?:update|out)|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom)|s(?:tyle|rc)|background|formaction|lowsrc|ping)[\s\x08]*?=|<[^\w<>]*(?:[^<>\"'\s]*:)?[^\w<>]*\W*?(?:(?:a\W*?(?:n\W*?i\W*?m\W*?a\W*?t\W*?e|p\W*?p\W*?l\W*?e\W*?t|u\W*?d\W*?i\W*?o)|b\W*?(?:i\W*?n\W*?d\W*?i\W*?n\W*?g\W*?s|a\W*?s\W*?e|o\W*?d\W*?y)|i?\W*?f\W*?r\W*?a\W*?m\W*?e|o\W*?b\W*?j\W*?e\W*?c\W*?t|i\W*?m\W*?a?\W*?g\W*?e?|e\W*?m\W*?b\W*?e\W*?d|p\W*?a\W*?r\W*?a\W*?m|v\W*?i\W*?d\W*?e\W*?o|l\W*?i\W*?n\W*?k)[^>\w]|s\W*?(?:c\W*?r\W*?i\W*?p\W*?t|t\W*?y\W*?l\W*?e|e\W*?t[^>\w]|v\W*?g)|m\W*?(?:a\W*?r\W*?q\W*?u\W*?e\W*?e|e\W*?t\W*?a[^>\w])|f\W*?o\W*?r\W*?m))" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)<[^0-9<>A-Z_a-z]*(?:[^\s\v\"'<>]*:)?[^0-9<>A-Z_a-z]*[^0-9A-Z_a-z]*?(?:s[^0-9A-Z_a-z]*?(?:c[^0-9A-Z_a-z]*?r[^0-9A-Z_a-z]*?i[^0-9A-Z_a-z]*?p[^0-9A-Z_a-z]*?t|t[^0-9A-Z_a-z]*?y[^0-9A-Z_a-z]*?l[^0-9A-Z_a-z]*?e|v[^0-9A-Z_a-z]*?g|e[^0-9A-Z_a-z]*?t[^0-9>A-Z_a-z])|f[^0-9A-Z_a-z]*?o[^0-9A-Z_a-z]*?r[^0-9A-Z_a-z]*?m|m[^0-9A-Z_a-z]*?(?:a[^0-9A-Z_a-z]*?r[^0-9A-Z_a-z]*?q[^0-9A-Z_a-z]*?u[^0-9A-Z_a-z]*?e[^0-9A-Z_a-z]*?e|e[^0-9A-Z_a-z]*?t[^0-9A-Z_a-z]*?a[^0-9>A-Z_a-z])|(?:l[^0-9A-Z_a-z]*?i[^0-9A-Z_a-z]*?n[^0-9A-Z_a-z]*?k|o[^0-9A-Z_a-z]*?b[^0-9A-Z_a-z]*?j[^0-9A-Z_a-z]*?e[^0-9A-Z_a-z]*?c[^0-9A-Z_a-z]*?t|e[^0-9A-Z_a-z]*?m[^0-9A-Z_a-z]*?b[^0-9A-Z_a-z]*?e[^0-9A-Z_a-z]*?d|a[^0-9A-Z_a-z]*?(?:p[^0-9A-Z_a-z]*?p[^0-9A-Z_a-z]*?l[^0-9A-Z_a-z]*?e[^0-9A-Z_a-z]*?t|u[^0-9A-Z_a-z]*?d[^0-9A-Z_a-z]*?i[^0-9A-Z_a-z]*?o|n[^0-9A-Z_a-z]*?i[^0-9A-Z_a-z]*?m[^0-9A-Z_a-z]*?a[^0-9A-Z_a-z]*?t[^0-9A-Z_a-z]*?e)|p[^0-9A-Z_a-z]*?a[^0-9A-Z_a-z]*?r[^0-9A-Z_a-z]*?a[^0-9A-Z_a-z]*?m|i?[^0-9A-Z_a-z]*?f[^0-9A-Z_a-z]*?r[^0-9A-Z_a-z]*?a[^0-9A-Z_a-z]*?m[^0-9A-Z_a-z]*?e|b[^0-9A-Z_a-z]*?(?:a[^0-9A-Z_a-z]*?s[^0-9A-Z_a-z]*?e|o[^0-9A-Z_a-z]*?d[^0-9A-Z_a-z]*?y|i[^0-9A-Z_a-z]*?n[^0-9A-Z_a-z]*?d[^0-9A-Z_a-z]*?i[^0-9A-Z_a-z]*?n[^0-9A-Z_a-z]*?g[^0-9A-Z_a-z]*?s)|i[^0-9A-Z_a-z]*?m[^0-9A-Z_a-z]*?a?[^0-9A-Z_a-z]*?g[^0-9A-Z_a-z]*?e?|v[^0-9A-Z_a-z]*?i[^0-9A-Z_a-z]*?d[^0-9A-Z_a-z]*?e[^0-9A-Z_a-z]*?o)[^0-9>A-Z_a-z])|(?:<[0-9A-Z_a-z].*[\s\v/]|[\"'](?:.*[\s\v/])?)(?:background|formaction|lowsrc|on(?:a(?:bort|ctivate|d(?:apteradded|dtrack)|fter(?:print|(?:scriptexecu|upda)te)|lerting|n(?:imation(?:cancel|end|iteration|start)|tennastatechange)|ppcommand|u(?:dio(?:end|process|start)|xclick))|b(?:e(?:fore(?:(?:(?:(?:de)?activa|scriptexecu)t|toggl)e|c(?:opy|ut)|editfocus|input|p(?:aste|rint)|u(?:nload|pdate))|gin(?:Event)?)|l(?:ocked|ur)|oun(?:ce|dary)|roadcast|usy)|c(?:a(?:(?:ch|llschang)ed|nplay(?:through)?|rdstatechange)|(?:ell|fstate)change|h(?:a(?:rging(?:time)?cha)?nge|ecking)|l(?:ick|ose)|o(?:m(?:mand(?:update)?|p(?:lete|osition(?:end|start|update)))|n(?:nect(?:ed|ing)|t(?:extmenu|rolselect))|py)|u(?:echange|t))|d(?:ata(?:(?:availabl|chang)e|error|setc(?:hanged|omplete))|blclick|e(?:activate|livery(?:error|success)|vice(?:found|light|(?:mo|orienta)tion|proximity))|i(?:aling|s(?:abled|c(?:hargingtimechange|onnect(?:ed|ing))))|o(?:m(?:a(?:ctivate|ttrmodified)|(?:characterdata|subtree)modified|focus(?:in|out)|mousescroll|node(?:inserted(?:intodocument)?|removed(?:fromdocument)?))|wnloading)|r(?:ag(?:drop|e(?:n(?:d|ter)|xit)|(?:gestur|leav)e|over|start)|op)|urationchange)|e(?:mptied|n(?:abled|d(?:ed|Event)?|ter)|rror(?:update)?|xit)|f(?:ailed|i(?:lterchange|nish)|o(?:cus(?:in|out)?|rm(?:change|input))|ullscreenchange)|g(?:amepad(?:axismove|button(?:down|up)|(?:dis)?connected)|et)|h(?:ashchange|e(?:adphoneschange|l[dp])|olding)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|put|valid))|key(?:down|press|up)|l(?:evelchange|o(?:ad(?:e(?:d(?:meta)?data|nd)|start)?|secapture)|y)|m(?:ark|essage|o(?:use(?:down|enter|(?:lea|mo)ve|o(?:ut|ver)|up|wheel)|ve(?:end|start)?|z(?:a(?:fterpaint|udioavailable)|(?:beforeresiz|orientationchang|t(?:apgestur|imechang))e|(?:edgeui(?:c(?:ancel|omplet)|start)e|network(?:down|up)loa)d|fullscreen(?:change|error)|m(?:agnifygesture(?:start|update)?|ouse(?:hittest|pixelscroll))|p(?:ointerlock(?:change|error)|resstapgesture)|rotategesture(?:start|update)?|s(?:crolledareachanged|wipegesture(?:end|start|update)?))))|no(?:match|update)|o(?:(?:bsolet|(?:ff|n)lin)e|pen|verflow(?:changed)?)|p(?:a(?:ge(?:hide|show)|int|(?:st|us)e)|lay(?:ing)?|o(?:inter(?:down|enter|(?:(?:lea|mo)v|rawupdat)e|o(?:ut|ver)|up)|p(?:state|up(?:hid(?:den|ing)|show(?:ing|n))))|ro(?:gress|pertychange))|r(?:atechange|e(?:adystatechange|ceived|movetrack|peat(?:Event)?|quest|s(?:et|ize|u(?:lt|m(?:e|ing)))|trieving)|ow(?:e(?:nter|xit)|s(?:delete|inserted)))|s(?:croll(?:end)?|e(?:arch|ek(?:complete|ed|ing)|lect(?:ionchange|start)?|n(?:ding|t)|t)|how|(?:ound|peech)(?:end|start)|t(?:a(?:lled|rt|t(?:echange|uschanged))|k(?:comma|sessione)nd|op)|u(?:bmit|ccess|spend)|vg(?:abort|error|(?:un)?load|resize|scroll|zoom))|t(?:ext|ime(?:out|update)|o(?:ggle|uch(?:cancel|en(?:d|ter)|(?:lea|mo)ve|start))|ransition(?:cancel|end|run|start))|u(?:n(?:derflow|handledrejection|load)|p(?:dateready|gradeneeded)|s(?:erproximity|sdreceived))|v(?:ersion|o(?:ic|lum)e)change|w(?:a(?:it|rn)ing|ebkit(?:animation(?:end|iteration|start)|transitionend)|heel)|zoom)|ping|s(?:rc|tyle))[\x08-\n\f-\r ]*?=" \
     "id:941160,\
     phase:2,\
     block,\
@@ -193,17 +206,16 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
 # [NoScript InjectionChecker] Attributes injection
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:\W|^)(?:javascript:(?:[\s\S]+[=\\\(\[\.<]|[\s\S]*?(?:\bname\b|\\[ux]\d))|data:(?:(?:[a-z]\w+\/\w[\w+-]+\w)?[;,]|[\s\S]*?;[\s\S]*?\b(?:base64|charset=)|[\s\S]*?,[\s\S]*?<[\s\S]*?\w[\s\S]*?>))|@\W*?i\W*?m\W*?p\W*?o\W*?r\W*?t\W*?(?:\/\*[\s\S]*?)?(?:[\"']|\W*?u\W*?r\W*?l[\s\S]*?\()|\W*?-\W*?m\W*?o\W*?z\W*?-\W*?b\W*?i\W*?n\W*?d\W*?i\W*?n\W*?g[\s\S]*?:[\s\S]*?\W*?u\W*?r\W*?l[\s\S]*?\(" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)(?:\W|^)(?:javascript:(?:[\s\S]+[=\x5c\(\[\.<]|[\s\S]*?(?:\bname\b|\x5c[ux]\d))|data:(?:(?:[a-z]\w+/\w[\w+-]+\w)?[;,]|[\s\S]*?;[\s\S]*?\b(?:base64|charset=)|[\s\S]*?,[\s\S]*?<[\s\S]*?\w[\s\S]*?>))|@\W*?i\W*?m\W*?p\W*?o\W*?r\W*?t\W*?(?:/\*[\s\S]*?)?(?:[\"']|\W*?u\W*?r\W*?l[\s\S]*?\()|[^-]*?-\W*?m\W*?o\W*?z\W*?-\W*?b\W*?i\W*?n\W*?d\W*?i\W*?n\W*?g[^:]*?:\W*?u\W*?r\W*?l[\s\S]*?\(" \
     "id:941170,\
     phase:2,\
     block,\
@@ -218,24 +230,24 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
-# [Blacklist Keywords from Node-Validator]
-# https://raw.github.com/chriso/node-validator/master/validator.js
+# [Deny List Keywords from Node-Validator]
+# https://github.com/validatorjs/validator.js/
+# This rule has a stricter sibling 941181 (PL2) that covers the additional payload "-->"
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@pm document.cookie document.write .parentnode .innerhtml window.location -moz-binding <!-- --> <![cdata[" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@pm document.cookie document.domain document.write .parentnode .innerhtml window.location -moz-binding <!-- <![cdata[" \
     "id:941180,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:lowercase,t:removeNulls,\
-    msg:'Node-Validator Blacklist Keywords',\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:removeNulls,\
+    msg:'Node-Validator Deny List Keywords',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
     tag:'language-multi',\
@@ -244,11 +256,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 #
@@ -256,7 +267,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 # Ref: http://blogs.technet.com/srd/archive/2008/08/18/ie-8-xss-filter-architecture-implementation.aspx
 # Ref: http://xss.cx/examples/ie/internet-exploror-ie9-xss-filter-rules-example-regexp-mshtmldll.txt
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:<style.*?>.*?(?:@[i\\\\]|(?:[:=]|&#x?0*(?:58|3A|61|3D);?).*?(?:[(\\\\]|&#x?0*(?:40|28|92|5C);?)))" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i:<style.*?>.*?(?:@[i\x5c]|(?:[:=]|&#x?0*(?:58|3A|61|3D);?).*?(?:[(\x5c]|&#x?0*(?:40|28|92|5C);?)))" \
     "id:941190,\
     phase:2,\
     block,\
@@ -271,14 +282,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:<.*[:]?vmlframe.*?[\s/+]*?src[\s/+]*=)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i:<.*[:]?vmlframe.*?[\s/+]*?src[\s/+]*=)" \
     "id:941200,\
     phase:2,\
     block,\
@@ -293,14 +303,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:j|&#x?0*(?:74|4A|106|6A);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:a|&#x?0*(?:65|41|97|61);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:v|&#x?0*(?:86|56|118|76);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:a|&#x?0*(?:65|41|97|61);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:s|&#x?0*(?:83|53|115|73);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:c|&#x?0*(?:67|43|99|63);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:r|&#x?0*(?:82|52|114|72);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:i|&#x?0*(?:73|49|105|69);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:p|&#x?0*(?:80|50|112|70);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:t|&#x?0*(?:84|54|116|74);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?::|&(?:#x?0*(?:58|3A);?|colon;)).)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)(?:j|&#(?:0*(?:74|106)|x0*[46]A);)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:a|&#(?:0*(?:65|97)|x0*[46]1);)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:v|&#(?:0*(?:86|118)|x0*[57]6);)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:a|&#(?:0*(?:65|97)|x0*[46]1);)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:s|&#(?:0*(?:115|83)|x0*[57]3);)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:c|&#(?:x0*[46]3|0*(?:99|67));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:r|&#(?:x0*[57]2|0*(?:114|82));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:i|&#(?:x0*[46]9|0*(?:105|73));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:p|&#(?:x0*[57]0|0*(?:112|80));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:t|&#(?:x0*[57]4|0*(?:116|84));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?::|&(?:#(?:0*58|x0*3A);?|colon;))." \
     "id:941210,\
     phase:2,\
     block,\
@@ -315,14 +324,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:v|&#x?0*(?:86|56|118|76);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:b|&#x?0*(?:66|42|98|62);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:s|&#x?0*(?:83|53|115|73);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:c|&#x?0*(?:67|43|99|63);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:r|&#x?0*(?:82|52|114|72);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:i|&#x?0*(?:73|49|105|69);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:p|&#x?0*(?:80|50|112|70);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?:t|&#x?0*(?:84|54|116|74);?)(?:\t|&(?:#x?0*(?:9|13|10|A|D);?|tab;|newline;))*(?::|&(?:#x?0*(?:58|3A);?|colon;)).)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)(?:v|&#(?:0*8|x0*5)[36];)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:b|&#(?:0*6[26]|x0*(?:98|42));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:s|&#(?:0*(?:115|83)|x0*[57]3);)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:c|&#(?:x0*[46]3|0*(?:99|67));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:r|&#(?:x0*[57]2|0*(?:114|82));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:i|&#(?:x0*[46]9|0*(?:105|73));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:p|&#(?:x0*[57]0|0*(?:112|80));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?:t|&#(?:x0*[57]4|0*(?:116|84));)(?:[\t-\n\r]|&(?:#(?:0*(?:9|1[03])|x0*[AD]);?|(?:tab|newline);))*(?::|&(?:#(?:0*58|x0*3A);?|colon;))." \
     "id:941220,\
     phase:2,\
     block,\
@@ -337,14 +345,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)<EMBED[\s/+].*?(?:src|type).*?=" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)<EMBED[\s/+].*?(?:src|type).*?=" \
     "id:941230,\
     phase:2,\
     block,\
@@ -359,14 +366,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx <[?]?import[\s\/+\S]*?implementation[\s\/+]*?=" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx <[?]?import[\s/+\S]*?implementation[\s/+]*?=" \
     "id:941240,\
     phase:2,\
     block,\
@@ -381,14 +387,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:<META[\s/+].*?http-equiv[\s/+]*=[\s/+]*[\"'`]?(?:(?:c|&#x?0*(?:67|43|99|63);?)|(?:r|&#x?0*(?:82|52|114|72);?)|(?:s|&#x?0*(?:83|53|115|73);?)))" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i:<META[\s/+].*?http-equiv[\s/+]*=[\s/+]*[\"'`]?(?:(?:c|&#x?0*(?:67|43|99|63);?)|(?:r|&#x?0*(?:82|52|114|72);?)|(?:s|&#x?0*(?:83|53|115|73);?)))" \
     "id:941250,\
     phase:2,\
     block,\
@@ -403,14 +408,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:<META[\s/+].*?charset[\s/+]*=)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i:<META[\s/+].*?charset[\s/+]*=)" \
     "id:941260,\
     phase:2,\
     block,\
@@ -425,14 +429,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)<LINK[\s/+].*?href[\s/+]*=" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)<LINK[\s/+].*?href[\s/+]*=" \
     "id:941270,\
     phase:2,\
     block,\
@@ -447,14 +450,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)<BASE[\s/+].*?href[\s/+]*=" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)<BASE[\s/+].*?href[\s/+]*=" \
     "id:941280,\
     phase:2,\
     block,\
@@ -469,14 +471,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)<APPLET[\s/+>]" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)<APPLET[\s/+>]" \
     "id:941290,\
     phase:2,\
     block,\
@@ -491,14 +492,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)<OBJECT[\s/+].*?(?:type|codetype|classid|code|data)[\s/+]*=" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)<OBJECT[\s/+].*?(?:type|codetype|classid|code|data)[\s/+]*=" \
     "id:941300,\
     phase:2,\
     block,\
@@ -513,24 +513,56 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
-# https://www.owasp.org/www-community/xss-filter-evasion-cheatsheet
+# https://cheatsheetseries.owasp.org/cheatsheets/XSS_Filter_Evasion_Cheat_Sheet.html
 # US-ASCII encoding bypass listed on XSS filter evasion
 # Reported by Mazin Ahmed
 #
+# This evasion covered by this chain of rules is specific to webservers that deliver content in US-ASCII.
+# Only Apache Tomcat is known (according to the page linked above) to be vulnerable to this and probably has to be
+# misconfigured for this to happen.
+#
+# Since US-ASCII is a seven bit encoding, bit 8 is ignored. Consider the following ISO 8859-1 sequence:
+#
+# ¼script¾alert(¢XSS¢)¼/script¾
+#
+# A filter looking for tags will usually not match against this sequence because there are no angle brackets (< / >). However,
+# the characters where the brackets would be are ISO 8859-1 characters:
+# - ¼: 0x00BC
+# - ¾: 0x00BE
+# - ¢: 0x00A2
+#
+# And this is how the sequence looks in in US-ASCII:
+#
+# <script>alert("XSSB")</script/>
+#
+# This enables an attacker to craft a string that will be delivered in a form that a browser will execute as script
+# while being ignored by input filters.
+#
+# This rule looks for a start tag sequence that looks like "<...>" (checks for hex and plain to be sure).
+# Because the bytes matched occur in many different languages encoded as multibyte characters (e.g. UTF-8)
+# (e.g. German umlauts, Russian characters) this isn't very helpful and can cause many false positives. We, therefore,
+# use a chained rule to also look for an end tag sequence that looks like "</...>". Only if the chained rule matches will
+# the request be blocked.
+#
+# This is of course still not perfect but should at least make it harder to hide most tags using this technique while
+# requiring very specific patterns in a language to match, which should get rid of most false positives.
+# These rules would, for example, not guard against an element without an end tag, e.g. "<img... />".
+#
+# US-ASCII on Wikipedia: https://en.wikipedia.org/wiki/ASCII
+# ISO 8859-1 on Wikipedia: https://en.wikipedia.org/wiki/ISO/IEC_8859-1
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \xbc[^\xbe>]*[\xbe>]|<[^\xbe]*\xbe" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx \xbc[^\xbe>]*[\xbe>]|<[^\xbe]*\xbe" \
     "id:941310,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:lowercase,t:urlDecode,t:htmlEntityDecode,t:jsDecode,\
+    t:none,t:lowercase,t:urlDecode,t:htmlEntityDecode,t:jsDecode,\
     msg:'US-ASCII Malformed Encoding XSS Filter - Attack Detected',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -540,11 +572,13 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
-    setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    chain"
+    SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?:\xbc\s*/\s*[^\xbe>]*[\xbe>])|(?:<\s*/\s*[^\xbe]*\xbe)" \
+        "t:none,t:lowercase,t:urlDecode,t:htmlEntityDecode,t:jsDecode,\
+        setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # https://nedbatchelder.com/blog/200704/xss_with_utf7.html
@@ -552,12 +586,12 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 # Reported by Vladimir Ivanov
 #
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \+ADw-.*(?:\+AD4-|>)|<.*\+AD4-" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx \+ADw-.*(?:\+AD4-|>)|<.*\+AD4-" \
     "id:941350,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:urlDecode,t:htmlEntityDecode,t:jsDecode,\
+    t:none,t:urlDecode,t:htmlEntityDecode,t:jsDecode,\
     msg:'UTF-7 Encoding IE XSS - Attack Detected',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -567,11 +601,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Defend against JSFuck and Hieroglyphy obfuscation of Javascript code
@@ -595,7 +628,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 # !+[]
 # ! []
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ![!+ ]\[\]" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx ![!+ ]\[\]" \
     "id:941360,\
     phase:2,\
     block,\
@@ -609,11 +642,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242/63',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 #
 # Prevent 941180 bypass by using JavaScript global variables
@@ -623,7 +655,7 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
 #    - /?search=/?a=";+alert(self["document"]["cookie"]);//
 #    - /?search=/?a=";+document+/*foo*/+.+/*bar*/+cookie;//
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS|XML:/* "@rx (?:self|document|this|top|window)\s*(?:/\*|[\[)]).+?(?:\]|\*/)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?:self|document|this|top|window)\s*(?:/\*|[\[)]).+?(?:\]|\*/)" \
     "id:941370,\
     phase:2,\
     block,\
@@ -637,25 +669,84 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS|XML:
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242/63',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+#
+# JavaScript methods which take code as a string types are considered unsafe.
+# Unsafe JS functions like eval(), setInterval(), setTimeout()
+# Unsafe JS constructor new Function()
+# https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html#dangerous-contexts
+# https://snyk.io/blog/5-ways-to-prevent-code-injection-in-javascript-and-node-js/
+#
+# Regular expression generated from regex-assembly/941390.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 941390
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)\b(?:eval|set(?:timeout|interval)|new[\s\v]+Function|a(?:lert|tob)|btoa)[\s\v]*\(" \
+    "id:941390,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:htmlEntityDecode,t:jsDecode,\
+    msg:'Javascript method detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'attack-xss',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+#
+# JavaScript function without parentheses
+# Reference: https://portswigger.net/research/the-seventh-way-to-call-a-javascript-function-without-parentheses
+#
+# Example Payloads:
+# [].sort.call`${alert}1337`
+# [].map.call`${eval}\\u{61}lert\x281337\x29`
+# Reflect.apply.call`${navigation.navigate}${navigation}${[name]}`
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx ((?:\[[^\]]*\][^.]*\.)|Reflect[^.]*\.).*(?:map|sort|apply)[^.]*\..*call[^`]*`.*`" \
+    "id:941400,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:compressWhitespace,\
+    msg:'XSS JavaScript function without parentheses',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'attack-xss',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:941013,phase:1,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:941014,phase:2,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:941013,phase:1,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:941014,phase:2,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 #
 # This is a stricter sibling of rule 941100.
 #
-SecRule REQUEST_HEADERS:Referer "@detectXSS" \
+SecRule REQUEST_FILENAME|REQUEST_HEADERS:Referer "@detectXSS" \
     "id:941101,\
-    phase:2,\
+    phase:1,\
     block,\
     capture,\
     t:none,t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:removeNulls,\
@@ -668,18 +759,50 @@ SecRule REQUEST_HEADERS:Referer "@detectXSS" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
     tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ XSS Filters - Category 2 ]=-
+# XSS vectors making use of event handlers like onerror, onload etc, e.g., <body onload="alert(1)">
+#
+# We are not listing all the known event handlers like rule 941160, but we
+# limit the alerts to keywords of 3-25 characters after the prefix ("on").
+#
+# The shortest known event is "onget". The longest known event is "onmozorientationchange"
+# with 23 chars after the prefix. 25 chars adds a little bit of safety.
+#
+# This rule has been moved to PL2 since it has a tendency to trigger on random input.
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)[\s\"'`;/0-9=\x0B\x09\x0C\x3B\x2C\x28\x3B]on[a-zA-Z]{3,25}[\s\x0B\x09\x0C\x3B\x2C\x28\x3B]*?=[^=]" \
+    "id:941120,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:removeNulls,\
+    msg:'XSS Filter - Category 2: Event Handler Vector',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-xss',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
 #
 # -=[ XSS Filters - Category 5 ]=-
 # HTML attributes - src, style and href
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:s(?:tyle|rc)|href)\b[\s\S]*?=" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)\b(?:s(?:tyle|rc)|href)\b[\s\S]*?=" \
     "id:941150,\
     phase:2,\
     block,\
@@ -694,13 +817,43 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242',\
     tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+
+#
+# [Deny List Keywords from Node-Validator]
+# https://github.com/validatorjs/validator.js/
+# This rule is a stricter sibling of 941180 (PL1)
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@contains -->" \
+    "id:941181,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:htmlEntityDecode,t:jsDecode,t:cssDecode,t:lowercase,t:removeNulls,\
+    msg:'Node-Validator Deny List Keywords',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-xss',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
+
+#
+# -=[ XSS Filters from IE ]=-
+
 # Detect tags that are the most common direct HTML injection points.
 #
 #     <a href=javascript:...
@@ -762,12 +915,12 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_H
 # This rule is also triggered by the following exploit(s):
 # [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx <(?:a|abbr|acronym|address|applet|area|audioscope|b|base|basefront|bdo|bgsound|big|blackface|blink|blockquote|body|bq|br|button|caption|center|cite|code|col|colgroup|comment|dd|del|dfn|dir|div|dl|dt|em|embed|fieldset|fn|font|form|frame|frameset|h1|head|hr|html|i|iframe|ilayer|img|input|ins|isindex|kdb|keygen|label|layer|legend|li|limittext|link|listing|map|marquee|menu|meta|multicol|nobr|noembed|noframes|noscript|nosmartquotes|object|ol|optgroup|option|p|param|plaintext|pre|q|rt|ruby|s|samp|script|select|server|shadow|sidebar|small|spacer|span|strike|strong|style|sub|sup|table|tbody|td|textarea|tfoot|th|thead|title|tr|tt|u|ul|var|wbr|xml|xmp)\W" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx <(?:a|abbr|acronym|address|applet|area|audioscope|b|base|basefront|bdo|bgsound|big|blackface|blink|blockquote|body|bq|br|button|caption|center|cite|code|col|colgroup|comment|dd|del|dfn|dir|div|dl|dt|em|embed|fieldset|fn|font|form|frame|frameset|h1|head|hr|html|i|iframe|ilayer|img|input|ins|isindex|kdb|keygen|label|layer|legend|li|limittext|link|listing|map|marquee|menu|meta|multicol|nobr|noembed|noframes|noscript|nosmartquotes|object|ol|optgroup|option|p|param|plaintext|pre|q|rt|ruby|s|samp|script|select|server|shadow|sidebar|small|spacer|span|strike|strong|style|sub|sup|table|tbody|td|textarea|tfoot|th|thead|title|tr|tt|u|ul|var|wbr|xml|xmp)\W" \
     "id:941320,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:jsDecode,t:lowercase,\
+    t:none,t:jsDecode,t:lowercase,\
     msg:'Possible XSS Attack Detected - HTML Tag Handler',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -778,17 +931,17 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQU
     tag:'capec/1000/152/242/63',\
     tag:'PCI/6.5.1',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:[\"'][ ]*(?:[^a-z0-9~_:' ]|in).*?(?:(?:l|\\\\u006C)(?:o|\\\\u006F)(?:c|\\\\u0063)(?:a|\\\\u0061)(?:t|\\\\u0074)(?:i|\\\\u0069)(?:o|\\\\u006F)(?:n|\\\\u006E)|(?:n|\\\\u006E)(?:a|\\\\u0061)(?:m|\\\\u006D)(?:e|\\\\u0065)|(?:o|\\\\u006F)(?:n|\\\\u006E)(?:e|\\\\u0065)(?:r|\\\\u0072)(?:r|\\\\u0072)(?:o|\\\\u006F)(?:r|\\\\u0072)|(?:v|\\\\u0076)(?:a|\\\\u0061)(?:l|\\\\u006C)(?:u|\\\\u0075)(?:e|\\\\u0065)(?:O|\\\\u004F)(?:f|\\\\u0066)).*?=)" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i:[\"'][ ]*(?:[^a-z0-9~_:' ]|in).*?(?:(?:l|\x5cu006C)(?:o|\x5cu006F)(?:c|\x5cu0063)(?:a|\x5cu0061)(?:t|\x5cu0074)(?:i|\x5cu0069)(?:o|\x5cu006F)(?:n|\x5cu006E)|(?:n|\x5cu006E)(?:a|\x5cu0061)(?:m|\x5cu006D)(?:e|\x5cu0065)|(?:o|\x5cu006F)(?:n|\x5cu006E)(?:e|\x5cu0065)(?:r|\x5cu0072)(?:r|\x5cu0072)(?:o|\x5cu006F)(?:r|\x5cu0072)|(?:v|\x5cu0076)(?:a|\x5cu0061)(?:l|\x5cu006C)(?:u|\x5cu0075)(?:e|\x5cu0065)(?:O|\x5cu004F)(?:f|\x5cu0066)).*?=)" \
     "id:941330,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:htmlEntityDecode,t:compressWhitespace,\
+    t:none,t:htmlEntityDecode,t:compressWhitespace,\
     msg:'IE XSS Filters - Attack Detected',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -799,20 +952,20 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQU
     tag:'capec/1000/152/242',\
     tag:'PCI/6.5.1',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 # This rule is also triggered by the following exploit(s):
 # [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\"\'][ ]*(?:[^a-z0-9~_:\' ]|in).+?[.].+?=" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)[\"\'][ ]*(?:[^a-z0-9~_:\' ]|in).+?[.].+?=" \
     "id:941340,\
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:htmlEntityDecode,t:compressWhitespace,\
+    t:none,t:htmlEntityDecode,t:compressWhitespace,\
     msg:'IE XSS Filters - Attack Detected',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -823,10 +976,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQU
     tag:'capec/1000/152/242',\
     tag:'PCI/6.5.1',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 #
 # Defend against AngularJS client side template injection
@@ -834,14 +987,14 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQU
 # Of course, pure client-side AngularJS commands can not be intercepted.
 # But once a command is sent to the server, the CRS will trigger.
 #
-# https://portswigger.net/blog/xss-without-html-client-side-template-injection-with-angularjs
+# https://portswigger.net/research/xss-without-html-client-side-template-injection-with-angularjs
 #
 # Example payload:
 # http://localhost/login?user=%20x%20%7B%7Bconstructor.constructor(%27alert(1)%27)()%7D%7D%20.%20ff
 # Decoded argument:
 # {{constructor.constructor('alert(1)')()}}
 #
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx {{.*?}}" \
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx {{.*?}}" \
     "id:941380,\
     phase:2,\
     block,\
@@ -855,26 +1008,25 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'OWASP_CRS',\
     tag:'capec/1000/152/242/63',\
     tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.xss_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:941015,phase:1,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:941016,phase:2,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:941015,phase:1,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:941016,phase:2,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:941017,phase:1,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:941018,phase:2,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:941017,phase:1,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:941018,phase:2,pass,nolog,skipAfter:END-REQUEST-941-APPLICATION-ATTACK-XSS"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
new file mode 100644
index 0000000000..f0d1fda47a
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
@@ -0,0 +1,1975 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:942011,phase:1,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:942012,phase:2,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+#
+# References:
+#
+# SQL Injection Knowledgebase (via @LightOS) -
+# http://websec.ca/kb/sql_injection
+#
+# SQLi Filter Evasion Cheat Sheet -
+# http://websec.wordpress.com/2010/12/04/sqli-filter-evasion-cheat-sheet-mysql/
+#
+# SQL Injection Cheat Sheet -
+# http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/
+#
+# SQLMap's Tamper Scripts (for evasions)
+# https://github.com/sqlmapproject/sqlmap
+#
+
+#
+# -=[ LibInjection Check ]=-
+#
+# There is a stricter sibling of this rule at 942101. It covers REQUEST_BASENAME and REQUEST_FILENAME.
+#
+# Ref: https://github.com/libinjection/libinjection
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|XML:/* "@detectSQLi" \
+    "id:942100,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:removeNulls,\
+    msg:'SQL Injection Attack Detected via libinjection',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    multiMatch,\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ Detect DB Names ]=-
+#
+# Regular expression generated from regex-assembly/942140.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942140
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:d(?:atabas|b_nam)e[^0-9A-Z_a-z]*\(|(?:information_schema|m(?:aster\.\.sysdatabases|s(?:db|ys(?:ac(?:cess(?:objects|storage|xml)|es)|modules2?|(?:object|querie|relationship)s))|ysql\.db)|northwind|pg_(?:catalog|toast)|tempdb)\b|s(?:chema(?:_name\b|[^0-9A-Z_a-z]*\()|(?:qlite_(?:temp_)?master|ys(?:aux|\.database_name))\b))" \
+    "id:942140,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Injection Attack: Common DB Names Detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ SQL Function Names ]=-
+#
+# This rule has a stricter sibling to this rule (942152) that checks for SQL function names in 
+# request headers referer and user-agent.
+#
+# Regular expression generated from regex-assembly/942151.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942151
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:a(?:dd(?:dat|tim)e|es_(?:de|en)crypt|s(?:cii(?:str)?|in)|tan2?)|b(?:enchmark|i(?:n_to_num|t_(?:and|count|length|x?or)))|c(?:har(?:acter)?_length|iel(?:ing)?|o(?:alesce|ercibility|llation|(?:mpres)?s|n(?:cat(?:_ws)?|nection_id|v(?:ert(?:_tz)?)?)|t)|r32|ur(?:(?:dat|tim)e|rent_(?:date|setting|time(?:stamp)?|user)))|d(?:a(?:t(?:abase(?:_to_xml)?|e(?:_(?:add|format|sub)|diff))|y(?:name|of(?:month|week|year)))|count|e(?:code|grees|s_(?:de|en)crypt)|ump)|e(?:lt|n(?:c(?:ode|rypt)|ds_?with)|x(?:p(?:ort_set)?|tract(?:value)?))|f(?:i(?:el|n)d_in_set|ound_rows|rom_(?:base64|days|unixtime))|g(?:e(?:ometrycollection|t(?:_(?:format|lock)|pgusername))|(?:r(?:eates|oup_conca)|tid_subse)t)|hex(?:toraw)?|i(?:fnull|n(?:et6?_(?:aton|ntoa)|s(?:ert|tr)|terval)|s(?:_(?:(?:free|used)_lock|ipv(?:4(?:_(?:compat|mapped))?|6)|n(?:ot(?:_null)?|ull)|superuser)|null))|json(?:_(?:a(?:gg|rray(?:_(?:elements(?:_text)?|length))?)|build_(?:array|object)|e(?:ac|xtract_pat)h(?:_text)?|object(?:_(?:agg|keys))?|populate_record(?:set)?|strip_nulls|t(?:o_record(?:set)?|ypeof))|b(?:_(?:array(?:_(?:elements(?:_text)?|length))?|build_(?:array|object)|object(?:_(?:agg|keys))?|e(?:ac|xtract_pat)h(?:_text)?|insert|p(?:ath_(?:(?:exists|match)(?:_tz)?|query(?:_(?:(?:array|first)(?:_tz)?|tz))?)|opulate_record(?:set)?|retty)|s(?:et(?:_lax)?|trip_nulls)|t(?:o_record(?:set)?|ypeof)))?|path)?|l(?:ast_(?:day|inser_id)|case|e(?:as|f)t|i(?:kel(?:ihood|y)|nestring)|o(?:_(?:from_bytea|put)|ad_file|ca(?:ltimestamp|te)|g(?:10|2)|wer)|pad|trim)|m(?:a(?:ke(?:_set|date)|ster_pos_wait)|d5|i(?:crosecon)?d|onthname|ulti(?:linestring|po(?:int|lygon)))|n(?:ame_const|ot_in|ullif)|o(?:ct(?:et_length)?|(?:ld_passwo)?rd)|p(?:eriod_(?:add|diff)|g_(?:client_encoding|(?:databas|read_fil)e|l(?:argeobject|s_dir)|sleep|user)|o(?:(?:lyg|siti)on|w)|rocedure_analyse)|qu(?:arter|ery_to_xml|ote)|r(?:a(?:dians|nd|wtohex)|elease_lock|ow_(?:count|to_json)|pad|trim)|s(?:chema|e(?:c_to_time|ssion_user)|ha[1-2]?|in|oundex|pace|q(?:lite_(?:compileoption_(?:get|used)|source_id)|rt)|t(?:arts_?with|d(?:dev_(?:po|sam)p)?|r(?:_to_date|cmp))|ub(?:(?:dat|tim)e|str(?:ing(?:_index)?)?)|ys(?:date|tem_user))|t(?:ime(?:_(?:format|to_sec)|diff|stamp(?:add|diff)?)|o(?:_(?:base64|jsonb?)|n?char|(?:day|second)s)|r(?:im|uncate))|u(?:case|n(?:compress(?:ed_length)?|hex|i(?:str|x_timestamp)|likely)|(?:pdatexm|se_json_nul)l|tc_(?:date|time(?:stamp)?)|uid(?:_short)?)|var(?:_(?:po|sam)p|iance)|we(?:ek(?:day|ofyear)|ight_string)|xmltype|yearweek)[^0-9A-Z_a-z]*\(" \
+    "id:942151,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:lowercase,\
+    msg:'SQL Injection Attack: SQL function name detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/1',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ PHPIDS - Converted SQLI Filters ]=-
+#
+# https://raw.githubusercontent.com/PHPIDS/PHPIDS/master/lib/IDS/default_filter.xml
+#
+# The rule 942160 prevents time-based blind SQL injection attempts
+# by prohibiting sleep() or benchmark(,) functions:
+#
+# * The sleep command takes a number of seconds as an argument.
+# * The benchmark command executes the specified expression multiple times.
+#
+# Using a long sleep time or high number of executions, you can create a delay
+# with the response from the server.  This allows to determine whether the
+# query has been executed or not.  A high response time proves that the SQLi
+# worked successfully. It can now be equipped with the real payload.
+#
+# Therefore this rule does not prevent the attack itself, but blocks an
+# attacker from using the standard utils to tinker with blind SQLi.
+#
+# A positive side effect is that it prevents certain DoS attacks via the directives
+# described above.
+#
+SecRule REQUEST_BASENAME|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:sleep\(\s*?\d*?\s*?\)|benchmark\(.*?\,.*?\))" \
+    "id:942160,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects blind sqli tests using sleep() or benchmark()',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942170.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942170
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:select|;)[\s\v]+(?:benchmark|if|sleep)[\s\v]*?\([\s\v]*?\(?[\s\v]*?[0-9A-Z_a-z]+" \
+    "id:942170,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects SQL benchmark and sleep injection attempts including conditional queries',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942190.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942190
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\"'`](?:[\s\v]*![\s\v]*[\"'0-9A-Z_-z]|;?[\s\v]*(?:having|select|union\b[\s\v]*(?:all|(?:distin|sele)ct))\b[\s\v]*[^\s\v])|\b(?:(?:(?:c(?:onnection_id|urrent_user)|database|schema|user)[\s\v]*?|select.*?[0-9A-Z_a-z]?user)\(|exec(?:ute)?[\s\v]+master\.|from[^0-9A-Z_a-z]+information_schema[^0-9A-Z_a-z]|into[\s\v\+]+(?:dump|out)file[\s\v]*?[\"'`]|union(?:[\s\v]select[\s\v]@|[\s\v\(0-9A-Z_a-z]*?select))|[\s\v]*?exec(?:ute)?.*?[^0-9A-Z_a-z]xp_cmdshell|[^0-9A-Z_a-z]iif[\s\v]*?\(" \
+    "id:942190,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:removeCommentsChar,\
+    msg:'Detects MSSQL code execution and information gathering attempts',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Magic number crash in PHP strtod from 2011:
+# https://www.exploringbinary.com/php-hangs-on-numeric-value-2-2250738585072011e-308/
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ^(?i:-0000023456|4294967295|4294967296|2147483648|2147483647|0000012345|-2147483648|-2147483649|0000023456|2.2250738585072007e-308|2.2250738585072011e-308|1e309)$" \
+    "id:942220,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Looking for integer overflow attacks, these are taken from skipfish, except 2.2.2250738585072011e-308 is the \"magic number\" crash',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942230.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942230
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\s\v\(-\)]case[\s\v]+when.*?then|\)[\s\v]*?like[\s\v]*?\(|select.*?having[\s\v]*?[^\s\v]+[\s\v]*?[^\s\v0-9A-Z_a-z]|if[\s\v]?\([0-9A-Z_a-z]+[\s\v]*?[<->~]" \
+    "id:942230,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects conditional SQL injection attempts',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942240.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942240
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)alter[\s\v]*?[0-9A-Z_a-z]+.*?char(?:acter)?[\s\v]+set[\s\v]+[0-9A-Z_a-z]+|[\"'`](?:;*?[\s\v]*?waitfor[\s\v]+(?:time|delay)[\s\v]+[\"'`]|;.*?:[\s\v]*?goto)" \
+    "id:942240,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects MySQL charset switch and MSSQL DoS attempts',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:merge.*?using\s*?\(|execute\s*?immediate\s*?[\"'`]|match\s*?[\w(),+-]+\s*?against\s*?\()" \
+    "id:942250,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects MATCH AGAINST, MERGE and EXECUTE IMMEDIATE injections',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)union.*?select.*?from" \
+    "id:942270,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Looking for basic sql injection. Common attack string for mysql, oracle and others',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942280.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942280
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)select[\s\v]*?pg_sleep|waitfor[\s\v]*?delay[\s\v]?[\"'`]+[\s\v]?[0-9]|;[\s\v]*?shutdown[\s\v]*?(?:[#;\{]|/\*|--)" \
+    "id:942280,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects Postgres pg_sleep injection, waitfor delay attacks and database shutdown attempts',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942290.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942290
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\[?\$(?:n(?:e|in?|o[rt])|e(?:q|xists|lemMatch)|l(?:te?|ike)|mod|a(?:ll|nd)|(?:s(?:iz|lic)|wher)e|t(?:ype|ext)|x?or|div|between|regex|jsonSchema)\]?" \
+    "id:942290,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Finds basic MongoDB SQL injection attempts',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# This rule has a stricter sibling (942321) that checks for MySQL and PostgreSQL procedures / functions in 
+# request headers referer and user-agent.
+#
+# Regular expression generated from regex-assembly/942320.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942320
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)create[\s\v]+(?:function|procedure)[\s\v]*?[0-9A-Z_a-z]+[\s\v]*?\([\s\v]*?\)[\s\v]*?-|d(?:eclare[^0-9A-Z_a-z]+[#@][\s\v]*?[0-9A-Z_a-z]+|iv[\s\v]*?\([\+\-]*[\s\v\.0-9]+,[\+\-]*[\s\v\.0-9]+\))|exec[\s\v]*?\([\s\v]*?@|(?:lo_(?:impor|ge)t|procedure[\s\v]+analyse)[\s\v]*?\(|;[\s\v]*?(?:declare|open)[\s\v]+[\-0-9A-Z_a-z]+|::(?:b(?:igint|ool)|double[\s\v]+precision|int(?:eger)?|numeric|oid|real|(?:tex|smallin)t)" \
+    "id:942320,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects MySQL and PostgreSQL stored procedure/function injections',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942350.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942350
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)create[\s\v]+function[\s\v].+[\s\v]returns|;[\s\v]*?(?:alter|(?:(?:cre|trunc|upd)at|renam)e|d(?:e(?:lete|sc)|rop)|(?:inser|selec)t|load)\b[\s\v]*?[\(\[]?[0-9A-Z_a-z]{2,}" \
+    "id:942350,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects MySQL UDF injection and other data/structure manipulation attempts',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# This rule has two stricter sibling: 942361 and 942362.
+# The keywords 'alter' and 'union' led to false positives.
+# Therefore they have been moved to PL2 and the keywords have been extended on PL1.
+# The original version also had loose word boundaries and context checksum cause further false positives.
+# Because fixing those introduced bypass, the original variant was moved to PL2 as 942362.
+#
+# Sources for SQL ALTER statements:
+# MySQL: https://dev.mysql.com/doc/refman/5.7/en/sql-syntax-data-definition.html
+# Oracle/PLSQL: https://docs.oracle.com/search/?q=alter&size=60&category=database
+# PostgreQSL: https://www.postgresql.org/search/?u=%2Fdocs&q=alter
+# MSSQL: https://learn.microsoft.com/en-us/sql/t-sql/statements/statements?view=sql-server-ver16
+# DB2: https://www.ibm.com/docs/en/search/alter?scope=SSEPGG_9.5.0
+#
+# Regular expression generated from regex-assembly/942360.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942360
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:(?:alter|(?:(?:cre|trunc|upd)at|renam)e|de(?:lete|sc)|(?:inser|selec)t|load)[\s\v]+(?:char|group_concat|load_file)\b[\s\v]*\(?|end[\s\v]*?\);)|[\s\v\(]load_file[\s\v]*?\(|[\"'`][\s\v]+regexp[^0-9A-Z_a-z]|[\"'0-9A-Z_-z][\s\v]+as\b[\s\v]*[\"'0-9A-Z_-z]+[\s\v]*\bfrom|^[^A-Z_a-z]+[\s\v]*?(?:(?:(?:(?:cre|trunc)at|renam)e|d(?:e(?:lete|sc)|rop)|(?:inser|selec)t|load)[\s\v]+[0-9A-Z_a-z]+|u(?:pdate[\s\v]+[0-9A-Z_a-z]+|nion[\s\v]*(?:all|(?:sele|distin)ct)\b)|alter[\s\v]*(?:a(?:(?:ggregat|pplication[\s\v]*rol)e|s(?:sembl|ymmetric[\s\v]*ke)y|u(?:dit|thorization)|vailability[\s\v]*group)|b(?:roker[\s\v]*priority|ufferpool)|c(?:ertificate|luster|o(?:l(?:latio|um)|nversio)n|r(?:edential|yptographic[\s\v]*provider))|d(?:atabase|efault|i(?:mension|skgroup)|omain)|e(?:(?:ndpoi|ve)nt|xte(?:nsion|rnal))|f(?:lashback|oreign|u(?:lltext|nction))|hi(?:erarchy|stogram)|group|in(?:dex(?:type)?|memory|stance)|java|l(?:a(?:ngua|r)ge|ibrary|o(?:ckdown|g(?:file[\s\v]*group|in)))|m(?:a(?:s(?:k|ter[\s\v]*key)|terialized)|e(?:ssage[\s\v]*type|thod)|odule)|(?:nicknam|queu)e|o(?:perator|utline)|p(?:a(?:ckage|rtition)|ermission|ro(?:cedur|fil)e)|r(?:e(?:mot|sourc)e|o(?:l(?:e|lback)|ute))|s(?:chema|e(?:arch|curity|rv(?:er|ice)|quence|ssion)|y(?:mmetric[\s\v]*key|nonym)|togroup)|t(?:able(?:space)?|ext|hreshold|r(?:igger|usted)|ype)|us(?:age|er)|view|w(?:ork(?:load)?|rapper)|x(?:ml[\s\v]*schema|srobject))\b)" \
+    "id:942360,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects concatenated basic SQL injection and SQLLFI attempts',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ Detect MySQL in-line comments ]=-
+#
+# MySQL in-line comments can be used to bypass SQLi detection.
+#
+# Ref: https://dev.mysql.com/doc/refman/8.0/en/comments.html:
+# SELECT /*! STRAIGHT_JOIN */ col1 FROM table1,table2 WHERE ...
+# CREATE TABLE t1(a INT, KEY (a)) /*!50110 KEY_BLOCK_SIZE=1024 */;
+# SELECT /*+ BKA(t1) */ FROM ... ;
+#
+# http://localhost/test.php?id=9999+or+{if+length((/*!5000select+username/*!50000from*/user+where+id=1))>0}
+#
+# The minimal string that triggers this regexp is: /*!*/ or /*+*/.
+# The rule 942500 is related to 942440 which catches both /*! and */ independently.
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:/\*[!+](?:[\w\s=_\-()]+)?\*/)" \
+    "id:942500,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'MySQL in-line comment detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# This rule catches an authentication bypass via SQL injection that abuses semi-colons to end the SQL query early.
+# Any characters after the semi-colon are ignored by some DBMSes (e.g. SQLite).
+#
+# An example of this would be:
+#   email=admin%40juice-sh.op';&password=foo
+#
+# The server then turns this into:
+#   SELECT * FROM users WHERE email='admin@juice-sh.op';' AND password='foo'
+#
+# Regular expression generated from regex-assembly/942540.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942540
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ^(?:[^']*'|[^\"]*\"|[^`]*`)[\s\v]*;" \
+    "id:942540,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:replaceComments,\
+    msg:'SQL Authentication bypass (split query)',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/1',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# This rule catches on Scientific Notation bypass payloads in MySQL
+# Reference: https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/SQL%20Injection/MySQL%20Injection.md#scientific-notation
+#
+# Regular expression generated from regex-assembly/942560.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942560
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)1\.e[\(-\),]" \
+    "id:942560,\
+    phase:2,\
+    block,\
+    t:none,t:urlDecodeUni,t:replaceComments,\
+    msg:'MySQL Scientific Notation payload detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/1',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+# This rule tries to match JSON SQL syntax that could be used as a bypass technique.
+# Referring to this research: https://claroty.com/team82/research/js-on-security-off-abusing-json-based-sql-to-bypass-waf
+#
+# Regular expression generated from regex-assembly/942550.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942550
+#
+SecRule REQUEST_FILENAME|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx [\"'`][\[\{].*[\]\}][\"'`].*(::.*jsonb?)?.*(?:(?:@|->?)>|<@|\?[&\|]?|#>>?|[<>]|<-)|(?:(?:@|->?)>|<@|\?[&\|]?|#>>?|[<>]|<-)[\"'`][\[\{].*[\]\}][\"'`]|json_extract.*\(.*\)" \
+    "id:942550,\
+    phase:2,\
+    block,\
+    t:none,t:urlDecodeUni,t:lowercase,t:removeWhitespace,\
+    msg:'JSON-Based SQL Injection',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/1',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:942013,phase:1,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:942014,phase:2,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+
+#
+# -=[ String Termination/Statement Ending Injection Testing ]=-
+#
+# Identifies common initial SQLi probing requests where attackers insert/append
+# quote characters to the existing normal payload to see how the app/db responds.
+#
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+SecRule REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "@rx (?:^\s*[\"'`;]+|[\"'`]+\s*$)" \
+    "id:942110,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,\
+    msg:'SQL Injection Attack: Common Injection Testing Detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'WARNING',\
+    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.warning_anomaly_score}'"
+
+
+#
+# -=[ SQL Operators ]=-
+#
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+# Regular expression generated from regex-assembly/942120.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942120
+#
+SecRule ARGS_NAMES|ARGS|REQUEST_FILENAME|XML:/* "@rx (?i)!=|&&|\|\||>[=->]|<(?:<|=>?|>(?:[\s\v]+binary)?)|\b(?:(?:xor|r(?:egexp|like)|i(?:snull|like)|notnull)\b|collate(?:[^0-9A-Z_a-z]*?(?:U&)?[\"'`]|[^0-9A-Z_a-z]+(?:(?:binary|nocase|rtrim)\b|[0-9A-Z_a-z]*?_))|(?:likel(?:ihood|y)|unlikely)[\s\v]*\()|r(?:egexp|like)[\s\v]+binary|not[\s\v]+between[\s\v]+(?:0[\s\v]+and|(?:'[^']*'|\"[^\"]*\")[\s\v]+and[\s\v]+(?:'[^']*'|\"[^\"]*\"))|is[\s\v]+null|like[\s\v]+(?:null|[0-9A-Z_a-z]+[\s\v]+escape\b)|(?:^|[^0-9A-Z_a-z])in[\s\v\+]*\([\s\v\"0-9]+[^\(-\)]*\)|[!<->]{1,2}[\s\v]*all\b" \
+    "id:942120,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,\
+    msg:'SQL Injection Attack: SQL Operator Detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ SQL Tautologies ]=-
+#
+# Boolean-based SQL injection or tautology attack. Boolean values (True or False) are used to carry out
+# this type of SQL injection. The malicious SQL query forces the web application to return a different result de-
+# pending on whether the query returns a TRUE or FALSE result.
+#
+# The original 942130 was split in two rules:
+# - 942130 targets tautologies using equalities (e.g. 1 = 1)
+# - 942131 targets tautologies using inequalities (e.g. 1 != 2)
+#
+# We use captures to check for (in)equality in the regexp. So TX.1 will capture the left hand side (LHS) of the inequality,
+# and TX.2 will capture the right hand side (RHS) of the logical query.
+#
+# Regular expression generated from regex-assembly/942130.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942130
+#
+SecRule ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\s\v\"'-\)`]*?\b([0-9A-Z_a-z]+)\b[\s\v\"'-\)`]*?(?:=|<=>|(?:sounds[\s\v]+)?like|glob|r(?:like|egexp))[\s\v\"'-\)`]*?\b([0-9A-Z_a-z]+)\b" \
+    "id:942130,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:replaceComments,\
+    msg:'SQL Injection Attack: SQL Boolean-based attack detected',\
+    logdata:'Matched Data: %{TX.0} found within %{TX.942130_MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.942130_matched_var_name=%{matched_var_name}',\
+    chain"
+    SecRule TX:1 "@streq %{TX.2}" \
+        "t:none,\
+        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Rule Targeting logical inequalities that return TRUE (e.g. 1 != 2)
+#
+#
+# We use captures to check for (in)equality in the regexp. So TX.1 will capture the left hand side (LHS) of the inequality,
+# and TX.2 will capture the right hand side (RHS) of the logical query.
+#
+# Regular expression generated from regex-assembly/942131.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942131
+#
+SecRule ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\s\v\"'-\)`]*?\b([0-9A-Z_a-z]+)\b[\s\v\"'-\)`]*?(?:![<->]|<[=->]?|>=?|\^|is[\s\v]+not|not[\s\v]+(?:like|r(?:like|egexp)))[\s\v\"'-\)`]*?\b([0-9A-Z_a-z]+)\b" \
+    "id:942131,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:replaceComments,\
+    msg:'SQL Injection Attack: SQL Boolean-based attack detected',\
+    logdata:'Matched Data: %{TX.0} found within %{TX.942131_MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    multiMatch,\
+    setvar:'tx.942131_matched_var_name=%{matched_var_name}',\
+    chain"
+    SecRule TX:1 "!@streq %{TX.2}" \
+        "t:none,\
+        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ SQL Function Names ]=-
+#
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+# Regular expression generated from regex-assembly/942150.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942150
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:json(?:_[0-9A-Z_a-z]+)?|a(?:bs|(?:cos|sin)h?|tan[2h]?|vg)|c(?:eil(?:ing)?|h(?:a(?:nges|r(?:set)?)|r)|o(?:alesce|sh?|unt)|ast)|d(?:e(?:grees|fault)|a(?:te|y))|exp|f(?:loor(?:avg)?|ormat|ield)|g(?:lob|roup_concat)|h(?:ex|our)|i(?:f(?:null)?|if|n(?:str)?)|l(?:ast(?:_insert_rowid)?|ength|ike(?:l(?:ihood|y))?|n|o(?:ad_extension|g(?:10|2)?|wer(?:pi)?|cal)|trim)|m(?:ax|in(?:ute)?|o(?:d|nth))|n(?:ullif|ow)|p(?:i|ow(?:er)?|rintf|assword)|quote|r(?:a(?:dians|ndom(?:blob)?)|e(?:p(?:lace|eat)|verse)|ound|trim|ight)|s(?:i(?:gn|nh?)|oundex|q(?:lite_(?:compileoption_(?:get|used)|offset|source_id|version)|rt)|u(?:bstr(?:ing)?|m)|econd|leep)|t(?:anh?|otal(?:_changes)?|r(?:im|unc)|ypeof|ime)|u(?:n(?:icode|likely)|(?:pp|s)er)|zeroblob|bin|v(?:alues|ersion)|week|year)[^0-9A-Z_a-z]*\(" \
+    "id:942150,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:lowercase,\
+    msg:'SQL Injection Attack: SQL function name detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ SQL Authentication Bypasses ]=-
+#
+# Authentication bypass occurs when the attacker can log in as another user
+# without knowing the user's password. The example bypass could look like this:
+#
+# x' OR 'x
+#
+# Because of the quantity of different rules they are split into:
+# - 942540 PL1
+# - 942180 PL2
+# - 942260 PL2
+# - 942340 PL2
+# - 942520 PL2
+#   - 942521 PL2
+#   - 942522 PL2
+
+# Regular expression generated from regex-assembly/942180.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942180
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:/\*)+[\"'`]+[\s\v]?(?:--|[#\{]|/\*)?|[\"'`](?:[\s\v]*(?:(?:x?or|and|div|like|between)[\s\v\-0-9A-Z_a-z]+[\(-\)\+-\-<->][\s\v]*[\"'0-9`]|[!=\|](?:[\s\v -!\+\-0-9=]+.*?[\"'-\(`].*?|[\s\v -!0-9=]+.*?[0-9]+)$|(?:like|print)[^0-9A-Z_a-z]+[\"'-\(0-9A-Z_-z]|;)|(?:[<>~]+|[\s\v]*[^\s\v0-9A-Z_a-z]?=[\s\v]*|[^0-9A-Z_a-z]*?[\+=]+[^0-9A-Z_a-z]*?)[\"'`])|[0-9][\"'`][\s\v]+[\"'`][\s\v]+[0-9]|^admin[\s\v]*?[\"'`]|[\s\v\"'-\(`][\s\v]*?glob[^0-9A-Z_a-z]+[\"'-\(0-9A-Z_-z]|[\s\v]is[\s\v]*?0[^0-9A-Z_a-z]|where[\s\v][\s\v,-\.0-9A-Z_a-z]+[\s\v]=" \
+    "id:942180,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects basic SQL authentication bypass attempts 1/3',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+# Regular expression generated from regex-assembly/942200.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942200
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|XML:/* "@rx (?i),.*?[\"'\)0-9`-f][\"'`](?:[\"'`].*?[\"'`]|(?:\r?\n)?\z|[^\"'`]+)|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]*?from|(?:alter|(?:(?:cre|trunc|upd)at|renam)e|d(?:e(?:lete|sc)|rop)|(?:inser|selec)t|load)[\s\v]*?\([\s\v]*?space[\s\v]*?\(" \
+    "id:942200,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects MySQL comment-/space-obfuscated injections and backtick termination',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+# Regular expression generated from regex-assembly/942210.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942210
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:&&|\|\||and|between|div|like|n(?:and|ot)|(?:xx?)?or)[\s\v\(]+[0-9A-Z_a-z]+[\s\v\)]*?[!\+=]+[\s\v0-9]*?[\"'-\)=`]|[0-9](?:[\s\v]*?(?:and|between|div|like|x?or)[\s\v]*?[0-9]+[\s\v]*?[\+\-]|[\s\v]+group[\s\v]+by.+\()|/[0-9A-Z_a-z]+;?[\s\v]+(?:and|between|div|having|like|x?or|select)[^0-9A-Z_a-z]|(?:[#;]|--)[\s\v]*?(?:alter|drop|(?:insert|update)[\s\v]*?[0-9A-Z_a-z]{2,})|@.+=[\s\v]*?\([\s\v]*?select|[^0-9A-Z_a-z]SET[\s\v]*?@[0-9A-Z_a-z]+" \
+    "id:942210,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects chained SQL injection attempts 1/2',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942260.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942260
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\"'`][\s\v]*?(?:(?:and|n(?:and|ot)|(?:xx?)?or|div|like|between|\|\||&&)[\s\v]+[\s\v0-9A-Z_a-z]+=[\s\v]*?[0-9A-Z_a-z]+[\s\v]*?having[\s\v]+|like[^0-9A-Z_a-z]*?[\"'0-9`])|[0-9A-Z_a-z][\s\v]+like[\s\v]+[\"'`]|like[\s\v]*?[\"'`]%|select[\s\v]+?[\s\v\"'-\),-\.0-9A-\[\]_-z]+from[\s\v]+" \
+    "id:942260,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects basic SQL authentication bypass attempts 2/3',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942300.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942300
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\)[\s\v]*?when[\s\v]*?[0-9]+[\s\v]*?then|[\"'`][\s\v]*?(?:[#\{]|--)|/\*![\s\v]?[0-9]+|\b(?:(?:binary|cha?r)[\s\v]*?\([\s\v]*?[0-9]|(?:and|n(?:and|ot)|(?:xx?)?or|div|like|between|r(?:egexp|like))[\s\v]+[0-9A-Z_a-z]+\()|(?:\|\||&&)[\s\v]*?[0-9A-Z_a-z]+\(" \
+    "id:942300,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects MySQL comments, conditions and ch(a)r injections',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942310.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942310
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:\([\s\v]*?select[\s\v]*?[0-9A-Z_a-z]+|coalesce|order[\s\v]+by[\s\v]+if[0-9A-Z_a-z]*?)[\s\v]*?\(|\*/from|\+[\s\v]*?[0-9]+[\s\v]*?\+[\s\v]*?@|[0-9A-Z_a-z][\"'`][\s\v]*?(?:(?:[\+\-=@\|]+[\s\v]+?)+|[\+\-=@\|]+)[\(0-9]|@@[0-9A-Z_a-z]+[\s\v]*?[^\s\v0-9A-Z_a-z]|[^0-9A-Z_a-z]!+[\"'`][0-9A-Z_a-z]|[\"'`](?:;[\s\v]*?(?:if|while|begin)|[\s\v0-9]+=[\s\v]*?[0-9])|[\s\v\(]+case[0-9]*?[^0-9A-Z_a-z].+[tw]hen[\s\v\(]" \
+    "id:942310,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects chained SQL injection attempts 2/2',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ SQL Injection Probings ]=-
+#
+# This is a group of three similar rules aiming to detect SQL injection probings.
+#
+# 942330 PL 2
+# 942370 PL 2
+# 942490 PL 3
+# Regular expression generated from regex-assembly/942330.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942330
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\"'`][\s\v]*?\b(?:x?or|div|like|between|and)\b[\s\v]*?[\"'`]?[0-9]|\x5cx(?:2[37]|3d)|^(?:.?[\"'`]$|[\"'\x5c`]*?(?:[\"'0-9`]+|[^\"'`]+[\"'`])[\s\v]*?\b(?:and|n(?:and|ot)|(?:xx?)?or|div|like|between|\|\||&&)\b[\s\v]*?[\"'0-9A-Z_-z][!&\(-\)\+-\.@])|[^\s\v0-9A-Z_a-z][0-9A-Z_a-z]+[\s\v]*?[\-\|][\s\v]*?[\"'`][\s\v]*?[0-9A-Z_a-z]|@(?:[0-9A-Z_a-z]+[\s\v]+(?:and|x?or|div|like|between)\b[\s\v]*?[\"'0-9`]+|[\-0-9A-Z_a-z]+[\s\v](?:and|x?or|div|like|between)\b[\s\v]*?[^\s\v0-9A-Z_a-z])|[^\s\v0-:A-Z_a-z][\s\v]*?[0-9][^0-9A-Z_a-z]+[^\s\v0-9A-Z_a-z][\s\v]*?[\"'`].|[^0-9A-Z_a-z]information_schema|table_name[^0-9A-Z_a-z]" \
+    "id:942330,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects classic SQL injection probings 1/3',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942340.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942340
+#
+# Note that part of 942340.data is already optimized, to avoid a
+# Regexp::Assemble behaviour, where the regex is not optimized very nicely.
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)in[\s\v]*?\(+[\s\v]*?select|(?:(?:(?i:N)?AND|(?i:X)?(?i:X)?OR|DIV|LIKE|BETWEEN|NOT)[\s\v]+|(?:\|\||&&)[\s\v]*)[\s\v\+0-9A-Z_a-z]+(?:regexp[\s\v]*?\(|sounds[\s\v]+like[\s\v]*?[\"'`]|[0-9=]+x)|[\"'`](?:[\s\v]*?(?:[0-9][\s\v]*?(?:--|#)|is[\s\v]*?(?:[0-9].+[\"'`]?[0-9A-Z_a-z]|[\.0-9]+[\s\v]*?[^0-9A-Z_a-z].*?[\"'`]))|[%-&<->\^]+[0-9][\s\v]*?(?:=|x?or|div|like|between|and)|(?:[^0-9A-Z_a-z]+[\+\-0-9A-Z_a-z]+[\s\v]*?=[\s\v]*?[0-9][^0-9A-Z_a-z]+|\|?[\-0-9A-Z_a-z]{3,}[^\s\v,\.0-9A-Z_a-z]+)[\"'`]|[\s\v]*(?:(?:(?i:N)?AND|(?i:X)?(?i:X)?OR|DIV|LIKE|BETWEEN|NOT)[\s\v]+|(?:\|\||&&)[\s\v]*)(?:array[\s\v]*\[|[0-9A-Z_a-z]+(?:[\s\v]*!?~|[\s\v]+(?:not[\s\v]+)?similar[\s\v]+to[\s\v]+)|(?:tru|fals)e\b))|\bexcept[\s\v]+(?:select\b|values[\s\v]*?\()" \
+    "id:942340,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects basic SQL authentication bypass attempts 3/3',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# This rule is a stricter sibling of 942360.
+# The keywords 'alter' and 'union' led to false positives.
+# Therefore they have been moved to PL2 and the keywords have been extended on PL1.
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:^[\W\d]+\s*?(?:alter|union)\b)" \
+    "id:942361,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects basic SQL injection based on keyword alter or union',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# This rule is a stricter sibling of 942360.
+# The loose word boundaries and light context led to false positives.
+# Because the stricter variant does miss quite a few legitimate payloads, the loose version was moved to PL2.
+#
+# Regular expression generated from regex-assembly/942362.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942362
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:alter|(?:(?:cre|trunc|upd)at|renam)e|de(?:lete|sc)|(?:inser|selec)t|load)[\s\v]+(?:char|group_concat|load_file)[\s\v]?\(?|end[\s\v]*?\);|[\s\v\(]load_file[\s\v]*?\(|[\"'`][\s\v]+regexp[^0-9A-Z_a-z]|[^A-Z_a-z][\s\v]+as\b[\s\v]*[\"'0-9A-Z_-z]+[\s\v]*\bfrom|^[^A-Z_a-z]+[\s\v]*?(?:create[\s\v]+[0-9A-Z_a-z]+|(?:d(?:e(?:lete|sc)|rop)|(?:inser|selec)t|load|(?:renam|truncat)e|u(?:pdate|nion[\s\v]*(?:all|(?:sele|distin)ct))|alter[\s\v]*(?:a(?:(?:ggregat|pplication[\s\v]*rol)e|s(?:sembl|ymmetric[\s\v]*ke)y|u(?:dit|thorization)|vailability[\s\v]*group)|b(?:roker[\s\v]*priority|ufferpool)|c(?:ertificate|luster|o(?:l(?:latio|um)|nversio)n|r(?:edential|yptographic[\s\v]*provider))|d(?:atabase|efault|i(?:mension|skgroup)|omain)|e(?:(?:ndpoi|ve)nt|xte(?:nsion|rnal))|f(?:lashback|oreign|u(?:lltext|nction))|hi(?:erarchy|stogram)|group|in(?:dex(?:type)?|memory|stance)|java|l(?:a(?:ngua|r)ge|ibrary|o(?:ckdown|g(?:file[\s\v]*group|in)))|m(?:a(?:s(?:k|ter[\s\v]*key)|terialized)|e(?:ssage[\s\v]*type|thod)|odule)|(?:nicknam|queu)e|o(?:perator|utline)|p(?:a(?:ckage|rtition)|ermission|ro(?:cedur|fil)e)|r(?:e(?:mot|sourc)e|o(?:l(?:e|lback)|ute))|s(?:chema|e(?:arch|curity|rv(?:er|ice)|quence|ssion)|y(?:mmetric[\s\v]*key|nonym)|togroup)|t(?:able(?:space)?|ext|hreshold|r(?:igger|usted)|ype)|us(?:age|er)|view|w(?:ork(?:load)?|rapper)|x(?:ml[\s\v]*schema|srobject)))\b)" \
+    "id:942362,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects concatenated basic SQL injection and SQLLFI attempts',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# This rule is a sibling of 942330. See that rule for a description and overview.
+#
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+# Regular expression generated from regex-assembly/942370.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942370
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:Referer|REQUEST_HEADERS:User-Agent|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\"'`](?:[\s\v]*?(?:(?:\*.+(?:x?or|div|like|between|(?:an|i)d)[^0-9A-Z_a-z]*?[\"'`]|(?:x?or|div|like|between|and)[\s\v][^0-9]+[\-0-9A-Z_a-z]+.*?)[0-9]|[^\s\v0-9\?A-Z_a-z]+[\s\v]*?[^\s\v0-9A-Z_a-z]+[\s\v]*?[\"'`]|[^\s\v0-9A-Z_a-z]+[\s\v]*?[^A-Z_a-z].*?(?:#|--))|.*?\*[\s\v]*?[0-9])|\^[\"'`]|[%\(-\+\-<>][\-0-9A-Z_a-z]+[^\s\v0-9A-Z_a-z]+[\"'`][^,]" \
+    "id:942370,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects classic SQL injection probings 2/3',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942380.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942380
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:having\b(?:[\s\v]+(?:[0-9]{1,10}|'[^=]{1,10}')[\s\v]*?[<->]| ?(?:[0-9]{1,10} ?[<->]+|[\"'][^=]{1,10}[ \"'<-\?\[]+))|ex(?:ecute(?:\(|[\s\v]{1,5}[\$\.0-9A-Z_a-z]{1,5}[\s\v]{0,3})|ists[\s\v]*?\([\s\v]*?select\b)|(?:create[\s\v]+?table.{0,20}?|like[^0-9A-Z_a-z]*?char[^0-9A-Z_a-z]*?)\()|select.*?case|from.*?limit|order[\s\v]by|exists[\s\v](?:[\s\v]select|s(?:elect[^\s\v](?:if(?:null)?[\s\v]\(|top|concat)|ystem[\s\v]\()|\bhaving\b[\s\v]+[0-9]{1,10}|'[^=]{1,10}')" \
+    "id:942380,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Injection Attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942390.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942390
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:or\b(?:[\s\v]?(?:[0-9]{1,10}|[\"'][^=]{1,10}[\"'])[\s\v]?[<->]+|[\s\v]+(?:[0-9]{1,10}|'[^=]{1,10}')(?:[\s\v]*?[<->])?)|xor\b[\s\v]+(?:[0-9]{1,10}|'[^=]{1,10}')(?:[\s\v]*?[<->])?)|'[\s\v]+x?or[\s\v]+.{1,20}[!\+\-<->]" \
+    "id:942390,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Injection Attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/942400.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942400
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\band\b(?:[\s\v]+(?:[0-9]{1,10}[\s\v]*?[<->]|'[^=]{1,10}')| ?(?:[0-9]{1,10}|[\"'][^=]{1,10}[\"']) ?[<->]+)" \
+    "id:942400,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Injection Attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+# The former rule id 942410 was split into three new rules: 942410, 942470, 942480
+#
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+# Regular expression generated from regex-assembly/942410.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942410
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:a(?:(?:b|co)s|dd(?:dat|tim)e|es_(?:de|en)crypt|s(?:in|cii(?:str)?)|tan2?|vg)|b(?:enchmark|i(?:n(?:_to_num)?|t_(?:and|count|length|x?or)))|c(?:ast|h(?:ar(?:(?:acter)?_length|set)?|r)|iel(?:ing)?|o(?:alesce|ercibility|(?:mpres)?s|n(?:cat(?:_ws)?|nection_id|v(?:ert(?:_tz)?)?)|(?:un)?t)|r32|ur(?:(?:dat|tim)e|rent_(?:date|time(?:stamp)?|user)))|d(?:a(?:t(?:abase|e(?:_(?:add|format|sub)|diff)?)|y(?:name|of(?:month|week|year))?)|count|e(?:code|(?:faul|s_(?:de|en)cryp)t|grees)|ump)|e(?:lt|nc(?:ode|rypt)|x(?:p(?:ort_set)?|tract(?:value)?))|f(?:i(?:eld(?:_in_set)?|nd_in_set)|loor|o(?:rmat|und_rows)|rom_(?:base64|days|unixtime))|g(?:et_(?:format|lock)|r(?:eates|oup_conca)t)|h(?:ex(?:toraw)?|our)|i(?:f(?:null)?|n(?:et6?_(?:aton|ntoa)|s(?:ert|tr)|terval)?|s(?:_(?:(?:free|used)_lock|ipv(?:4(?:_(?:compat|mapped))?|6)|n(?:ot(?:_null)?|ull))|null)?)|l(?:ast(?:_(?:day|insert_id))?|case|e(?:(?:as|f)t|ngth)|n|o(?:ad_file|ca(?:l(?:timestamp)?|te)|g(?:10|2)?|wer)|pad|trim)|m(?:a(?:ke(?:date|_set)|ster_pos_wait|x)|d5|i(?:(?:crosecon)?d|n(?:ute)?)|o(?:d|nth(?:name)?))|n(?:ame_const|o(?:t_in|w)|ullif)|o(?:ct(?:et_length)?|(?:ld_passwo)?rd)|p(?:assword|eriod_(?:add|diff)|g_sleep|i|o(?:sition|w(?:er)?)|rocedure_analyse)|qu(?:arter|ote)|r(?:a(?:dians|nd|wto(?:hex|nhex(?:toraw)?))|e(?:lease_lock|p(?:eat|lace)|verse)|ight|o(?:und|w_count)|pad|trim)|s(?:chema|e(?:c(?:ond|_to_time)|ssion_user)|ha[1-2]?|ig?n|leep|oundex|pace|qrt|t(?:d(?:dev(?:_(?:po|sam)p)?)?|r(?:cmp|_to_date))|u(?:b(?:(?:dat|tim)e|str(?:ing(?:_index)?)?)|m)|ys(?:date|tem_user))|t(?:an|ime(?:diff|_(?:format|to_sec)|stamp(?:add|diff)?)?|o_(?:base64|n?char|(?:day|second)s)|r(?:im|uncate))|u(?:case|n(?:compress(?:ed_length)?|hex|ix_timestamp)|p(?:datexml|per)|ser|tc_(?:date|time(?:stamp)?)|uid(?:_short)?)|v(?:a(?:lues|r(?:iance|_(?:po|sam)p))|ersion)|we(?:ek(?:day|ofyear)?|ight_string)|xmltype|year(?:week)?)[^0-9A-Z_a-z]*?\(" \
+    "id:942410,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Injection Attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# The former rule id 942410 was split into three new rules: 942410, 942470, 942480
+#
+# Regular expression generated from regex-assembly/942470.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942470
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)autonomous_transaction|(?:current_use|n?varcha|tbcreato)r|db(?:a_users|ms_java)|open(?:owa_util|query|rowset)|s(?:p_(?:(?:addextendedpro|sqlexe)c|execute(?:sql)?|help|is_srvrolemember|makewebtask|oacreate|p(?:assword|repare)|replwritetovarbin)|ql_(?:longvarchar|variant))|utl_(?:file|http)|xp_(?:availablemedia|(?:cmdshel|servicecontro)l|dirtree|e(?:numdsn|xecresultset)|filelist|loginconfig|makecab|ntsec(?:_enumdomains)?|reg(?:addmultistring|delete(?:key|value)|enum(?:key|value)s|re(?:ad|movemultistring)|write)|terminate(?:_process)?)" \
+    "id:942470,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Injection Attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# The former rule id 942410 was split into three new rules: 942410, 942470, 942480
+#
+# Regular expression generated from regex-assembly/942480.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942480
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:(?:d(?:bms_[0-9A-Z_a-z]+\.|elete\b[^0-9A-Z_a-z]*?\bfrom)|(?:group\b.*?\bby\b.{1,100}?\bhav|overlay\b[^0-9A-Z_a-z]*?\(.*?\b[^0-9A-Z_a-z]*?plac)ing|in(?:ner\b[^0-9A-Z_a-z]*?\bjoin|sert\b[^0-9A-Z_a-z]*?\binto|to\b[^0-9A-Z_a-z]*?\b(?:dump|out)file)|load\b[^0-9A-Z_a-z]*?\bdata\b.*?\binfile|s(?:elect\b.{1,100}?\b(?:(?:.*?\bdump\b.*|(?:count|length)\b.{1,100}?)\bfrom|(?:data_typ|from\b.{1,100}?\bwher)e|instr|to(?:_(?:cha|numbe)r|p\b.{1,100}?\bfrom))|ys_context)|u(?:nion\b.{1,100}?\bselect|tl_inaddr))\b|print\b[^0-9A-Z_a-z]*?@@)|(?:collation[^0-9A-Z_a-z]*?\(a|@@version|;[^0-9A-Z_a-z]*?\b(?:drop|shutdown))\b|'(?:dbo|msdasql|s(?:a|qloledb))'" \
+    "id:942480,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Injection Attack',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+#
+# [ SQL Injection Character Anomaly Usage ]
+#
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+# This rules attempts to gauge when there is an excessive use of
+# meta-characters within a single parameter payload.
+#
+# Expect a lot of false positives with this rule.
+# The most likely false positive instances will be free-form text fields.
+# This will make it necessary to disable the rule for certain known parameters.
+# The following directive is an example to switch off the rule globally for
+# the parameter foo. Place this instruction in your configuration after
+# the include directive for the Core Rules Set.
+#
+# SecRuleUpdateTargetById 942430 "!ARGS:foo"
+#
+
+SecRule ARGS_NAMES|ARGS|XML:/* "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){12})" \
+    "id:942430,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (12)',\
+    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'WARNING',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.warning_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
+
+
+#
+# -=[ Detect SQL Comment Sequences ]=-
+#
+# Example Payloads Detected:
+# -------------------------
+# OR 1#
+# DROP sampletable;--
+# admin'--
+# DROP/*comment*/sampletable
+# DR/**/OP/*bypass deny listing*/sampletable
+# SELECT/*avoid-spaces*/password/**/FROM/**/Members
+# SELECT /*!32302 1/0, */ 1 FROM tablename
+# ‘ or 1=1#
+# ‘ or 1=1-- -
+# ‘ or 1=1/*
+# ' or 1=1;\x00
+# 1='1' or-- -
+# ' /*!50000or*/1='1
+# ' /*!or*/1='1
+# 0/**/union/*!50000select*/table_name`foo`/**/
+# -------------------------
+#
+# The chained rule is designed to prevent false positives by specifically
+# targeting JWT tokens. Starting with 'ey' targets JWT tokens, where the 'ey'
+# prefix corresponds to the beginning of the Base64-encoded header section.
+#
+# example:
+# $ echo '{"' | base64
+# eyIK
+#
+# Regular expression generated from regex-assembly/942440.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942440
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx /\*!?|\*/|[';]--|--(?:[\s\v]|[^\-]*?-)|[^&\-]#.*?[\s\v]|;?\x00" \
+    "id:942440,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Comment Sequence Detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    chain"
+    SecRule MATCHED_VARS "!@rx ^ey[\-0-9A-Z_a-z]+\.ey[\-0-9A-Z_a-z]+\.[\-0-9A-Z_a-z]+$" \
+        "t:none,\
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ SQL Hex Evasion Methods ]=-
+#
+# Hex encoding detection:
+# (?i:\b0x[a-f\d]{3,}) will match any 3 or more hex bytes after "0x", together forming a hexadecimal payload(e.g 0xf00, 0xf00d and so on)
+# 
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:\b0x[a-f\d]{3,})" \
+    "id:942450,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQL Hex Encoding Identified',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+#
+# -=[ Detect SQLi bypass: backticks ]=-
+#
+# Quotes and backticks can be used to bypass SQLi detection.
+#
+# Example:
+# GET http://localhost/test.php?id=9999%20or+{`if`(2=(select+2+from+wp_users+where+user_login='admin'))}
+#
+# The minimum text between the ticks or backticks must be 2 (if, for example) and a maximum of 29.
+# 29 is a compromise: The lower this number (29), the lower the probability of FP and the higher the probability of false negatives.
+# In tests we got a minimum number of FP with {2,29}.
+#
+# Base64 encoding detection:
+# (?:[A-Za-z0-9+/]{4})+ #match any number of 4-letter blocks of the base64 char set
+# (?:[A-Za-z0-9+/]{2}== #match 2-letter block of the base64 char set followed by "==", together forming a 4-letter block
+# |                     # or
+# [A-Za-z0-9+/]{3}=     #match 3-letter block of the base64 char set followed by "=", together forming a 4-letter block
+# )?
+#
+# The minimal string that triggers this regexp is: `if`
+#
+# The rule 942510 is related to 942110 which catches a single ' or `
+#
+# The rule 942511 is similar to this rule, but triggers on normal quotes
+# ('if'). That rule runs in paranoia level 3 or higher since it is prone to
+# false positives in natural text.
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:`(?:(?:[\w\s=_\-+{}()<@]){2,29}|(?:[A-Za-z0-9+/]{4})+(?:[A-Za-z0-9+/]{2}==|[A-Za-z0-9+/]{3}=)?)`)" \
+    "id:942510,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQLi bypass attempt by ticks or backticks detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# Regular expression generated from regex-assembly/942520.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942520
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)[\"'`][\s\v]*?(?:(?:is[\s\v]+not|not[\s\v]+(?:like|glob|(?:betwee|i)n|null|regexp|match)|mod|div|sounds[\s\v]+like)\b|[%-&\*-\+\-/<->\^\|])" \
+    "id:942520,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects basic SQL authentication bypass attempts 4.0/4',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# Complementary rule to PL2 942520 that block and/or-based bypasses.
+# It blocks data with odd number of quotes and then (and|or).
+#
+# The rule uses the expression ^b*a*(b*a*b*a*)* to odd number of a's. It's not
+# vulnerable to ReDos as it executes linearly many steps compared to input size.
+#
+# Regular expression generated from regex-assembly/942521.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942521
+#
+SecRule REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|XML:/* "@rx (?i)^(?:[^']*?(?:'[^']*?'[^']*?)*?'|[^\"]*?(?:\"[^\"]*?\"[^\"]*?)*?\"|[^`]*?(?:`[^`]*?`[^`]*?)*?`)[\s\v]*([0-9A-Z_a-z]+)\b" \
+    "id:942521,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects basic SQL authentication bypass attempts 4.1/4',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    chain"
+    SecRule TX:1 "@rx ^(?:and|or)$" \
+        "t:none,\
+        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+# Complementary rule to PL2 942521 that block escaped quotes followed by (and|or)
+#
+SecRule ARGS_NAMES|ARGS|XML:/* "@rx ^.*?\x5c['\"`](?:.*?['\"`])?\s*(?:and|or)\b" \
+    "id:942522,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects basic SQL authentication bypass attempts 4.1/4',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+#
+# This is a sibling of rule 942100 that adds checking of the path.
+#
+# REQUEST_BASENAME provides the last url segment (slash excluded).
+# This segment is the most likely to be used for injections. Stripping out
+# the slash permits libinjection to do not consider it as a payload starting
+# with not unary arithmetical operators (not a valid SQL command, e.g.
+# '/9 union all'). The latter would lead to do not detect malicious payloads.
+#
+# REQUEST_FILENAME matches SQLi payloads inside (or across) other segments
+# of the path. Here, libinjection will detect a true positive only if
+# the url leading slash is considered as part of a comment block or part
+# of a string (with a quote or double quote after it). In these circumstances,
+# previous slashes do not affect libinjection result, making it able to detect
+# some SQLi inside the path.
+#
+SecRule REQUEST_BASENAME|REQUEST_FILENAME "@detectSQLi" \
+    "id:942101,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:utf8toUnicode,t:urlDecodeUni,t:removeNulls,\
+    msg:'SQL Injection Attack Detected via libinjection',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+#
+# -=[ SQL Function Names ]=-
+#
+# This rule is a stricter sibling of 942151.
+# This rule 942152 checks for the same regex in request headers referer and user-agent.
+#
+# Regular expression generated from regex-assembly/942152.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942152
+#
+SecRule REQUEST_HEADERS:Referer|REQUEST_HEADERS:User-Agent "@rx (?i)\b(?:a(?:dd(?:dat|tim)e|es_(?:de|en)crypt|s(?:cii(?:str)?|in)|tan2?)|b(?:enchmark|i(?:n_to_num|t_(?:and|count|length|x?or)))|c(?:har(?:acter)?_length|iel(?:ing)?|o(?:alesce|ercibility|llation|(?:mpres)?s|n(?:cat(?:_ws)?|nection_id|v(?:ert(?:_tz)?)?)|t)|r32|ur(?:(?:dat|tim)e|rent_(?:date|setting|time(?:stamp)?|user)))|d(?:a(?:t(?:abase(?:_to_xml)?|e(?:_(?:add|format|sub)|diff))|y(?:name|of(?:month|week|year)))|count|e(?:code|grees|s_(?:de|en)crypt)|ump)|e(?:lt|n(?:c(?:ode|rypt)|ds_?with)|x(?:p(?:ort_set)?|tract(?:value)?))|f(?:i(?:el|n)d_in_set|ound_rows|rom_(?:base64|days|unixtime))|g(?:e(?:ometrycollection|t(?:_(?:format|lock)|pgusername))|(?:r(?:eates|oup_conca)|tid_subse)t)|hex(?:toraw)?|i(?:fnull|n(?:et6?_(?:aton|ntoa)|s(?:ert|tr)|terval)|s(?:_(?:(?:free|used)_lock|ipv(?:4(?:_(?:compat|mapped))?|6)|n(?:ot(?:_null)?|ull)|superuser)|null))|json(?:_(?:a(?:gg|rray(?:_(?:elements(?:_text)?|length))?)|build_(?:array|object)|e(?:ac|xtract_pat)h(?:_text)?|object(?:_(?:agg|keys))?|populate_record(?:set)?|strip_nulls|t(?:o_record(?:set)?|ypeof))|b(?:_(?:array(?:_(?:elements(?:_text)?|length))?|build_(?:array|object)|object(?:_(?:agg|keys))?|e(?:ac|xtract_pat)h(?:_text)?|insert|p(?:ath_(?:(?:exists|match)(?:_tz)?|query(?:_(?:(?:array|first)(?:_tz)?|tz))?)|opulate_record(?:set)?|retty)|s(?:et(?:_lax)?|trip_nulls)|t(?:o_record(?:set)?|ypeof)))?|path)?|l(?:ast_(?:day|inser_id)|case|e(?:as|f)t|i(?:kel(?:ihood|y)|nestring)|o(?:_(?:from_bytea|put)|ad_file|ca(?:ltimestamp|te)|g(?:10|2)|wer)|pad|trim)|m(?:a(?:ke(?:_set|date)|ster_pos_wait)|d5|i(?:crosecon)?d|onthname|ulti(?:linestring|po(?:int|lygon)))|n(?:ame_const|ot_in|ullif)|o(?:ct(?:et_length)?|(?:ld_passwo)?rd)|p(?:eriod_(?:add|diff)|g_(?:client_encoding|(?:databas|read_fil)e|l(?:argeobject|s_dir)|sleep|user)|o(?:(?:lyg|siti)on|w)|rocedure_analyse)|qu(?:arter|ery_to_xml|ote)|r(?:a(?:dians|nd|wtohex)|elease_lock|ow_(?:count|to_json)|pad|trim)|s(?:chema|e(?:c_to_time|ssion_user)|ha[1-2]?|in|oundex|pace|q(?:lite_(?:compileoption_(?:get|used)|source_id)|rt)|t(?:arts_?with|d(?:dev_(?:po|sam)p)?|r(?:_to_date|cmp))|ub(?:(?:dat|tim)e|str(?:ing(?:_index)?)?)|ys(?:date|tem_user))|t(?:ime(?:_(?:format|to_sec)|diff|stamp(?:add|diff)?)|o(?:_(?:base64|jsonb?)|n?char|(?:day|second)s)|r(?:im|uncate))|u(?:case|n(?:compress(?:ed_length)?|hex|i(?:str|x_timestamp)|likely)|(?:pdatexm|se_json_nul)l|tc_(?:date|time(?:stamp)?)|uid(?:_short)?)|var(?:_(?:po|sam)p|iance)|we(?:ek(?:day|ofyear)|ight_string)|xmltype|yearweek)[^0-9A-Z_a-z]*\(" \
+    "id:942152,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,t:lowercase,\
+    msg:'SQL Injection Attack: SQL function name detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+#
+# This rule is a stricter sibling of 942320.
+# It checks for the same regex in request headers referer and user-agent.
+#
+# Regular expression generated from regex-assembly/942321.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 942321
+#
+SecRule REQUEST_HEADERS:Referer|REQUEST_HEADERS:User-Agent "@rx (?i)create[\s\v]+(?:function|procedure)[\s\v]*?[0-9A-Z_a-z]+[\s\v]*?\([\s\v]*?\)[\s\v]*?-|d(?:eclare[^0-9A-Z_a-z]+[#@][\s\v]*?[0-9A-Z_a-z]+|iv[\s\v]*?\([\+\-]*[\s\v\.0-9]+,[\+\-]*[\s\v\.0-9]+\))|exec[\s\v]*?\([\s\v]*?@|(?:lo_(?:impor|ge)t|procedure[\s\v]+analyse)[\s\v]*?\(|;[\s\v]*?(?:declare|open)[\s\v]+[\-0-9A-Z_a-z]+|::(?:b(?:igint|ool)|double[\s\v]+precision|int(?:eger)?|numeric|oid|real|(?:tex|smallin)t)" \
+    "id:942321,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects MySQL and PostgreSQL stored procedure/function injections',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:942015,phase:1,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:942016,phase:2,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+#
+# [ SQL HAVING queries ]
+#
+# This pattern was split off from rule 942250 due to frequent
+# false positives in English text. Testing showed that SQL
+# injections with HAVING should be detected by libinjection
+# (rule 942100).
+#
+# This is a stricter sibling of rule 942250.
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\W+\d*?\s*?\bhaving\b\s*?[^\s\-]" \
+    "id:942251,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects HAVING injections',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+# This rule is a stricter sibling of 942330. See that rule for a
+# description and overview.
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx [\"'`][\s\d]*?[^\w\s]\W*?\d\W*?.*?[\"'`\d]" \
+    "id:942490,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Detects classic SQL injection probings 3/3',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+#
+# [ SQL Injection Character Anomaly Usage ]
+#
+# This rule attempts to gauge when there is an excessive use of
+# meta-characters within a single parameter payload.
+#
+# It is similar to 942430, but focuses on Cookies instead of
+# GET/POST parameters.
+#
+# Expect a lot of false positives with this rule.
+# The most likely false positive instances will be complex session ids.
+# This will make it necessary to disable the rule for certain known cookies.
+# The following directive is an example to switch off the rule globally for
+# the cookie foo_id. Place this instruction in your configuration after
+# the include directive for the Core Rules Set.
+#
+# SecRuleUpdateTargetById 942420 "!REQUEST_COOKIES:foo_id"
+#
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){8})" \
+    "id:942420,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Restricted SQL Character Anomaly Detection (cookies): # of special characters exceeded (8)',\
+    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'WARNING',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.warning_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
+
+
+#
+# This is a stricter sibling of rule 942430.
+#
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+
+SecRule ARGS_NAMES|ARGS|XML:/* "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){6})" \
+    "id:942431,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (6)',\
+    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'WARNING',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.warning_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
+
+
+#
+# [ Repetitive Non-Word Characters ]
+#
+# This rule attempts to identify when multiple (4 or more) non-word characters
+# are repeated in sequence.
+#
+# The pattern may occur in some normal texts, e.g. "foo...." will match.
+#
+SecRule ARGS "@rx \W{4}" \
+    "id:942460,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Meta-Character Anomaly Detection Alert - Repetitive Non-Word Characters',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'WARNING',\
+    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.warning_anomaly_score}'"
+
+
+#
+# -=[ Detect SQLi bypass: quotes ]=-
+#
+# Quotes and backticks can be used to bypass SQLi detection.
+#
+# Example:
+# GET http://localhost/test.php?id=9999%20or+{`if`(2=(select+2+from+wp_users+where+user_login='admin'))}
+#
+# The minimum text between the ticks or backticks must be 2 (if, for example) and a maximum of 29.
+# 29 is a compromise: The lower this number (29), the lower the probability of FP and the higher the probability of false negatives.
+# In tests we got a minimum number of FP with {2,29}.
+#
+# Base64 encoding detection:
+# (?:[A-Za-z0-9+/]{4})+ #match any number of 4-letter blocks of the base64 char set
+# (?:[A-Za-z0-9+/]{2}== #match 2-letter block of the base64 char set followed by "==", together forming a 4-letter block
+# |                     # or
+# [A-Za-z0-9+/]{3}=     #match 3-letter block of the base64 char set followed by "=", together forming a 4-letter block
+# )?
+#
+# The minimal string that triggers this regexp is: 'if'
+#
+# The rule 942511 is related to 942110 which catches a single ' or `
+#
+# The rule 942510 is similar to this rule, but triggers on backticks
+# (`if`). That rule runs in paranoia level 2 or higher since the risk of
+# false positives in natural text is still present but lower than this
+# rule.
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:'(?:(?:[\w\s=_\-+{}()<@]){2,29}|(?:[A-Za-z0-9+/]{4})+(?:[A-Za-z0-9+/]{2}==|[A-Za-z0-9+/]{3}=)?)')" \
+    "id:942511,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQLi bypass attempt by ticks detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+# Detects ';
+# ' Single quote. Used to delineate a query with an unmatched quote.
+# ; Terminate a query. A prematurely terminated query creates an error.
+# Explanation source:
+# https://hwang.cisdept.cpp.edu/swanew/Text/SQL-Injection.htm
+#
+# Bug Bounty example: email=admin@juice-sh.op';&password=foo
+#
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ';" \
+    "id:942530,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'SQLi query termination detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/3',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:942017,phase:1,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:942018,phase:2,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+#
+# [ SQL Injection Character Anomaly Usage ]
+#
+# This is a stricter sibling of rule 942420.
+#
+
+SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){3})" \
+    "id:942421,\
+    phase:1,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Restricted SQL Character Anomaly Detection (cookies): # of special characters exceeded (3)',\
+    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/4',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'WARNING',\
+    setvar:'tx.inbound_anomaly_score_pl4=+%{tx.warning_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
+
+
+#
+# This is a stricter sibling of rule 942430.
+#
+# This rule is also triggered by the following exploit(s):
+# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
+#
+
+SecRule ARGS_NAMES|ARGS|XML:/* "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){2})" \
+    "id:942432,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:urlDecodeUni,\
+    msg:'Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (2)',\
+    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-sqli',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248/66',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/4',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'WARNING',\
+    setvar:'tx.inbound_anomaly_score_pl4=+%{tx.warning_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-REQUEST-942-APPLICATION-ATTACK-SQLI"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
similarity index 71%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
index f575d2cf4f..af8ad4f0fb 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,10 +14,10 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:943011,phase:1,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:943012,phase:2,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:943011,phase:1,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:943012,phase:2,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 #
@@ -43,11 +43,10 @@ SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAME
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/225/21/593/61',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.session_fixation_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 SecRule ARGS_NAMES "@rx ^(?:jsessionid|aspsessionid|asp\.net_sessionid|phpsession|phpsessid|weblogicsession|session_id|session-id|cfid|cftoken|cfsid|jservsession|jwsession)$" \
@@ -55,7 +54,7 @@ SecRule ARGS_NAMES "@rx ^(?:jsessionid|aspsessionid|asp\.net_sessionid|phpsessio
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:lowercase,\
+    t:none,t:lowercase,\
     msg:'Possible Session Fixation Attack: SessionID Parameter Name with Off-Domain Referer',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -65,16 +64,15 @@ SecRule ARGS_NAMES "@rx ^(?:jsessionid|aspsessionid|asp\.net_sessionid|phpsessio
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/225/21/593/61',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
-    SecRule REQUEST_HEADERS:Referer "@rx ^(?:ht|f)tps?://(.*?)\/" \
+    SecRule REQUEST_HEADERS:Referer "@rx ^(?:ht|f)tps?://(.*?)/" \
         "capture,\
         chain"
         SecRule TX:1 "!@endsWith %{request_headers.host}" \
-            "ctl:auditLogParts=+E,\
-            setvar:'tx.session_fixation_score=+%{tx.critical_anomaly_score}',\
-            setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+            "setvar:'tx.session_fixation_score=+%{tx.critical_anomaly_score}',\
+            setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 SecRule ARGS_NAMES "@rx ^(?:jsessionid|aspsessionid|asp\.net_sessionid|phpsession|phpsessid|weblogicsession|session_id|session-id|cfid|cftoken|cfsid|jservsession|jwsession)$" \
@@ -82,7 +80,7 @@ SecRule ARGS_NAMES "@rx ^(?:jsessionid|aspsessionid|asp\.net_sessionid|phpsessio
     phase:2,\
     block,\
     capture,\
-    t:none,t:urlDecodeUni,t:lowercase,\
+    t:none,t:lowercase,\
     msg:'Possible Session Fixation Attack: SessionID Parameter Name with No Referer',\
     logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
     tag:'application-multi',\
@@ -92,37 +90,36 @@ SecRule ARGS_NAMES "@rx ^(?:jsessionid|aspsessionid|asp\.net_sessionid|phpsessio
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/225/21/593/61',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule &REQUEST_HEADERS:Referer "@eq 0" \
-        "ctl:auditLogParts=+E,\
-        setvar:'tx.session_fixation_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        "setvar:'tx.session_fixation_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:943013,phase:1,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:943014,phase:2,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:943013,phase:1,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:943014,phase:2,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:943015,phase:1,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:943016,phase:2,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:943015,phase:1,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:943016,phase:2,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:943017,phase:1,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:943018,phase:2,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:943017,phase:1,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:943018,phase:2,pass,nolog,skipAfter:END-REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-944-APPLICATION-ATTACK-JAVA.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-944-APPLICATION-ATTACK-JAVA.conf
similarity index 60%
rename from pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-944-APPLICATION-ATTACK-JAVA.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-944-APPLICATION-ATTACK-JAVA.conf
index 4075e18f5f..df224f33ae 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-944-APPLICATION-ATTACK-JAVA.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-944-APPLICATION-ATTACK-JAVA.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -13,10 +13,10 @@
 #
 # Many rules check request bodies, use "SecRequestBodyAccess On" to enable it on main modsecurity configuration file.
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:944011,phase:1,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:944012,phase:2,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:944011,phase:1,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:944012,phase:2,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 # This rule is also triggered by an Apache Struts exploit:
 # [ Apache Struts vulnerability CVE-2017-5638 - Exploit tested: https://github.com/xsscx/cve-2017-5638 ]
@@ -36,7 +36,6 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     phase:2,\
     block,\
     t:none,t:lowercase,\
-    log,\
     msg:'Remote Command Execution: Suspicious Java class detected',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -47,10 +46,10 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/137/6',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 # This rule is also triggered by the following exploit(s):
 # [ Apache Struts vulnerability CVE-2017-5638 - Exploit tested: https://github.com/xsscx/cve-2017-5638 ]
@@ -70,7 +69,6 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     phase:2,\
     block,\
     t:none,t:lowercase,\
-    log,\
     msg:'Remote Command Execution: Java process spawn (CVE-2017-9805)',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -81,12 +79,12 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/248',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_BODY|REQUEST_HEADERS|XML:/*|XML://@* "@rx (?:unmarshaller|base64data|java\.)" \
         "setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 # Magic bytes detected and payload included possibly RCE vulnerable classes detected and process execution methods detected
 # anomaly score set to critical as all conditions indicate the request try to perform RCE.
@@ -96,7 +94,6 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     phase:2,\
     block,\
     t:none,t:lowercase,\
-    log,\
     msg:'Remote Command Execution: Java serialization (CVE-2015-4852)',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -107,13 +104,12 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/248',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     chain"
     SecRule MATCHED_VARS "@rx (?:runtime|processbuilder)" \
-        "t:none,t:lowercase,\
-        setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+        "setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+        setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
 
 # This rule is also triggered by the following exploit(s):
 # [ Apache Struts vulnerability CVE-2017-5638 - Exploit tested: https://github.com/mazen160/struts-pwn ]
@@ -129,8 +125,7 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     "id:944130,\
     phase:2,\
     block,\
-    t:none,t:lowercase,\
-    log,\
+    t:none,\
     msg:'Suspicious Java class detected',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -141,17 +136,135 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/248',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/1',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+#
+# [ Java Script Uploads ]
+#
+# Block file uploads with filenames ending in Java scripts (.jsp, .jspx)
+#
+# Many application contain Unrestricted File Upload vulnerabilities.
+# https://owasp.org/www-community/vulnerabilities/Unrestricted_File_Upload
+#
+# Attackers may use such a vulnerability to achieve remote code execution
+# by uploading a script file. If the upload storage location is predictable
+# and not adequately protected, the attacker may then request the uploaded
+# file and have the code within it executed on the server.
+#
+# Some AJAX uploaders use the nonstandard request headers X-Filename,
+# X_Filename, or X-File-Name to transmit the file name to the server;
+# scan these request headers as well as multipart/form-data file names.
+#
+SecRule FILES|REQUEST_HEADERS:X-Filename|REQUEST_HEADERS:X_Filename|REQUEST_HEADERS:X.Filename|REQUEST_HEADERS:X-File-Name "@rx .*\.(?:jsp|jspx)\.*$" \
+    "id:944140,\
+    phase:2,\
+    block,\
+    capture,\
+    t:none,t:lowercase,\
+    msg:'Java Injection Attack: Java Script File Upload Found',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    tag:'application-multi',\
+    tag:'language-java',\
+    tag:'platform-multi',\
+    tag:'attack-injection-java',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/242',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
 
+# Log4J / Log4Shell Defense
+#
+# This addresses exploits against the Log4J library described in several CVEs:
+# * CVE-2021-44228
+# * CVE-2021-44832
+# * CVE-2021-45046
+# * CVE-2021-45105
+#
+# See https://coreruleset.org/20211213/crs-and-log4j-log4shell-cve-2021-44228/
+#
+# This rule attempts to detect two things:
+# * Nested use of ${
+# * use of ${jndi:... without the closing bracket
+#
+# Rule 932130 is also essential for defense since there are certain
+# bypasses of the log4j rules that can be caught by 932130.
+#
+# The payload is not displayed in the alert message since log4j could
+# potentially be executed on the logviewer.
+#
+# This rule has stricter siblings: 944151 (PL2), 944152 (PL4)
+#
+# Regular expression generated from regex-assembly/944150.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 944150
+#
+SecRule REQUEST_LINE|ARGS|ARGS_NAMES|REQUEST_COOKIES|REQUEST_COOKIES_NAMES|REQUEST_HEADERS|XML:/*|XML://@* "@rx (?i)(?:\$|&dollar;?)(?:\{|&l(?:brace|cub);?)(?:[^\}]{0,15}(?:\$|&dollar;?)(?:\{|&l(?:brace|cub);?)|jndi|ctx)" \
+    "id:944150,\
+    phase:2,\
+    block,\
+    t:none,t:urlDecodeUni,t:jsDecode,t:htmlEntityDecode,\
+    log,\
+    msg:'Potential Remote Command Execution: Log4j / Log4shell',\
+    tag:'application-multi',\
+    tag:'language-java',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/137/6',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/1',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:944013,phase:1,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:944014,phase:2,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:944013,phase:1,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:944014,phase:2,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+# This is a stricter sibling of 944150.
+# It is a re-iteration of said rule without the curly bracket distance limiter
+# between the nested "${". This is prone to backtracking and therefore a potential
+# DoS problem for backtracking regular expression engines (e.g. PCRE2), but it also avoids evasions that fill the space between the nested
+# elements with arbitrary data.
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# Regular expression generated from regex-assembly/944151.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 944151
 #
+SecRule REQUEST_LINE|ARGS|ARGS_NAMES|REQUEST_COOKIES|REQUEST_COOKIES_NAMES|REQUEST_HEADERS|XML:/*|XML://@* "@rx (?i)(?:\$|&dollar;?)(?:\{|&l(?:brace|cub);?)(?:[^\}]*(?:\$|&dollar;?)(?:\{|&l(?:brace|cub);?)|jndi|ctx)" \
+    "id:944151,\
+    phase:2,\
+    block,\
+    t:none,t:urlDecodeUni,t:jsDecode,t:htmlEntityDecode,\
+    log,\
+    msg:'Potential Remote Command Execution: Log4j / Log4shell',\
+    tag:'application-multi',\
+    tag:'language-java',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/137/6',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
 # [ Java deserialization vulnerability/Apache Commons (CVE-2015-4852) ]
 #
 # Detect exploitation of "Java deserialization" Apache Commons.
@@ -169,7 +282,6 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     "id:944200,\
     phase:2,\
     block,\
-    log,\
     msg:'Magic bytes Detected, probable java serialization in use',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -180,10 +292,10 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/248',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 # Detecting possible base64 text to match encoded magic bytes \xac\xed\x00\x05 with padding encoded in base64 strings are rO0ABQ KztAAU Cs7QAF
 SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_BODY|REQUEST_HEADERS|XML:/*|XML://@* \
@@ -191,7 +303,6 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     "id:944210,\
     phase:2,\
     block,\
-    log,\
     msg:'Magic bytes Detected Base64 Encoded, probable java serialization in use',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -202,10 +313,10 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/248',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_BODY|REQUEST_HEADERS|XML:/*|XML://@* \
     "@rx (?:clonetransformer|forclosure|instantiatefactory|instantiatetransformer|invokertransformer|prototypeclonefactory|prototypeserializationfactory|whileclosure|getproperty|filewriter|xmldecoder)" \
@@ -213,7 +324,6 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     phase:2,\
     block,\
     t:none,t:lowercase,\
-    log,\
     msg:'Remote Command Execution: Java serialization (CVE-2015-4852)',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -224,10 +334,10 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/248',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 # This rule is also triggered by the following exploit(s):
 # [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
@@ -238,7 +348,6 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     phase:2,\
     block,\
     t:lowercase,\
-    log,\
     msg:'Remote Command Execution: Suspicious Java method detected',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -249,17 +358,41 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/248',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
 
+# This rule is also triggered by the following exploit(s):
+# - https://www.rapid7.com/blog/post/2022/03/30/spring4shell-zero-day-vulnerability-in-spring-framework/
+#
+SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_BODY|REQUEST_HEADERS|XML:/*|XML://@* \
+    "@rx (?:class\.module\.classLoader\.resources\.context\.parent\.pipeline|springframework\.context\.support\.FileSystemXmlApplicationContext)" \
+    "id:944260,\
+    phase:2,\
+    block,\
+    t:urlDecodeUni,\
+    msg:'Remote Command Execution: Malicious class-loading payload',\
+    logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-java',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/248',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/2',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:944015,phase:1,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:944016,phase:2,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:944015,phase:1,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:944016,phase:2,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 # Interesting keywords for possibly RCE on vulnerable classes and methods base64 encoded
 # Keywords = ['runtime', 'processbuilder', 'clonetransformer', 'forclosure', 'instantiatefactory', 'instantiatetransformer', 'invokertransformer', 'prototypeclonefactory', 'prototypeserializationfactory', 'whileclosure']
@@ -274,7 +407,6 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     phase:2,\
     block,\
     t:none,\
-    log,\
     msg:'Base64 encoded string matched suspicious keyword',\
     logdata:'Matched Data: %{MATCHED_VAR} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
@@ -285,18 +417,46 @@ SecRule ARGS|ARGS_NAMES|REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES
     tag:'capec/1000/152/248',\
     tag:'PCI/6.5.2',\
     tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'CRITICAL',\
     setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
+    setvar:'tx.inbound_anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:944017,phase:1,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:944018,phase:2,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:944017,phase:1,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:944018,phase:2,pass,nolog,skipAfter:END-REQUEST-944-APPLICATION-ATTACK-JAVA"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
+# This is a stricter sibling of 944150.
+# It simply checks for the existence of `${`, taking into account the same encoding evasions
+# as 944150.
+#
+# Regular expression generated from regex-assembly/944152.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 944152
+#
+SecRule REQUEST_LINE|ARGS|ARGS_NAMES|REQUEST_COOKIES|REQUEST_COOKIES_NAMES|REQUEST_HEADERS|XML:/*|XML://@* "@rx (?i)(?:\$|&dollar;?)(?:\{|&l(?:brace|cub);?)" \
+    "id:944152,\
+    phase:2,\
+    block,\
+    t:none,t:urlDecodeUni,t:jsDecode,t:htmlEntityDecode,\
+    log,\
+    msg:'Potential Remote Command Execution: Log4j / Log4shell',\
+    tag:'application-multi',\
+    tag:'language-java',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/152/137/6',\
+    tag:'PCI/6.5.2',\
+    tag:'paranoia-level/4',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.inbound_anomaly_score_pl4=+%{tx.critical_anomaly_score}'"
 
 #
 # -= Paranoia Levels Finished =-
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-949-BLOCKING-EVALUATION.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-949-BLOCKING-EVALUATION.conf
new file mode 100644
index 0000000000..e8ac6e9d37
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/REQUEST-949-BLOCKING-EVALUATION.conf
@@ -0,0 +1,223 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+# Summing up the blocking and detection anomaly scores in phase 1
+# even when early blocking is disabled, we need to sum up the scores in phase 1
+# this prevents bugs in phase 5 if Apache skips phases because of error handling
+# See: https://github.com/coreruleset/coreruleset/issues/2319#issuecomment-1047503932
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 1" \
+    "id:949052,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl1}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 1" \
+    "id:949152,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl1}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 2" \
+    "id:949053,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl2}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 2" \
+    "id:949153,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl2}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 3" \
+    "id:949054,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl3}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 3" \
+    "id:949154,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl3}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 4" \
+    "id:949055,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl4}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 4" \
+    "id:949155,\
+    phase:1,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl4}'"
+
+# at start of phase 2, we reset the aggregate scores to 0 to prevent duplicate counting of per-PL scores
+# this is necessary because the per-PL scores are counted across phases
+SecAction \
+    "id:949059,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=0'"
+SecAction \
+    "id:949159,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=0'"
+
+# Summing up the blocking and detection anomaly scores in phase 2
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 1" \
+    "id:949060,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl1}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 1" \
+    "id:949160,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl1}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 2" \
+    "id:949061,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl2}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 2" \
+    "id:949161,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl2}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 3" \
+    "id:949062,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl3}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 3" \
+    "id:949162,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl3}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 4" \
+    "id:949063,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl4}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 4" \
+    "id:949163,\
+    phase:2,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_inbound_anomaly_score=+%{tx.inbound_anomaly_score_pl4}'"
+
+
+SecMarker "BEGIN-REQUEST-BLOCKING-EVAL"
+
+#
+# -=[ Anomaly Mode: Overall Transaction Anomaly Score ]=-
+#
+
+# if early blocking is active, check threshold in phase 1
+SecRule TX:BLOCKING_INBOUND_ANOMALY_SCORE "@ge %{tx.inbound_anomaly_score_threshold}" \
+    "id:949111,\
+    phase:1,\
+    deny,\
+    t:none,\
+    msg:'Inbound Anomaly Score Exceeded in phase 1 (Total Score: %{TX.BLOCKING_INBOUND_ANOMALY_SCORE})',\
+    tag:'anomaly-evaluation',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    chain"
+    SecRule TX:EARLY_BLOCKING "@eq 1"
+
+# always check threshold in phase 2
+SecRule TX:BLOCKING_INBOUND_ANOMALY_SCORE "@ge %{tx.inbound_anomaly_score_threshold}" \
+    "id:949110,\
+    phase:2,\
+    deny,\
+    t:none,\
+    msg:'Inbound Anomaly Score Exceeded (Total Score: %{TX.BLOCKING_INBOUND_ANOMALY_SCORE})',\
+    tag:'anomaly-evaluation',\
+    ver:'OWASP_CRS/4.0.0-rc2'"
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:949011,phase:1,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:949012,phase:2,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:949013,phase:1,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:949014,phase:2,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:949015,phase:1,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:949016,phase:2,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:949017,phase:1,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:949018,phase:2,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-REQUEST-949-BLOCKING-EVALUATION"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-950-DATA-LEAKAGES.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-950-DATA-LEAKAGES.conf
similarity index 67%
rename from pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-950-DATA-LEAKAGES.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-950-DATA-LEAKAGES.conf
index 0b6f832cc5..4ebb59e15d 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-950-DATA-LEAKAGES.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-950-DATA-LEAKAGES.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -8,10 +8,14 @@
 # Please see the enclosed LICENSE file for full details.
 # ------------------------------------------------------------------------
 
-# The paranoia level skip rules 950020, 950021 and 950022 have odd
-# numbers not in sync with other paranoia level skip rules in other
-# files. This is done to avoid rule id collisions with CRSv2.
-# This is also true for rule 950130.
+# We reused paranoia level skip rules 950010, 950011, and 950018.
+# These rule identifiers were in use in CRSv2, so we used different
+# identifiers in CRSv3 to avoid conflicts (950020, 950021 and 950022).
+# In CRSv4, for the sake of a consistent structure, we use these
+# identifiers again, so that the skip rules of PL can be defined in the
+# same way for all files.
+# Rule id 950130 has been kept - this ID also was introduced at first
+# rule to avoid the collision.
 
 #
 # -= Paranoia Level 0 (empty) =- (apply unconditionally)
@@ -19,23 +23,23 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:950020,phase:3,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:950021,phase:4,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:950011,phase:3,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:950012,phase:4,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 #
 # -=[ Directory Listing ]=-
 #
-SecRule RESPONSE_BODY "@rx (?:<(?:TITLE>Index of.*?<H|title>Index of.*?<h)1>Index of|>\[To Parent Directory\]<\/[Aa]><br>)" \
+SecRule RESPONSE_BODY "@rx (?:<(?:TITLE>Index of.*?<H|title>Index of.*?<h)1>Index of|>\[To Parent Directory\]</[Aa]><br>)" \
     "id:950130,\
     phase:4,\
     block,\
     capture,\
     t:none,\
     msg:'Directory Listing',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-multi',\
     tag:'platform-multi',\
@@ -44,11 +48,9 @@ SecRule RESPONSE_BODY "@rx (?:<(?:TITLE>Index of.*?<H|title>Index of.*?<h)1>Inde
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116/54/127',\
     tag:'PCI/6.5.6',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 #
 # -=[ CGI Source Code Leakage ]=-
@@ -69,7 +71,7 @@ SecRule RESPONSE_BODY "@rx ^#\!\s?/" \
     capture,\
     t:none,\
     msg:'CGI source code leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-multi',\
     tag:'platform-multi',\
@@ -78,17 +80,15 @@ SecRule RESPONSE_BODY "@rx ^#\!\s?/" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
     tag:'PCI/6.5.6',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:950013,phase:3,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:950014,phase:4,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:950013,phase:3,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:950014,phase:4,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 #
@@ -96,12 +96,12 @@ SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:950014,phase:4,pass,nolog,skipAf
 #
 SecRule RESPONSE_STATUS "@rx ^5\d{2}$" \
     "id:950100,\
-    phase:4,\
+    phase:3,\
     block,\
     capture,\
     t:none,\
     msg:'The Application Returned a 500-Level Status Code',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-multi',\
     tag:'platform-multi',\
@@ -110,26 +110,24 @@ SecRule RESPONSE_STATUS "@rx ^5\d{2}$" \
     tag:'paranoia-level/2',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/152',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl2=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl2=+%{tx.error_anomaly_score}'"
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:950015,phase:3,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:950016,phase:4,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:950015,phase:3,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:950016,phase:4,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:950017,phase:3,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:950022,phase:4,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:950017,phase:3,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:950018,phase:4,pass,nolog,skipAfter:END-RESPONSE-950-DATA-LEAKAGES"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf
new file mode 100644
index 0000000000..182465489e
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf
@@ -0,0 +1,404 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:951011,phase:3,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:951012,phase:4,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+#
+# -=[ SQL Error Leakages ]=-
+#
+# Ref: https://github.com/sqlmapproject/sqlmap
+# Ref: https://github.com/Arachni/arachni/tree/master/components/checks/active/sql_injection/regexps
+#
+SecRule RESPONSE_BODY "!@pmFromFile sql-errors.data" \
+    "id:951100,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-multi',\
+    tag:'attack-disclosure',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    skipAfter:END-SQL-ERROR-MATCH-PL1"
+
+SecRule RESPONSE_BODY "@rx (?i:JET Database Engine|Access Database Engine|\[Microsoft\]\[ODBC Microsoft Access Driver\])" \
+    "id:951110,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Microsoft Access SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-msaccess',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i:ORA-[0-9][0-9][0-9][0-9]|java\.sql\.SQLException|Oracle error|Oracle.*Driver|Warning.*oci_.*|Warning.*ora_.*)" \
+    "id:951120,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Oracle SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-oracle',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i:DB2 SQL error:|\[IBM\]\[CLI Driver\]\[DB2/6000\]|CLI Driver.*DB2|DB2 SQL error|db2_\w+\()" \
+    "id:951130,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'DB2 SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-db2',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i:\[DM_QUERY_E_SYNTAX\]|has occurred in the vicinity of:)" \
+    "id:951140,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'EMC SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-emc',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i)Dynamic SQL Error" \
+    "id:951150,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'firebird SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-firebird',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i)Exception (?:condition )?\d+\. Transaction rollback\." \
+    "id:951160,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Frontbase SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-frontbase',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i)org\.hsqldb\.jdbc" \
+    "id:951170,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'hsqldb SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-hsqldb',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i:An illegal character has been found in the statement|com\.informix\.jdbc|Exception.*Informix)" \
+    "id:951180,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'informix SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-informix',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i:Warning.*ingres_|Ingres SQLSTATE|Ingres\W.*Driver)" \
+    "id:951190,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'ingres SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-ingres',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i:<b>Warning</b>: ibase_|Unexpected end of command in statement)" \
+    "id:951200,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'interbase SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-interbase',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i:SQL error.*POS[0-9]+.*|Warning.*maxdb.*)" \
+    "id:951210,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'maxDB SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-maxdb',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i)(?:System\.Data\.OleDb\.OleDbException|\[Microsoft\]\[ODBC SQL Server Driver\]|\[Macromedia\]\[SQLServer JDBC Driver\]|\[SqlException|System\.Data\.SqlClient\.SqlException|Unclosed quotation mark after the character string|'80040e14'|mssql_query\(\)|Microsoft OLE DB Provider for ODBC Drivers|Microsoft OLE DB Provider for SQL Server|Incorrect syntax near|Sintaxis incorrecta cerca de|Syntax error in string in query expression|Procedure or function .* expects parameter|Unclosed quotation mark before the character string|Syntax error .* in query expression|Data type mismatch in criteria expression\.|ADODB\.Field \(0x800A0BCD\)|the used select statements have different number of columns|OLE DB.*SQL Server|Warning.*mssql_.*|Driver.*SQL[ _-]*Server|SQL Server.*Driver|SQL Server.*[0-9a-fA-F]{8}|Exception.*\WSystem\.Data\.SqlClient\.|Conversion failed when converting the varchar value .*? to data type int\.)" \
+    "id:951220,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'mssql SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-mssql',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/951230.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 951230
+#
+SecRule RESPONSE_BODY "@rx (?i)(?:supplied argument is not a valid |SQL syntax.*)MySQL|Column count doesn't match(?: value count at row)?|mysql_fetch_array\(\)|on MySQL result index|You have an error in your SQL syntax(?:;| near)|MyS(?:QL server version for the right syntax to use|qlClient\.)|\[MySQL\]\[ODBC|(?:Table '[^']+' doesn't exis|valid MySQL resul)t|Warning.{1,10}mysql_(?:[\(-\)_a-z]{1,26})?|(?:ERROR [0-9]{4} \([0-9a-z]{5}\)|XPATH syntax error):" \
+    "id:951230,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'mysql SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-mysql',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+# Regular expression generated from regex-assembly/951240.ra.
+# To update the regular expression run the following shell script
+# (consult https://coreruleset.org/docs/development/regex_assembly/ for details):
+#   crs-toolchain regex update 951240
+#
+SecRule RESPONSE_BODY "@rx (?i)P(?:ostgreSQL(?: query failed:|.{1,20}ERROR)|G::[a-z]*Error)|pg_(?:query|exec)\(\) \[:|Warning.{1,20}\bpg_.*|valid PostgreSQL result|Npgsql\.|Supplied argument is not a valid PostgreSQL .*? resource|(?:Unable to connect to PostgreSQL serv|invalid input syntax for integ)er" \
+    "id:951240,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'postgres SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-pgsql',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i)(?:Warning.*sqlite_.*|Warning.*SQLite3::|SQLite/JDBCDriver|SQLite\.Exception|System\.Data\.SQLite\.SQLiteException)" \
+    "id:951250,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'sqlite SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-sqlite',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecRule RESPONSE_BODY "@rx (?i)(?:Sybase message:|Warning.{2,20}sybase|Sybase.*Server message.*)" \
+    "id:951260,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Sybase SQL Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-multi',\
+    tag:'platform-sybase',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116/54',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
+    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
+
+SecMarker "END-SQL-ERROR-MATCH-PL1"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:951013,phase:3,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:951014,phase:4,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:951015,phase:3,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:951016,phase:4,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:951017,phase:3,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:951018,phase:4,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-RESPONSE-951-DATA-LEAKAGES-SQL"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-952-DATA-LEAKAGES-JAVA.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
similarity index 69%
rename from pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
index 074ad67515..a8191a4915 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,10 +14,10 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:952011,phase:3,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:952012,phase:4,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:952011,phase:3,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:952012,phase:4,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 #
@@ -30,7 +30,7 @@ SecRule RESPONSE_BODY "@pmFromFile java-code-leakages.data" \
     capture,\
     t:none,\
     msg:'Java Source Code Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-java',\
     tag:'platform-multi',\
@@ -39,11 +39,9 @@ SecRule RESPONSE_BODY "@pmFromFile java-code-leakages.data" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
     tag:'PCI/6.5.6',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 #
 # -=[ Java Errors ]=-
@@ -57,7 +55,7 @@ SecRule RESPONSE_BODY "@pmFromFile java-errors.data" \
     capture,\
     t:none,\
     msg:'Java Errors',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-java',\
     tag:'platform-multi',\
@@ -66,34 +64,32 @@ SecRule RESPONSE_BODY "@pmFromFile java-errors.data" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
     tag:'PCI/6.5.6',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:952013,phase:3,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:952014,phase:4,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:952013,phase:3,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:952014,phase:4,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:952015,phase:3,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:952016,phase:4,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:952015,phase:3,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:952016,phase:4,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:952017,phase:3,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:952018,phase:4,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:952017,phase:3,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:952018,phase:4,pass,nolog,skipAfter:END-RESPONSE-952-DATA-LEAKAGES-JAVA"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-953-DATA-LEAKAGES-PHP.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf
similarity index 59%
rename from pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-953-DATA-LEAKAGES-PHP.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf
index 6f51f433ed..f232372d4f 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-953-DATA-LEAKAGES-PHP.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,10 +14,10 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:953011,phase:3,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:953012,phase:4,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:953011,phase:3,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:953012,phase:4,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 #
@@ -30,7 +30,7 @@ SecRule RESPONSE_BODY "@pmFromFile php-errors.data" \
     capture,\
     t:none,\
     msg:'PHP Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-php',\
     tag:'platform-multi',\
@@ -39,11 +39,9 @@ SecRule RESPONSE_BODY "@pmFromFile php-errors.data" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
     tag:'PCI/6.5.6',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 #
 # -=[ PHP source code leakage ]=-
@@ -57,7 +55,7 @@ SecRule RESPONSE_BODY "@rx (?:\b(?:f(?:tp_(?:nb_)?f?(?:ge|pu)t|get(?:s?s|c)|scan
     capture,\
     t:none,\
     msg:'PHP source code leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-php',\
     tag:'platform-multi',\
@@ -66,29 +64,24 @@ SecRule RESPONSE_BODY "@rx (?:\b(?:f(?:tp_(?:nb_)?f?(?:ge|pu)t|get(?:s?s|c)|scan
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
     tag:'PCI/6.5.6',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
-# Detect the presence of the PHP open tag "<?" or "<?php" in output.
+# Detect the presence of the PHP open tag "<? ", "<?= " or "<?php " in output.
 #
-# To prevent false positives due to the short "<?" sequence, an attempt
-# is made to stop alerts in binary output. This is done by detecting
-# some common binary file format headers, such as gzip (\x1f\x8b\x08),
-# png (IHDR), mp3 (ID3), movie formats et cetera.
+# To prevent false positives (due to the short "<?" sequences), we also include,
+# the space after it in an attempt to stop alerts in binary output.
+# And we make it case insensitive.
 #
-# Not supported by re2 (?!re).
-#
-SecRule RESPONSE_BODY "@rx <\?(?!xml)" \
+SecRule RESPONSE_BODY "@rx (?i)<\?(?:=|php)?\s+" \
     "id:953120,\
     phase:4,\
     block,\
     capture,\
     t:none,\
     msg:'PHP source code leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-php',\
     tag:'platform-multi',\
@@ -97,37 +90,56 @@ SecRule RESPONSE_BODY "@rx <\?(?!xml)" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
     tag:'PCI/6.5.6',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    chain"
-    SecRule RESPONSE_BODY "!@rx (?:\x1f\x8b\x08|\b(?:(?:i(?:nterplay|hdr|d3)|m(?:ovi|thd)|r(?:ar!|iff)|(?:ex|jf)if|f(?:lv|ws)|varg|cws)\b|gif)|B(?:%pdf|\.ra)\b|^wOF[F2])" \
-        "capture,\
-        t:none,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:953013,phase:3,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:953014,phase:4,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:953013,phase:3,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:953014,phase:4,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
+#
+# -=[ PHP Error Message Leakage ]=-
+#
+# This is a stricter sibling of rule 953100.
+# This stricter sibling checks for additional error messages which has a higher chance to appear in common language.
+#
+SecRule RESPONSE_BODY "@pmFromFile php-errors-pl2.data" \
+    "id:953101,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'PHP Information Leakage',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'application-multi',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-disclosure',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/118/116',\
+    tag:'PCI/6.5.6',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'ERROR',\
+    setvar:'tx.outbound_anomaly_score_pl2=+%{tx.error_anomaly_score}'"
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:953015,phase:3,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:953016,phase:4,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:953015,phase:3,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:953016,phase:4,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:953017,phase:3,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:953018,phase:4,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:953017,phase:3,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:953018,phase:4,pass,nolog,skipAfter:END-RESPONSE-953-DATA-LEAKAGES-PHP"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-954-DATA-LEAKAGES-IIS.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf
similarity index 60%
rename from pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-954-DATA-LEAKAGES-IIS.conf
rename to pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf
index 5f062f0da8..50cb461b96 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-954-DATA-LEAKAGES-IIS.conf
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
@@ -14,21 +14,21 @@
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:954011,phase:3,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:954012,phase:4,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:954011,phase:3,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:954012,phase:4,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
 #
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
 #
 
 # IIS default location
-SecRule RESPONSE_BODY "@rx [a-z]:\\\\inetpub\b" \
+SecRule RESPONSE_BODY "@rx [a-z]:\x5cinetpub\b" \
     "id:954100,\
     phase:4,\
     block,\
     capture,\
     t:none,t:lowercase,\
     msg:'Disclosure of IIS install location',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-multi',\
     tag:'platform-iis',\
@@ -37,20 +37,18 @@ SecRule RESPONSE_BODY "@rx [a-z]:\\\\inetpub\b" \
     tag:'paranoia-level/1',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
-SecRule RESPONSE_BODY "@rx (?:Microsoft OLE DB Provider for SQL Server(?:<\/font>.{1,20}?error '800(?:04005|40e31)'.{1,40}?Timeout expired| \(0x80040e31\)<br>Timeout expired<br>)|<h1>internal server error<\/h1>.*?<h2>part of the server has crashed or it has a configuration error\.<\/h2>|cannot connect to the server: timed out)" \
+SecRule RESPONSE_BODY "@rx (?:Microsoft OLE DB Provider for SQL Server(?:</font>.{1,20}?error '800(?:04005|40e31)'.{1,40}?Timeout expired| \(0x80040e31\)<br>Timeout expired<br>)|<h1>internal server error</h1>.*?<h2>part of the server has crashed or it has a configuration error\.</h2>|cannot connect to the server: timed out)" \
     "id:954110,\
     phase:4,\
     block,\
     capture,\
     t:none,\
     msg:'Application Availability Error',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-multi',\
     tag:'platform-iis',\
@@ -60,23 +58,21 @@ SecRule RESPONSE_BODY "@rx (?:Microsoft OLE DB Provider for SQL Server(?:<\/font
     tag:'PCI/6.5.6',\
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 #
 # IIS Errors leakage
 #
-SecRule RESPONSE_BODY "@rx (?:\b(?:A(?:DODB\.Command\b.{0,100}?\b(?:Application uses a value of the wrong type for the current operation\b|error')| trappable error occurred in an external object\. The script cannot continue running\b)|Microsoft VBScript (?:compilation (?:\(0x8|error)|runtime (?:Error|\(0x8))\b|Object required: '|error '800)|<b>Version Information:<\/b>(?:&nbsp;|\s)(?:Microsoft \.NET Framework|ASP\.NET) Version:|>error 'ASP\b|An Error Has Occurred|>Syntax error in string in query expression|\/[Ee]rror[Mm]essage\.aspx?\?[Ee]rror\b)" \
+SecRule RESPONSE_BODY "@pmFromFile iis-errors.data" \
     "id:954120,\
     phase:4,\
     block,\
     capture,\
     t:none,\
     msg:'IIS Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-multi',\
     tag:'platform-iis',\
@@ -86,11 +82,9 @@ SecRule RESPONSE_BODY "@rx (?:\b(?:A(?:DODB\.Command\b.{0,100}?\b(?:Application
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
     tag:'PCI/6.5.6',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
-    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 
 SecRule RESPONSE_STATUS "!@rx ^404$" \
@@ -100,7 +94,7 @@ SecRule RESPONSE_STATUS "!@rx ^404$" \
     capture,\
     t:none,\
     msg:'IIS Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
     tag:'application-multi',\
     tag:'language-multi',\
     tag:'platform-iis',\
@@ -110,38 +104,36 @@ SecRule RESPONSE_STATUS "!@rx ^404$" \
     tag:'OWASP_CRS',\
     tag:'capec/1000/118/116',\
     tag:'PCI/6.5.6',\
-    ver:'OWASP_CRS/3.3.5',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
     severity:'ERROR',\
     chain"
     SecRule RESPONSE_BODY "@rx \bServer Error in.{0,50}?\bApplication\b" \
         "capture,\
         t:none,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.error_anomaly_score}'"
+        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.error_anomaly_score}'"
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:954013,phase:3,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:954014,phase:4,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:954013,phase:3,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:954014,phase:4,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
 #
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:954015,phase:3,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:954016,phase:4,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:954015,phase:3,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:954016,phase:4,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
 #
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
 #
 
 
 
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:954017,phase:3,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:954018,phase:4,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:954017,phase:3,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:954018,phase:4,pass,nolog,skipAfter:END-RESPONSE-954-DATA-LEAKAGES-IIS"
 #
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
 #
 
 
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-955-WEB-SHELLS.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-955-WEB-SHELLS.conf
new file mode 100644
index 0000000000..48731dc437
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-955-WEB-SHELLS.conf
@@ -0,0 +1,548 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. (not) All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:955011,phase:3,pass,nolog,skipAfter:END-RESPONSE-955-WEB-SHELLS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:955012,phase:4,pass,nolog,skipAfter:END-RESPONSE-955-WEB-SHELLS"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+# For performance reasons, most of the shells are matched using this rule.
+# This rule is intended for PHP web shells.
+SecRule RESPONSE_BODY "@pmFromFile web-shells-php.data" \
+    "id:955100,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Web shell detected',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# r57 web shell
+SecRule RESPONSE_BODY "@rx (<title>r57 Shell Version [0-9.]+</title>|<title>r57 shell</title>)" \
+    "id:955110,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'r57 web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# WSO web shell
+SecRule RESPONSE_BODY "@rx ^<html><head><meta http-equiv='Content-Type' content='text/html; charset=Windows-1251'><title>.*? - WSO [0-9.]+</title>" \
+    "id:955120,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'WSO web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# b4tm4n web shell (https://github.com/k4mpr3t/b4tm4n)
+SecRule RESPONSE_BODY "@rx B4TM4N SH3LL</title>.*<meta name='author' content='k4mpr3t'/>" \
+    "id:955130,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'b4tm4n web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Mini Shell web shell
+SecRule RESPONSE_BODY "@rx <title>Mini Shell</title>.*Developed By LameHacker" \
+    "id:955140,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Mini Shell web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Ashiyane web shell
+SecRule RESPONSE_BODY "@rx <title>\.:: .* ~ Ashiyane V [0-9.]+ ::\.</title>" \
+    "id:955150,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Ashiyane web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Symlink_Sa web shell
+SecRule RESPONSE_BODY "@rx <title>Symlink_Sa [0-9.]+</title>" \
+    "id:955160,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Symlink_Sa web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# CasuS web shell
+SecRule RESPONSE_BODY "@rx <title>CasuS [0-9.]+ by MafiABoY</title>" \
+    "id:955170,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'CasuS web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# GRP WebShell
+SecRule RESPONSE_BODY "@rx ^<html>\r\n<head>\r\n<title>GRP WebShell [0-9.]+ " \
+    "id:955180,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'GRP WebShell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# NGHshell web shell
+SecRule RESPONSE_BODY "@rx <small>NGHshell [0-9.]+ by Cr4sh</body></html>\n$" \
+    "id:955190,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'NGHshell web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# SimAttacker web shell
+SecRule RESPONSE_BODY "@rx <title>SimAttacker - (?:Version|Vrsion) : [0-9.]+ - " \
+    "id:955200,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'SimAttacker web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Unknown web shell
+SecRule RESPONSE_BODY "@rx ^<!DOCTYPE html>\n<html>\n<!-- By Artyum .*<title>Web Shell</title>" \
+    "id:955210,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Unknown web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# lama's'hell web shell
+SecRule RESPONSE_BODY "@rx <title>lama's'hell v. [0-9.]+</title>" \
+    "id:955220,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'lama\'s\'hell web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# lostDC web shell
+SecRule RESPONSE_BODY "@rx ^ *<html>\n[ ]+<head>\n[ ]+<title>lostDC - " \
+    "id:955230,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'lostDC web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Unknown web shell
+SecRule RESPONSE_BODY "@rx ^<title>PHP Web Shell</title>\r\n<html>\r\n<body>\r\n    <!-- Replaces command with Base64-encoded Data -->" \
+    "id:955240,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Unknown web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Unknown web shell
+SecRule RESPONSE_BODY "@rx ^<html>\n<head>\n<div align=\"left\"><font size=\"1\">Input command :</font></div>\n<form name=\"cmd\" method=\"POST\" enctype=\"multipart/form-data\">" \
+    "id:955250,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Unknown web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Ru24PostWebShell web shell
+SecRule RESPONSE_BODY "@rx ^<html>\n<head>\n<title>Ru24PostWebShell - " \
+    "id:955260,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Ru24PostWebShell web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# s72 Shell web shell
+SecRule RESPONSE_BODY "@rx <title>s72 Shell v[0-9.]+ Codinf by Cr@zy_King</title>" \
+    "id:955270,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'s72 Shell web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# PhpSpy web shell
+SecRule RESPONSE_BODY "@rx ^<html>\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n<title>PhpSpy Ver [0-9]+</title>" \
+    "id:955280,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'PhpSpy web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# g00nshell web shell
+SecRule RESPONSE_BODY "@rx ^ <html>\n\n<head>\n\n<title>g00nshell v[0-9.]+ " \
+    "id:955290,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'g00nshell web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# PuNkHoLic shell web shell
+# Various versions has this text written little differently so we need to do
+# t:removeWhitespace and t:lowercase.
+SecRule RESPONSE_BODY "@contains <title>punkholicshell</title>" \
+    "id:955300,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,t:removeWhitespace,t:lowercase,\
+    msg:'PuNkHoLic shell web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# azrail web shell
+SecRule RESPONSE_BODY "@rx ^<html>\n      <head>\n             <title>azrail [0-9.]+ by C-W-M</title>" \
+    "id:955310,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'azrail web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# SmEvK_PaThAn Shell web shell
+SecRule RESPONSE_BODY "@rx >SmEvK_PaThAn Shell v[0-9]+ coded by <a href=" \
+    "id:955320,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'SmEvK_PaThAn Shell web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# Shell I web shell
+SecRule RESPONSE_BODY "@rx ^<html>\n<title>.*? ~ Shell I</title>\n<head>\n<style>" \
+    "id:955330,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'Shell I web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+# b374k m1n1 web shell
+SecRule RESPONSE_BODY "@rx ^ <html><head><title>:: b374k m1n1 [0-9.]+ ::</title>" \
+    "id:955340,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'b374k m1n1 web shell',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/1',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:955013,phase:3,pass,nolog,skipAfter:END-RESPONSE-955-WEB-SHELLS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:955014,phase:4,pass,nolog,skipAfter:END-RESPONSE-955-WEB-SHELLS"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+# webadmin.php file manager
+# This is placed in PL2 because of too generic pattern.
+SecRule RESPONSE_BODY "@contains <h1 style=\"margin-bottom: 0\">webadmin.php</h1>" \
+    "id:955350,\
+    phase:4,\
+    block,\
+    capture,\
+    t:none,\
+    msg:'webadmin.php file manager',\
+    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}',\
+    tag:'language-php',\
+    tag:'platform-multi',\
+    tag:'attack-rce',\
+    tag:'paranoia-level/2',\
+    tag:'OWASP_CRS',\
+    tag:'capec/1000/225/122/17/650',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    severity:'CRITICAL',\
+    setvar:'tx.outbound_anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:955015,phase:3,pass,nolog,skipAfter:END-RESPONSE-955-WEB-SHELLS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:955016,phase:4,pass,nolog,skipAfter:END-RESPONSE-955-WEB-SHELLS"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:955017,phase:3,pass,nolog,skipAfter:END-RESPONSE-955-WEB-SHELLS"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:955018,phase:4,pass,nolog,skipAfter:END-RESPONSE-955-WEB-SHELLS"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-RESPONSE-955-WEB-SHELLS"
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-959-BLOCKING-EVALUATION.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-959-BLOCKING-EVALUATION.conf
new file mode 100644
index 0000000000..fb7c67910b
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-959-BLOCKING-EVALUATION.conf
@@ -0,0 +1,233 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+# You should set the score to the proper threshold you would prefer. If kept at "@gt 0"
+# it will work similarly to previous Mod CRS rules and will create an event in the error_log
+# file if there are any rules that match.  If you would like to lessen the number of events
+# generated in the error_log file, you should increase the anomaly score threshold to
+# something like "@gt 20".  This would only generate an event in the error_log file if
+# there are multiple lower severity rule matches or if any 1 higher severity item matches.
+#
+# You should also set the desired disruptive action (deny, redirect, etc...).
+#
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+
+# Summing up the blocking and detection anomaly scores in phase 3
+# even when early blocking is disabled, we need to sum up the scores in phase 3
+# this prevents bugs in phase 5 if Apache skips phases because of error handling
+# See: https://github.com/coreruleset/coreruleset/issues/2319#issuecomment-1047503932
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 1" \
+    "id:959052,\
+    phase:3,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl1}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 1" \
+    "id:959152,\
+    phase:3,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl1}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 2" \
+    "id:959053,\
+    phase:3,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl2}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 2" \
+    "id:959153,\
+    phase:3,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl2}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 3" \
+    "id:959054,\
+    phase:3,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl3}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 3" \
+    "id:959154,\
+    phase:3,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl3}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 4" \
+    "id:959055,\
+    phase:3,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl4}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 4" \
+    "id:959155,\
+    phase:3,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl4}'"
+
+# at start of phase 4, we reset the aggregate scores to 0 to prevent duplicate counting of per-PL scores
+# this is necessary because the per-PL scores are counted across phases
+SecAction \
+    "id:959059,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=0'"
+SecAction \
+    "id:959159,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=0'"
+
+SecMarker "EARLY_BLOCKING_ANOMALY_SCORING"
+
+# Summing up the blocking and detection anomaly scores in phase 4
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 1" \
+    "id:959060,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl1}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 1" \
+    "id:959160,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl1}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 2" \
+    "id:959061,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl2}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 2" \
+    "id:959161,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl2}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 3" \
+    "id:959062,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl3}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 3" \
+    "id:959162,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl3}'"
+
+SecRule TX:BLOCKING_PARANOIA_LEVEL "@ge 4" \
+    "id:959063,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.blocking_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl4}'"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@ge 4" \
+    "id:959163,\
+    phase:4,\
+    pass,\
+    t:none,\
+    nolog,\
+    setvar:'tx.detection_outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl4}'"
+
+#
+# -=[ Anomaly Mode: Overall Transaction Anomaly Score ]=-
+#
+
+# if early blocking is active, check threshold in phase 3
+SecRule TX:BLOCKING_OUTBOUND_ANOMALY_SCORE "@ge %{tx.outbound_anomaly_score_threshold}" \
+    "id:959101,\
+    phase:3,\
+    deny,\
+    t:none,\
+    msg:'Outbound Anomaly Score Exceeded in phase 3 (Total Score: %{tx.blocking_outbound_anomaly_score})',\
+    tag:'anomaly-evaluation',\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    chain"
+    SecRule TX:EARLY_BLOCKING "@eq 1"
+
+# always check threshold in phase 4
+SecRule TX:BLOCKING_OUTBOUND_ANOMALY_SCORE "@ge %{tx.outbound_anomaly_score_threshold}" \
+    "id:959100,\
+    phase:4,\
+    deny,\
+    t:none,\
+    msg:'Outbound Anomaly Score Exceeded (Total Score: %{tx.blocking_outbound_anomaly_score})',\
+    tag:'anomaly-evaluation',\
+    ver:'OWASP_CRS/4.0.0-rc2'"
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:959011,phase:3,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:959012,phase:4,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:959013,phase:3,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:959014,phase:4,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:959015,phase:3,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:959016,phase:4,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:959017,phase:3,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:959018,phase:4,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-RESPONSE-959-BLOCKING-EVALUATION"
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-980-CORRELATION.conf b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-980-CORRELATION.conf
new file mode 100644
index 0000000000..33072edd83
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-980-CORRELATION.conf
@@ -0,0 +1,136 @@
+# ------------------------------------------------------------------------
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
+# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
+# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
+#
+# The OWASP ModSecurity Core Rule Set is distributed under
+# Apache Software License (ASL) version 2
+# Please see the enclosed LICENSE file for full details.
+# ------------------------------------------------------------------------
+
+#
+# This file is used in post processing after the response has been sent to
+# the client (in the logging phase).  Its purpose is to provide inbound+outbound
+# correlation of events to provide a more intelligent designation as to the outcome
+# or result of the transaction - meaning, was this a successful attack?
+#
+
+#
+# -= Paranoia Level 0 (empty) =- (apply unconditionally)
+#
+
+# Combine inbound and outbound scores
+SecAction \
+    "id:980099,\
+    phase:5,\
+    pass,\
+    t:none,\
+    nolog,\
+    noauditlog,\
+    ver:'OWASP_CRS/4.0.0-rc2',\
+    setvar:'tx.blocking_anomaly_score=%{tx.blocking_inbound_anomaly_score}',\
+    setvar:'tx.blocking_anomaly_score=+%{tx.blocking_outbound_anomaly_score}',\
+    setvar:'tx.detection_anomaly_score=%{tx.detection_inbound_anomaly_score}',\
+    setvar:'tx.detection_anomaly_score=+%{tx.detection_outbound_anomaly_score}',\
+    setvar:'tx.anomaly_score=%{tx.blocking_inbound_anomaly_score}',\
+    setvar:'tx.anomaly_score=+%{tx.blocking_outbound_anomaly_score}'"
+
+#
+# -=[ Anomaly Score Reporting ]=-
+#
+
+# -= Reporting Level 0 =- (Skip over reporting when tx.reporting_level is 0)
+SecRule TX:REPORTING_LEVEL "@eq 0" "id:980041,phase:5,pass,nolog,skipAfter:END-REPORTING"
+
+# -= Reporting Level 5 =- (Jump to reporting rule immediately when tx.reporting_level is 5 or greater)
+SecRule TX:REPORTING_LEVEL "@ge 5" "id:980042,phase:5,pass,nolog,skipAfter:LOG-REPORTING"
+
+# -= Zero detection score =- (Skip over reporting when sum of inbound and outbound detection score is equal to 0)
+SecRule TX:DETECTION_ANOMALY_SCORE "@eq 0" "id:980043,phase:5,pass,nolog,skipAfter:END-REPORTING"
+
+# -= Blocking score exceeds threshold =- (Jump to reporting rule immediately if a blocking score exceeds a threshold)
+SecRule TX:BLOCKING_INBOUND_ANOMALY_SCORE "@ge %{tx.inbound_anomaly_score_threshold}" "id:980044,phase:5,pass,nolog,skipAfter:LOG-REPORTING"
+SecRule TX:BLOCKING_OUTBOUND_ANOMALY_SCORE "@ge %{tx.outbound_anomaly_score_threshold}" "id:980045,phase:5,pass,nolog,skipAfter:LOG-REPORTING"
+
+# -= Reporting Level 2 =- (Skip over reporting when tx.reporting_level is less than 2)
+SecRule TX:REPORTING_LEVEL "@lt 2" "id:980046,phase:5,pass,nolog,skipAfter:END-REPORTING"
+
+# -= Detection score exceeds threshold =- (Jump to reporting rule immediately if a detection score exceeds a threshold)
+SecRule TX:DETECTION_INBOUND_ANOMALY_SCORE "@ge %{tx.inbound_anomaly_score_threshold}" "id:980047,phase:5,pass,nolog,skipAfter:LOG-REPORTING"
+SecRule TX:DETECTION_OUTBOUND_ANOMALY_SCORE "@ge %{tx.outbound_anomaly_score_threshold}" "id:980048,phase:5,pass,nolog,skipAfter:LOG-REPORTING"
+
+# -= Reporting Level 3 =- (Skip over reporting when tx.reporting_level is less than 3)
+SecRule TX:REPORTING_LEVEL "@lt 3" "id:980049,phase:5,pass,nolog,skipAfter:END-REPORTING"
+
+# -= Blocking score greater than zero =- (Jump to reporting rule immediately when sum of inbound and outbound blocking score is greater than zero)
+SecRule TX:BLOCKING_ANOMALY_SCORE "@gt 0" "id:980050,phase:5,pass,nolog,skipAfter:LOG-REPORTING"
+
+# -= Reporting Level 4 =- (Skip over reporting when tx.reporting_level is less than 4)
+SecRule TX:REPORTING_LEVEL "@lt 4" "id:980051,phase:5,pass,nolog,skipAfter:END-REPORTING"
+
+# At this point, the reporting level is 4 and there's a non-zero detection
+# score (already established by rule 980043) so fall through to the reporting
+# rule.
+
+
+# Requests that land on the following SecMarker:
+# - At reporting level 5 (unconditional reporting)
+# - At reporting levels 1-4 when a blocking score exceeds a threshold
+# - At reporting levels 2-4 when a detection score exceeds a threshold
+# - At reporting levels 3-4 when the total blocking score is greater than zero
+# - At reporting level 4 when the total detection score is greater than zero
+SecMarker "LOG-REPORTING"
+
+# Inbound and outbound - all requests
+SecAction \
+    "id:980170,\
+    phase:5,\
+    pass,\
+    t:none,\
+    noauditlog,\
+    msg:'Anomaly Scores: \
+(Inbound Scores: blocking=%{tx.blocking_inbound_anomaly_score}, detection=%{tx.detection_inbound_anomaly_score}, per_pl=%{tx.inbound_anomaly_score_pl1}-%{tx.inbound_anomaly_score_pl2}-%{tx.inbound_anomaly_score_pl3}-%{tx.inbound_anomaly_score_pl4}, threshold=%{tx.inbound_anomaly_score_threshold}) - \
+(Outbound Scores: blocking=%{tx.blocking_outbound_anomaly_score}, detection=%{tx.detection_outbound_anomaly_score}, per_pl=%{tx.outbound_anomaly_score_pl1}-%{tx.outbound_anomaly_score_pl2}-%{tx.outbound_anomaly_score_pl3}-%{tx.outbound_anomaly_score_pl4}, threshold=%{tx.outbound_anomaly_score_threshold}) - \
+(SQLI=%{tx.sql_injection_score}, XSS=%{tx.xss_score}, RFI=%{tx.rfi_score}, LFI=%{tx.lfi_score}, RCE=%{tx.rce_score}, PHPI=%{tx.php_injection_score}, HTTP=%{tx.http_violation_score}, SESS=%{tx.session_fixation_score}, COMBINED_SCORE=%{tx.anomaly_score})',\
+    tag:'reporting',\
+    ver:'OWASP_CRS/4.0.0-rc2'"
+
+SecMarker "END-REPORTING"
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:980011,phase:1,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 1" "id:980012,phase:2,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
+#
+# -= Paranoia Level 1 (default) =- (apply only when tx.detection_paranoia_level is sufficiently high: 1 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:980013,phase:1,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 2" "id:980014,phase:2,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
+#
+# -= Paranoia Level 2 =- (apply only when tx.detection_paranoia_level is sufficiently high: 2 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:980015,phase:1,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 3" "id:980016,phase:2,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
+#
+# -= Paranoia Level 3 =- (apply only when tx.detection_paranoia_level is sufficiently high: 3 or higher)
+#
+
+
+
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:980017,phase:1,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
+SecRule TX:DETECTION_PARANOIA_LEVEL "@lt 4" "id:980018,phase:2,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
+#
+# -= Paranoia Level 4 =- (apply only when tx.detection_paranoia_level is sufficiently high: 4 or higher)
+#
+
+
+
+#
+# -= Paranoia Levels Finished =-
+#
+SecMarker "END-RESPONSE-980-CORRELATION"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example
similarity index 98%
rename from pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example
rename to pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example
index fdb162d08e..5c4624178c 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
+# OWASP ModSecurity Core Rule Set ver.4.0.0-rc2
 # Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
 # Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
 #
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/iis-errors.data b/pkg/render/applicationlayer/embed/coreruleset/rules/iis-errors.data
new file mode 100644
index 0000000000..4449d6ac20
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/iis-errors.data
@@ -0,0 +1,59 @@
+# This list comes from the default IIS error pages
+# To renerate get the files from a default installation and use:
+# grep -h '<title' *.htm
+
+<title>401.1 - Unauthorized: Access is denied due to invalid credentials.</title>
+<title>401.2 - Unauthorized: Access is denied due to server configuration.</title>
+<title>401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource.</title>
+<title>401.4 - Unauthorized: Authorization failed by filter installed on the Web server.</title>
+<title>401.5 - Unauthorized: Authorization failed by an ISAPI/CGI application.</title>
+<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
+<title>403.1 - Forbidden: Execute access is denied.</title>
+<title>403.10 - Forbidden: Web server is configured to deny Execute access.</title>
+<title>403.11 - Forbidden: Password has been changed.</title>
+<title>403.12 - Forbidden: Client certificate is denied access by the server certificate mapper.</title>
+<title>403.13 - Forbidden: Client certificate has been revoked on the Web server.</title>
+<title>403.14 - Forbidden: Directory listing denied.</title>
+<title>403.15 - Forbidden: Client access licenses have exceeded limits on the Web server.</title>
+<title>403.16 - Forbidden: Client certificate is ill-formed or is not trusted by the Web server.</title>
+<title>403.17 - Forbidden: Client certificate has expired or is not yet valid.</title>
+<title>403.18 - Forbidden: Cannot execute requested URL in the current application pool.</title>
+<title>403.19 - Forbidden: Cannot execute CGIs for the client in this application pool.</title>
+<title>403.2 - Forbidden: Read access is denied.</title>
+<title>403.3 - Forbidden: Write access is denied.</title>
+<title>403.4 - Forbidden: SSL is required to view this resource.</title>
+<title>403.5 - Forbidden: SSL 128 is required to view this resource.</title>
+<title>403.6 - Forbidden: IP address of the client has been rejected.</title>
+<title>403.7 - Forbidden: SSL client certificate is required.</title>
+<title>403.8 - Forbidden: DNS name of the client is rejected.</title>
+<title>403.9 - Forbidden: Too many clients are trying to connect to the Web server.</title>
+<title>403 - Forbidden: Access is denied.</title>
+<title>404.1 - File or directory not found: Web site not accessible on the requested port.</title>
+<title>404.11 - URL is double-escaped.</title>
+<title>404.12 - URL has high bit characters.</title>
+<title>404.14 - URL too long.</title>
+<title>404.15 - Query-String too long.</title>
+<title>404.2 - File or directory not found: Lockdown policy prevents this request.</title>
+<title>404.3 - File or directory not found: MIME map policy prevents this request.</title>
+<title>404.4 - File or directory not found: No module handler is registered to handle the request.</title>
+<title>404.5 - URL sequence denied.</title>
+<title>404.6 - HTTP verb denied.</title>
+<title>404.7 - File extension denied.</title>
+<title>404.8 - URL namespace hidden.</title>
+<title>404.9 - File attribute hidden.</title>
+<title>404 - File or directory not found.</title>
+<title>405 - HTTP verb used to access this page is not allowed.</title>
+<title>406 - Client browser does not accept the MIME type of the requested page.</title>
+<title>412 - Precondition set by the client failed when evaluated on the Web server.</title>
+<title>413.1 - Content-Length too large.</title>
+<title>431 - Request header too long.</title>
+<title>500.13 - Server error: Web server is too busy.</title>
+<title>500.14 - Server error: Invalid application configuration on the server.</title>
+<title>500.15 - Server error: Direct requests for GLOBAL.ASA are not allowed.</title>
+<title>500.16 - Server error: UNC authorization credentials incorrect.</title>
+<title>500.17 - Server error: URL authorization store cannot be found.</title>
+<title>500.18 - Server error: URL authorization store cannot be opened.</title>
+<title>500.19 - Server error: Data for this file is configured improperly.</title>
+<title>500 - Internal server error.</title>
+<title>501 - Header values specify a method that is not implemented.</title>
+<title>502 - Web server received an invalid response while acting as a gateway or proxy server.</title>
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/java-classes.data b/pkg/render/applicationlayer/embed/coreruleset/rules/java-classes.data
similarity index 51%
rename from pkg/render/applicationlayer/modsec-core-ruleset/java-classes.data
rename to pkg/render/applicationlayer/embed/coreruleset/rules/java-classes.data
index d13a339ac5..f936a915d6 100644
--- a/pkg/render/applicationlayer/modsec-core-ruleset/java-classes.data
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/java-classes.data
@@ -1,5 +1,22 @@
+# Java Classes for use with Java RCEs
+# 
+# Used With Rule 944130 in Apache Struts and Oracle Weblogic RCEs Detection:
+#
+# CVE-2017-5638  (2017.01.29) https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5638
+# CVE-2017-9791  (2017.06.21) https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9791
+# CVE-2017-9805  (2017.06.21) https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9805
+# CVE-2017-10271 (2017.06.21) https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10271
+# CVE-2018-11776 (2018.06.05) https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11776
+# CVE-2021-44228 (2021.11.26) https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228
+#
+# Additional Resources
+# Apache S2-057 (2019.01.20) https://cwiki.apache.org/confluence/display/WW/S2-057
+
 com.opensymphony.xwork2
 com.sun.org.apache
+freemarker.core
+freemarker.template
+freemarker.ext.rhino
 java.io.BufferedInputStream
 java.io.BufferedReader
 java.io.ByteArrayInputStream
@@ -15,6 +32,7 @@ java.io.FilterOutputStream
 java.io.FilterReader
 java.io.InputStream
 java.io.InputStreamReader
+java.io.IOException
 java.io.LineNumberReader
 java.io.ObjectOutputStream
 java.io.OutputStream
@@ -35,9 +53,12 @@ java.lang.Runtime
 java.lang.String
 java.lang.StringBuilder
 java.lang.System
+java.net.Socket
+javassist
 javax.script.ScriptEngineManager
 org.apache.commons
 org.apache.struts
 org.apache.struts2
 org.omg.CORBA
 java.beans.XMLDecode
+sun.reflect
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/java-code-leakages.data b/pkg/render/applicationlayer/embed/coreruleset/rules/java-code-leakages.data
similarity index 100%
rename from pkg/render/applicationlayer/modsec-core-ruleset/java-code-leakages.data
rename to pkg/render/applicationlayer/embed/coreruleset/rules/java-code-leakages.data
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/java-errors.data b/pkg/render/applicationlayer/embed/coreruleset/rules/java-errors.data
similarity index 100%
rename from pkg/render/applicationlayer/modsec-core-ruleset/java-errors.data
rename to pkg/render/applicationlayer/embed/coreruleset/rules/java-errors.data
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/lfi-os-files.data b/pkg/render/applicationlayer/embed/coreruleset/rules/lfi-os-files.data
new file mode 100644
index 0000000000..18975b856a
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/lfi-os-files.data
@@ -0,0 +1,720 @@
+# This list comes from:
+# - https://github.com/lightos/Panoptic
+# - https://github.com/danielmiessler/SecLists
+# /proc and /sys entries should be kept in sync with restricted-files.data
+
+# Entries in this list generally use the shortest path that suffices for identifying them as dangerous.
+# .ssh/id_rsa and .ssh/id_dsa for example, are both dangerous paths but are represented in this list as .ssh.
+# The same applies to different log files below /var/log/mysql: var/log/mysql is enough to tell us that the request is suspicious.
+# Additionally, similar paths with different roots are represented as a single entry.
+# For example, the two entries usr/local/mysql/data/mysql.err and xampp/mysql/data/mysql.err are
+# represented as mysal/data, as that is enough to identify the paths as being suspicious.
+
+
+# Most of the dotfile entries can be generated from the following three commands.
+# Unfortunately, the output contains many more entries, including some file
+# extensions. There are also some entries that probably added by hand.
+# curl -s https://raw.githubusercontent.com/lightos/Panoptic/master/home.txt | grep -E "^\." |  awk  '{ print tolower($0) }' | sort | uniq
+# curl -s https://raw.githubusercontent.com/lightos/Panoptic/master/cases.xml | grep "file value" | cut -d'"' -f2 | grep -E "^\." |  awk  '{ print tolower($0) }' | sort | uniq
+# curl -s https://raw.githubusercontent.com/danielmiessler/SecLists/master/Fuzzing/fuzz-Bo0oM.txt | grep -Ev '\\|\.\.|=\b|%' | grep -E "^\." |  awk  '{ print tolower($0) }' | sort | uniq
+.addressbook
+.anydesk/
+.aptitude/config
+.atom/
+.aws/
+.azure/
+.bash_
+.bashrc
+.boto
+.cache/notify-osd.log
+.config/
+.cshrc
+.cups/
+.dbus/
+.docker
+.drush/
+.env
+.eslintignore
+.fbcindex
+.forward
+.gem/
+.gitattributes
+.gitconfig
+.gnonme/
+.gnupg/
+.gsutil/
+.hplip/hplip.conf
+.htaccess
+.htdigest
+.htpasswd
+.java/
+.ksh_history
+.kube/
+.lesshst
+.lftp/
+.lhistory
+.lighttpdpassword
+.lldb-history
+.local/share/mc/
+.lynx_cookies
+.minikube/
+.my.cnf
+.mysql_history
+.nano_history
+.netrc
+.node_repl_history
+.npm/
+.nsconfig
+.nsr
+.nvm/
+.oh-my-
+.password-store
+.pearrc
+.pgpass
+.php_history
+.pinerc
+.pki/
+.proclog
+.procmailrc
+.profile
+.psql_history
+.python_history
+.rediscli_history
+.rhistory
+.rhosts
+.sh_history
+.sqlite_history
+.ssh/
+.subversion/
+.tconn/
+.tcshrc
+.thunderbird/
+.tor/
+.vidalia/
+.vim/
+.viminfo
+.vimrc
+.vmware/
+.www_acl
+.wwwacl
+.xauthority
+.zhistory
+.zsh_history
+.zshrc
+
+
+/php.ini
+/tmp/
+
+# Apache httpd entries can be generated with the following command:
+# curl -s https://raw.githubusercontent.com/lightos/Panoptic/master/cases.xml | grep "file value" | cut -d'"' -f2 | awk -F/ '{ { if (length($NF) > 0) {v1 = NF-1; v2 = NF} else {v1 = NF-2; v2 = NF-1} print tolower($v1"/"$v2) }) }' | grep apache | sort | uniq
+apache/access.conf
+apache/apache.conf
+apache/apache2.conf
+apache/audit_log
+apache/conf
+apache/default-server.conf
+apache/error_log
+apache/error.log
+apache/httpd.conf
+apache/log
+apache2/apache.conf
+apache2/apache2.conf
+apache2/conf
+apache2/default-server.conf
+apache2/envvars
+apache2/httpd.conf
+apache2/httpd2.conf
+apache2/logs
+apache2/mods
+apache2/ports.conf
+apache2/sites
+apache2/ssl-global.conf
+apache2/vhosts.d
+apache22/conf
+apache22/httpd.conf
+apache22/logs
+apache24/conf
+apache24/httpd.conf
+apache24/logs
+app/etc/local.xml
+boot.ini
+boot/grub/grub.cfg
+boot/grub/menu.lst
+config_dev.yml
+config_prod.yml
+config_test.yml
+config.inc.php
+config.php
+config.yml
+config/app.php
+config/custom.php
+config/database.php
+configuration.php
+cpanel/logs
+data/elasticsearch
+data/kafka
+etc/.java
+etc/acpi
+etc/adduser.conf
+etc/alias
+etc/alsa
+etc/alternatives
+etc/anacrontab
+etc/ansible
+etc/apache/access.conf
+etc/apache/apache.conf
+etc/apache/default-server.conf
+etc/apache/httpd.conf
+etc/apache/vhosts.conf
+etc/apache2
+etc/apm
+etc/apparmor
+etc/apport
+etc/apt
+etc/asciidoc
+etc/at.allow
+etc/at.deny
+etc/avahi
+etc/bash_completion.d
+etc/bash.bashrc
+etc/bashrc
+etc/bind
+etc/binfmt.d
+etc/bluetooth
+etc/bonobo-activation
+etc/bootptab
+etc/brltty
+etc/ca-certificates
+etc/calendar
+etc/casper.conf
+etc/centos-release
+etc/chatscripts
+etc/chkrootkit.conf
+etc/chromium-browser
+etc/chrootusers
+etc/chttp.conf
+etc/clam.d
+etc/clamav
+etc/cni
+etc/console-setup
+etc/coraza-waf
+etc/cracklib
+etc/cron.allow
+etc/cron.d
+etc/cron.hourly
+etc/cron.monthly
+etc/cron.weekly
+etc/crontab
+etc/crypttab
+etc/cups
+etc/cvs-cron.conf
+etc/cvs-pserver.conf
+etc/dbus-1
+etc/dconf
+etc/debconf.conf
+etc/debian_version
+etc/default
+etc/deluser.conf
+etc/depmod.d
+etc/dhcp
+etc/dictionaries-common
+etc/dkms
+etc/dns2tcpd.conf
+etc/dnsmasq.d
+etc/dockeretc/dpkg
+etc/e2fsck.conf
+etc/elasticsearch
+etc/emacs
+etc/environment.d
+etc/esound/esd.conf
+etc/etter.conf
+etc/exports
+etc/fail2ban
+etc/fedora-release
+etc/firebird
+etc/firefox
+etc/firewall
+etc/fonts
+etc/foremost.conf
+etc/freshclam.conf
+etc/fstab
+etc/ftpaccess
+etc/ftpchroot
+etc/ftphosts
+etc/ftpusers
+etc/fuse.conf
+etc/fwupd
+etc/gconf
+etc/gdb
+etc/gdm3
+etc/geoclue
+etc/ghostscript
+etc/gimp
+etc/glvnd
+etc/gnome
+etc/gnucash
+etc/gnustep
+etc/groff
+etc/group
+etc/grub.conf
+etc/grub.d
+etc/gshadow
+etc/gss
+etc/gtk-2.0
+etc/gtk-3.0
+etc/hdparm.conf
+etc/host.conf
+etc/hostname
+etc/hosts
+etc/hp
+etc/http/conf
+etc/http/httpd.conf
+etc/httpd
+etc/ifplugd
+etc/imagemagick-6
+etc/inetd.conf
+etc/init
+etc/insserv.conf.d
+etc/ipfw
+etc/iproute2
+etc/iptables
+etc/issue
+etc/java
+etc/kafka
+etc/kbd/config
+etc/kernel
+etc/kibana
+etc/ld.so.conf
+etc/ldap
+etc/libblockdev
+etc/libibverbs.d
+etc/libnl-3
+etc/libpaper.d
+etc/libreoffice
+etc/lighttpd
+etc/lilo.conf
+etc/logcheck
+etc/login.defs
+etc/logrotate.conf
+etc/logrotate.d
+etc/logstash
+etc/lsb-release
+etc/ltrace.conf
+etc/lvm
+etc/lynx
+etc/mail
+etc/mandrake-release
+etc/manpath.config
+etc/mc
+etc/menu
+etc/miredo-server.conf
+etc/miredo.conf
+etc/miredo/miredo-server.conf
+etc/miredo/miredo.conf
+etc/modprobe.d
+etc/modsecurity
+etc/modulesf
+etc/mongod.conf
+etc/monit
+etc/mono
+etc/motd
+etc/mplayer
+etc/mpv
+etc/mtab
+etc/mtools.conf
+etc/muddleftpd
+etc/muddleftpd.com
+etc/muttrc.d
+etc/my.cnf
+etc/my.conf
+etc/mysql
+etc/netplan
+etc/network
+etc/networkmanager
+etc/newsyslog.conf
+etc/newt
+etc/nghttpx
+etc/nginx/
+etc/nikto
+etc/npasswd
+etc/nuxeo.conf
+etc/odbcdatasources
+etc/openal
+etc/openldap/ldap.conf
+etc/openmpi
+etc/opt
+etc/os-release
+etc/osxhttpd
+etc/osync
+etc/packagekit
+etc/pam.conf
+etc/pam.d
+etc/pam.d/proftpd
+etc/passwd
+etc/password
+etc/pcmcia
+etc/perl
+etc/php
+etc/pki
+etc/pm
+etc/polkit-1
+etc/postfix
+etc/postgresql
+etc/ppp
+etc/printcap
+etc/profile
+etc/proftp.conf
+etc/proftpd
+etc/pulse
+etc/pure-ftpd
+etc/pureftpd
+etc/python
+etc/rc.conf
+etc/rc.d/rc.httpd
+etc/rc0.d
+etc/rc1.d
+etc/rc2.d
+etc/rc3.d
+etc/rc4.d
+etc/rc5.d
+etc/rc6.d
+etc/rcs.d
+etc/redhat-release
+etc/redis-sentinel.conf
+etc/redis.conf
+etc/resolv.conf
+etc/resolvconf
+etc/rsyslog.d
+etc/samba
+etc/sane.d
+etc/scw-release
+etc/security
+etc/selinux
+etc/sensors.conf
+etc/sensors.d
+etc/sensors3.conf
+etc/sgml
+etc/shadow
+etc/signon-ui
+etc/skel
+etc/slackware-release
+etc/smb.conf
+etc/smbpasswd
+etc/smi.conf
+etc/snmp
+etc/sound
+etc/spamassassin
+etc/speech-dispatcher
+etc/squid
+etc/squirrelmail
+etc/ssh
+etc/ssl
+etc/sso
+etc/stunnel
+etc/subgid
+etc/subuid
+etc/subversion
+etc/sudoers
+etc/suse-release
+etc/sw-cp-server/applications.d
+etc/sysconfig
+etc/sysctl.conf
+etc/sysctl.d
+etc/syslog.conf
+etc/sysstat
+etc/system-release-cpe
+etc/systemd
+etc/termcap
+etc/terminfo
+etc/texmf
+etc/thermald
+etc/thnuclnt
+etc/thunderbird
+etc/timezone
+etc/timidity
+etc/tinyproxy
+etc/tmpfiles.d
+etc/tor/tor-tsocks.conf
+etc/tsocks.conf
+etc/ubuntu-advantage
+etc/udev
+etc/udisks2
+etc/ufw
+etc/update-manager
+etc/update-motd.d
+etc/update-notifier
+etc/updatedb.conf
+etc/upower
+etc/urlview
+etc/usb_modeswitch.d
+etc/utmp
+etc/vhcs2/proftpd/proftpd.conf
+etc/vim
+etc/vmware
+etc/vsftpd.chroot_list
+etc/vsftpd.conf
+etc/vsftpd/vsftpd.conf
+etc/vulkan
+etc/w3m
+etc/webmin
+etc/wicd
+etc/wireshark
+etc/wpa_supplicant
+etc/wu-ftpd
+etc/x11
+etc/xdg
+etc/xml
+gruntfile.js
+home/postgres
+http/httpd.conf
+httpd/conf/httpd.conf
+inc/config.php
+includes/config.php
+includes/configure.php
+inetpub/wwwroot/global.asa
+jakarta/dist/tomcat
+jakarta/tomcat/conf
+jakarta/tomcat/logs
+library/webserver/documents
+lighttpd/conf
+lighttpd/lighttpd.conf
+lighttpd/log
+localsettings.php
+logs/access_log
+logs/access.log
+logs/error_log
+logs/error.log
+logs/pure-ftpd.log
+logs/samba.log
+logs/security_debug_log
+logs/security_log
+lsws/conf
+lsws/logs
+mysql/bin/my.ini
+mysql/data
+mysql/my.cnf
+mysql/my.ini
+nginx/conf/nginx.conf
+npm-debug.log
+opt/apache
+opt/apache2
+opt/httpd/apache.conf
+opt/httpd/apache2.conf
+opt/httpd/conf/
+opt/jboss
+opt/lampp
+opt/nuxeo
+opt/tomcat
+opt/xampp
+ormconfig.json
+package-lock.json
+package.json
+parameters.yml
+pgsql/bin/pg_passwd
+pgsql/data
+php/apache.conf
+php/apache2.conf
+php/httpd.conf
+php5/apache.conf
+php5/apache2.conf
+php5/httpd.conf
+postgresql/log/
+proc/0
+proc/1
+proc/2
+proc/3
+proc/4
+proc/5
+proc/6
+proc/7
+proc/8
+proc/9
+proc/acpi
+proc/asound
+proc/bootconfig
+proc/buddyinfo
+proc/bus
+proc/cgroups
+proc/cmdline
+proc/config.gz
+proc/consoles
+proc/cpuinfo
+proc/crypto
+proc/devices
+proc/diskstats
+proc/dma
+proc/docker
+proc/driver
+proc/dynamic_debug
+proc/execdomains
+proc/fb
+proc/filesystems
+proc/fs
+proc/interrupts
+proc/iomem
+proc/ioports
+proc/ipmi
+proc/irq
+proc/kallsyms
+proc/kcore
+proc/key-users
+proc/keys
+proc/kmsg
+proc/kpagecgroup
+proc/kpagecount
+proc/kpageflags
+proc/latency_stats
+proc/loadavg
+proc/locks
+proc/mdstat
+proc/meminfo
+proc/misc
+proc/modules
+proc/mounts
+proc/mpt
+proc/mtd
+proc/mtrr
+proc/net
+proc/pagetypeinfo
+proc/partitions
+proc/pressure
+proc/sched_debug
+proc/schedstat
+proc/scsi
+proc/self
+proc/slabinfo
+proc/softirqs
+proc/stat
+proc/swaps
+proc/sys
+proc/sysrq-trigger
+proc/sysvipc
+proc/thread-self
+proc/timer_list
+proc/timer_stats
+proc/tty
+proc/uptime
+proc/version
+proc/version_signature
+proc/vmallocinfo
+proc/vmstat
+proc/zoneinfo
+program files
+psa/admin
+pureftpd/etc
+root/anaconda-ks.cfg
+routing.yml
+samba/lib
+sb/config
+security.yml
+server/default/conf
+server/default/deploy
+server/default/log
+services.yml
+sftp-config.json
+sites/default/default.settings.php
+sites/default/settings.local.php
+sites/default/settings.php
+squirrelmail/config/config.php
+squirrelmail/www
+sys/block
+sys/bus
+sys/class
+sys/dev
+sys/devices
+sys/firmware
+sys/fs
+sys/hypervisor
+sys/kernel
+sys/module
+sys/power
+system/library/webobjects/adaptors
+system32/config
+system32/inetsrv/config
+tmp/access.log
+tmp/kafka-logs
+tsconfig.json
+typo3conf/localconf.php
+usr/etc/pure-ftpd.conf
+usr/home/user/lighttpd
+usr/lib/cron/log
+usr/lib/php
+usr/lib/rpm/rpm.log
+usr/lib/security
+usr/local/zeus/web
+usr/pkg/etc/httpd
+usr/pkgsrc/net/pureftpd
+usr/ports/contrib/pure-ftpd
+usr/ports/ftp/pure-ftpd
+usr/sbin/mudlogd
+usr/sbin/mudpasswd
+usr/sbin/pure-config.pl
+usr/share/adduser
+usr/share/logs
+usr/share/squirrelmail
+usr/share/tomcat
+usr/spool/lp
+usr/spool/mqueue
+var/adm
+var/apache/logs
+var/apache2/config.inc
+var/cpanel
+var/cron/log
+var/data/elasticsearch
+var/data/mysql-bin
+var/htmp
+var/lib/elasticsearch
+var/lib/mysql
+var/lib/pgsql
+var/lib/squirrelmail
+var/lighttpd
+var/local/www/conf
+var/log
+var/lp/logs
+var/mail
+var/mysql-bin
+var/mysql.log
+var/nm2/postgresql.conf
+var/postgresql
+var/run/utmp
+var/saf/_log
+var/saf/port/log
+var/spool
+var/webmin
+var/www/conf
+var/www/html/squirrelmail
+var/www/log
+volumes/macintosh_hd
+volumes/webbackup
+wamp/bin/apache
+wamp/bin/mysql
+wamp/bin/php
+wamp/logs
+web.config
+webpack.config.js
+windows/comsetup.log
+windows/debug/netsetup.log
+windows/odbc.ini
+windows/repair/setup.log
+windows/setupact.log
+windows/setupapi.log
+windows/setuperr.log
+windows/system32
+windows/updspapi.log
+windows/windowsupdate.log
+windows/wmsetup.log
+winnt/repair
+winnt/system32/logfiles
+wp-config.
+www/conf/httpd.conf
+www/logs
+xampp/apache/logs
+xampp/filezillaftp
+xampp/htdocs
+xampp/mercurymail
+xampp/mysql/data
+xampp/php
+xampp/sendmail
+xampp/webalizer/webalizer.conf
+yarn.lock
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/php-config-directives.data b/pkg/render/applicationlayer/embed/coreruleset/rules/php-config-directives.data
new file mode 100644
index 0000000000..854ad1a015
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/php-config-directives.data
@@ -0,0 +1,571 @@
+# This list comes mainly from:
+# - https://www.php.net/manual/en/ini.core.php
+# - https://www.php.net/manual/en/ini.list.php
+#
+# There are additional directives defined in some of the modules, that can be parsed from each modules's configuration page:
+# - https://www.php.net/manual/en/$book.configuration.php (book comes from funcref.php)
+#
+# As the source code is in docbook format with many dependencies, the easiest
+# way to get it is using an xpath parser on the ini list and getting all
+# using '//table/tbody/tr/td[1]'. A simple helper tool you can use is https://www.videlibri.de/xidel.html
+#
+# Small post-processing is needed to remove numbers coming from a column,
+# and `*` chars (e.g. `pdo.dsn.*`).
+# Also removed single words like `engine`, `extension`, `from` and `precision`, to prevent FP.
+#
+# Example usage:
+# `xidel https://www.php.net/manual/en/ini.core.php https://www.php.net/manual/en/ini.list.php --xpath '//table/tbody/tr/td[1]' | sort | uniq`
+#
+# And for configuration in submodules:
+#
+# for book in $(xidel  https://www.php.net/manual/en/funcref.php -e '//a/extract(@href, "book\.(.+)\.php", 1)[. != ""]')                                                                                                 ─╯
+# do
+#   xidel https://www.php.net/manual/en/$book.configuration.php --xpath '//table/tbody/tr/td[1]' >> php-config-directives.txt
+# done
+#
+# ** Remember to always `sort` the output so its easy to spot the changes, and remove duplicates if any.
+
+allow_url_fopen
+allow_url_include
+apc.coredump_unmap
+apc.enable_cli
+apc.enabled
+apc.entries_hint
+apc.gc_ttl
+apc.mmap_file_mask
+apc.preload_path
+apc.serializer
+apc.shm_segments
+apc.shm_size
+apc.slam_defense
+apc.ttl
+apc.use_request_time
+arg_separator.input
+arg_separator.output
+assert.active
+assert.bail
+assert.callback
+assert.exception
+assert.quiet_eval
+assert.warning
+auto_append_file
+auto_detect_line_endings
+auto_globals_jit
+auto_prepend_file
+bcmath.scale
+browscap
+cgi.check_shebang_line
+cgi.discard_path
+cgi.fix_pathinfo
+cgi.force_redirect
+cgi.nph
+cgi.redirect_status_env
+cgi.rfc2616_headers
+child_terminate
+cli_server.color
+cli.pager
+cli.prompt
+com.allow_dcom
+com.autoregister_casesensitive
+com.autoregister_typelib
+com.autoregister_verbose
+com.code_page
+com.dotnet_version
+com.typelib_file
+curl.cainfo
+date.default_latitude
+date.default_longitude
+date.sunrise_zenith
+date.sunset_zenith
+date.timezone
+dba.default_handler
+default_charset
+default_mimetype
+default_socket_timeout
+disable_classes
+disable_functions
+display_errors
+display_startup_errors
+doc_root
+docref_ext
+docref_root
+enable_dl
+enable_post_data_reading
+engine
+error_append_string
+error_log
+error_prepend_string
+error_reporting
+exif.decode_jis_intel
+exif.decode_jis_motorola
+exif.decode_unicode_intel
+exif.decode_unicode_motorola
+exif.encode_jis
+exif.encode_unicode
+exit_on_timeout
+extension
+expect.logfile
+expect.loguser
+expect.match_max
+expect.timeout
+expose_php
+extension_dir
+fastcgi.impersonate
+fastcgi.logging
+ffi.enable
+ffi.preload
+file_uploads
+filter.default
+filter.default_flags
+gd.jpeg_ignore_warning
+geoip.custom_directory
+hard_timeout
+highlight.comment
+highlight.default
+highlight.html
+highlight.keyword
+highlight.string
+html_errors
+ibase.allow_persistent
+ibase.dateformat
+ibase.default_charset
+ibase.default_db
+ibase.default_password
+ibase.default_user
+ibase.max_links
+ibase.max_persistent
+ibase.timeformat
+ibase.timestampformat
+ibm_db2.binmode
+ibm_db2.i5_all_pconnect
+ibm_db2.i5_allow_commit
+ibm_db2.i5_dbcs_alloc
+ibm_db2.i5_ignore_userid
+ibm_db2.instance_name
+iconv.input_encoding
+iconv.internal_encoding
+iconv.output_encoding
+igbinary.compact_strings
+ignore_repeated_errors
+ignore_repeated_source
+ignore_user_abort
+imagick.locale_fix
+imagick.progress_monitor
+imagick.skip_version_check
+imap.enable_insecure_rsh
+implicit_flush
+include_path
+input_encoding
+internal_encoding
+intl.default_locale
+intl.error_level
+intl.use_exceptions
+ldap.max_links
+log_errors
+log_errors_max_len
+magic_quotes_gpc
+magic_quotes_runtime
+mail.add_x_header
+mail.force_extra_parameters
+mail.log
+mailparse.def_charset
+max_execution_time
+max_file_uploads
+max_input_nesting_level
+max_input_time
+max_input_vars
+mbstring.detect_order
+mbstring.encoding_translation
+mbstring.func_overload
+mbstring.http_input
+mbstring.http_output
+mbstring.http_output_conv_mimetypes
+mbstring.internal_encoding
+mbstring.language
+mbstring.regex_retry_limit
+mbstring.regex_stack_limit
+mbstring.strict_detection
+mbstring.substitute_character
+mcrypt.algorithms_dir
+mcrypt.modes_dir
+memcache.allow_failover
+memcache.chunk_size
+memcache.compress_threshold
+memcache.default_port
+memcache.hash_function
+memcache.hash_strategy
+memcache.lock_timeout
+memcache.max_failover_attempts
+memcache.protocol
+memcache.redundancy
+memcache.session_redundancy
+memcached.compression_factor
+memcached.compression_threshold
+memcached.compression_type
+memcached.default_binary_protocol
+memcached.default_connect_timeout
+memcached.default_consistent_hash
+memcached.serializer
+memcached.sess_binary
+memcached.sess_binary_protocol
+memcached.sess_connect_timeout
+memcached.sess_consistent_hash
+memcached.sess_consistent_hash_type
+memcached.sess_lock_expire
+memcached.sess_lock_retries
+memcached.sess_lock_wait
+memcached.sess_lock_wait_max
+memcached.sess_lock_wait_min
+memcached.sess_locking
+memcached.sess_number_of_replicas
+memcached.sess_persistent
+memcached.sess_prefix
+memcached.sess_randomize_replica_read
+memcached.sess_remove_failed
+memcached.sess_remove_failed_servers
+memcached.sess_sasl_password
+memcached.sess_sasl_username
+memcached.sess_server_failure_limit
+memcached.store_retry_count
+memcached.use_sasl
+memory_limit
+mysql.allow_local_infile
+mysql.allow_persistent
+mysql.connect_timeout
+mysql.default_host
+mysql.default_password
+mysql.default_port
+mysql.default_socket
+mysql.default_user
+mysql.max_links
+mysql.max_persistent
+mysql.trace_mode
+mysqli.allow_local_infile
+mysqli.allow_persistent
+mysqli.default_host
+mysqli.default_port
+mysqli.default_pw
+mysqli.default_socket
+mysqli.default_user
+mysqli.local_infile_directory
+mysqli.max_links
+mysqli.max_persistent
+mysqli.reconnect
+mysqli.rollback_on_cached_plink
+mysqlnd.collect_memory_statistics
+mysqlnd.collect_statistics
+mysqlnd.debug
+mysqlnd.fetch_data_copy
+mysqlnd.log_mask
+mysqlnd.mempool_default_size
+mysqlnd.net_cmd_buffer_size
+mysqlnd.net_read_buffer_size
+mysqlnd.net_read_timeout
+mysqlnd.sha256_server_public_key
+mysqlnd.trace_alloc
+oci8.connection_class
+oci8.default_prefetch
+oci8.events
+oci8.max_persistent
+oci8.old_oci_close_semantics
+oci8.persistent_timeout
+oci8.ping_interval
+oci8.prefetch_lob_size
+oci8.privileged_connect
+oci8.statement_cache_size
+odbc.allow_persistent
+odbc.check_persistent
+odbc.default_cursortype
+odbc.default_db
+odbc.default_pw
+odbc.default_user
+odbc.defaultbinmode
+odbc.defaultlrl
+odbc.max_links
+odbc.max_persistent
+opcache.blacklist_filename
+opcache.cache_id
+opcache.consistency_checks
+opcache.dups_fix
+opcache.enable
+opcache.enable_cli
+opcache.enable_file_override
+opcache.error_log
+opcache.fast_shutdown
+opcache.file_cache
+opcache.file_cache_consistency_checks
+opcache.file_cache_fallback
+opcache.file_cache_only
+opcache.file_update_protection
+opcache.force_restart_timeout
+opcache.huge_code_pages
+opcache.inherited_hack
+opcache.interned_strings_buffer
+opcache.jit
+opcache.jit_bisect_limit
+opcache.jit_blacklist_root_trace
+opcache.jit_blacklist_side_trace
+opcache.jit_buffer_size
+opcache.jit_debug
+opcache.jit_hot_func
+opcache.jit_hot_loop
+opcache.jit_hot_return
+opcache.jit_hot_side_exit
+opcache.jit_max_exit_counters
+opcache.jit_max_loop_unrolls
+opcache.jit_max_polymorphic_calls
+opcache.jit_max_recursive_calls
+opcache.jit_max_recursive_returns
+opcache.jit_max_root_traces
+opcache.jit_max_side_traces
+opcache.jit_prof_threshold
+opcache.lockfile_path
+opcache.log_verbosity_level
+opcache.max_accelerated_files
+opcache.max_file_size
+opcache.max_wasted_percentage
+opcache.memory_consumption
+opcache.mmap_base
+opcache.opt_debug_level
+opcache.optimization_level
+opcache.preferred_memory_model
+opcache.preload
+opcache.preload_user
+opcache.protect_memory
+opcache.record_warnings
+opcache.restrict_api
+opcache.revalidate_freq
+opcache.revalidate_path
+opcache.save_comments
+opcache.use_cwd
+opcache.validate_permission
+opcache.validate_root
+opcache.validate_timestamps
+open_basedir
+openssl.cafile
+openssl.capath
+output_buffering
+output_encoding
+output_handler
+pcre.backtrack_limit
+pcre.jit
+pcre.recursion_limit
+pdo_odbc.connection_pooling
+pdo_odbc.db2_instance_name
+pdo.dsn
+pgsql.allow_persistent
+pgsql.auto_reset_persistent
+pgsql.ignore_notice
+pgsql.log_notice
+pgsql.max_links
+pgsql.max_persistent
+phar.cache_list
+phar.readonly
+phar.require_hash
+phpdbg.eol
+phpdbg.path
+precision
+post_max_size
+realpath_cache_size
+realpath_cache_ttl
+register_argc_argv
+report_memleaks
+report_zend_debug
+request_order
+runkit.internal_override
+runkit.superglobal
+seaslog.appender
+seaslog.appender_retry
+seaslog.buffer_disabled_in_cli
+seaslog.buffer_size
+seaslog.default_basepath
+seaslog.default_datetime_format
+seaslog.default_logger
+seaslog.default_template
+seaslog.disting_by_hour
+seaslog.disting_folder
+seaslog.disting_type
+seaslog.ignore_warning
+seaslog.level
+seaslog.recall_depth
+seaslog.remote_host
+seaslog.remote_port
+seaslog.remote_timeout
+seaslog.throw_exception
+seaslog.trace_error
+seaslog.trace_exception
+seaslog.trace_notice
+seaslog.trace_warning
+seaslog.trim_wrap
+seaslog.use_buffer
+sendmail_from
+sendmail_path
+serialize_precision
+session.auto_start
+session.cache_expire
+session.cache_limiter
+session.cookie_domain
+session.cookie_httponly
+session.cookie_lifetime
+session.cookie_path
+session.cookie_samesite
+session.cookie_secure
+session.entropy_file
+session.entropy_length
+session.gc_divisor
+session.gc_maxlifetime
+session.gc_probability
+session.hash_bits_per_character
+session.hash_function
+session.lazy_write
+session.name
+session.referer_check
+session.save_handler
+session.save_path
+session.serialize_handler
+session.sid_bits_per_character
+session.sid_length
+session.trans_sid_hosts
+session.trans_sid_tags
+session.upload_progress.cleanup
+session.upload_progress.enabled
+session.upload_progress.freq
+session.upload_progress.min_freq
+session.upload_progress.name
+session.upload_progress.prefix
+session.use_cookies
+session.use_only_cookies
+session.use_strict_mode
+session.use_trans_sid
+short_open_tag
+smtp
+smtp_port
+soap.wsdl_cache
+soap.wsdl_cache_dir
+soap.wsdl_cache_enabled
+soap.wsdl_cache_limit
+soap.wsdl_cache_ttl
+sql.safe_mode
+sqlite3.defensive
+sqlite3.extension_dir
+stomp.default_broker
+stomp.default_connection_timeout_sec
+stomp.default_connection_timeout_usec
+stomp.default_read_timeout_sec
+stomp.default_read_timeout_usec
+swoole.aio_thread_num
+swoole.display_errors
+swoole.enable_coroutine
+swoole.enable_library
+swoole.enable_preemptive_scheduler
+swoole.fast_serialize
+swoole.unixsock_buffer_size
+swoole.use_namespace
+swoole.use_shortname
+sys_temp_dir
+syslog.facility
+syslog.filter
+syslog.ident
+sysvshm.init_mem
+taint.enable
+taint.error_level
+tidy.clean_output
+tidy.default_config
+track_errors
+trader.real_precision
+trader.real_round_mode
+unserialize_callback_func
+unserialize_max_depth
+uopz.disable
+uopz.exit
+uopz.overloads
+upload_max_filesize
+upload_tmp_dir
+uploadprogress.file.filename_template
+url_rewriter.hosts
+url_rewriter.tags
+user_agent
+user_dir
+user_ini.cache_ttl
+user_ini.filename
+v8js.flags
+v8js.max_disposed_contexts
+variables_order
+vld.active
+vld.execute
+vld.skip_append
+vld.skip_prepend
+wincache.chkinterval
+wincache.enablecli
+wincache.fcachesize
+wincache.fcenabled
+wincache.fcenabledfilter
+wincache.fcndetect
+wincache.filecount
+wincache.filemapdir
+wincache.ignorelist
+wincache.maxfilesize
+wincache.namesalt
+wincache.ocachesize
+wincache.ocenabled
+wincache.ocenabledfilter
+wincache.reroute_enabled
+wincache.rerouteini
+wincache.scachesize
+wincache.srwlocks
+wincache.ttlmax
+wincache.ucachesize
+wincache.ucenabled
+windows.show_crt_warning
+wkhtmltox.graphics
+xbithack
+xhprof.output_dir
+xmlrpc_error_number
+xmlrpc_errors
+yac.compress_threshold
+yac.debug
+yac.enable
+yac.enable_cli
+yac.keys_memory_size
+yac.serializer
+yac.values_memory_size
+yaconf.check_delay
+yaconf.directory
+yaf.action_prefer
+yaf.cache_config
+yaf.environ
+yaf.forward_limit
+yaf.library
+yaf.lowcase_path
+yaf.name_separator
+yaf.name_suffix
+yaf.use_namespace
+yaf.use_spl_autoload
+yaml.decode_binary
+yaml.decode_php
+yaml.decode_timestamp
+yaml.output_canonical
+yaml.output_indent
+yaml.output_width
+yar.connect_timeout
+yar.debug
+yar.expose_info
+yar.packager
+yar.timeout
+yaz.keepalive
+yaz.log_mask
+zend_extension
+zend.assertions
+zend.detect_unicode
+zend.enable_gc
+zend.exception_ignore_args
+zend.exception_string_param_max_len
+zend.multibyte
+zend.script_encoding
+zend.signal_check
+zlib.output_compression
+zlib.output_compression_level
+zlib.output_handler
+zookeeper.recv_timeout
+zookeeper.sess_lock_wait
+zookeeper.session_lock
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/php-errors-pl2.data b/pkg/render/applicationlayer/embed/coreruleset/rules/php-errors-pl2.data
new file mode 100644
index 0000000000..b1d7761fa9
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/php-errors-pl2.data
@@ -0,0 +1,6 @@
+# For more information, see comments at the beginning of the php-errors.data file.
+
+File size is
+Invalid date
+Static function
+The function
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/php-errors.data b/pkg/render/applicationlayer/embed/coreruleset/rules/php-errors.data
new file mode 100644
index 0000000000..c0d6201bb2
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/php-errors.data
@@ -0,0 +1,2146 @@
+# The contents of this list come from the [PHP source code](https://github.com/php/php-src).
+#
+# There are different types of errors that might be thrown. An easy way to discover them is to
+# get any text that comes from the error handling functions: `zend_error`, `zend_throw_error`, `soap_error0`, etc.
+# Using the regexp `_error([0-9])?\(` will give you all. And you can see them using:
+# `grep -h -E -r -o --exclude="*.phpt" '\w+_error([0-9])?\(' * | sort | uniq`
+#
+# After getting the list, there are two different types of errors: those with literal text, and those that include
+# print format args like `%s`, `%d`, `%zu`, etc. We sort them in two groups.
+#
+# The first group is just anything without formatting args. Only text, sorted ascending. Command used:
+#   - `grep -E -h -r --exclude="*.phpt" '_error([0-9])?\(' * | awk -F\" '{ print $2;} ' | sed -e 's/ \\$/ "/g' | sort | uniq | grep -v '%'`
+# Post processing might be necessary to adjust strings that can cause false positives, such as
+# - line is very short
+# - line is a (partial) common English sentence, like `Can use`, `Attribute`, etc.
+# - text coming from php unit/regression tests, like 'DROP TABLE IF EXISTS test_bug_71863`
+#
+# The second group will be the part with format strings. Only text, sorted ascending.
+# This will need a more careful processing. The format string will appear in the text result,
+# but it will (of course) be substituted by some variable value. So we need to clean more text here.
+# The easiest way is to split a line whenever a format string is found. This will shorten the texts but,
+# then we can sort out the ones we don't want to include more easily.
+# We also remove:
+# - text with just one word (likely to be FP), or one word, one space (optional) and one non-word (optional),
+#   which will match things like `Collect "`, `Method` or `Class `.
+#
+# Command used:
+#   - `grep -E -h -r --exclude="*.phpt" '_error([0-9])?\(' * | awk -F\" '/%/ { print $2;} ' | sed -e 's/ \\$/ "/g' -e 's/%[zlp][ud]/\n/g' -e 's/%[a-z]/\n/g'  -e 's/%\.\*s/\n/g' | sort | uniq | grep -E -v '^\w+\s?\W?$' | grep -E -v '^\W+$'
+#
+# Anything that is too short, or nonsense, we remove.
+
+# Group without format strings
+
+API is restricted by "
+can't be temporary enabled (it may be only disabled till the end of request)
+has not been properly started, can't compile file
+is not a valid backing value for enum "
+# is too long
+# &
+# *
+# **
+# +
+# -
+# /
+64-bit format codes are not available for 32-bit versions of PHP
+# :
+: module registration failed!
+: opcache.huge_code_pages has no affect as huge page is not supported
+# ???
+A 'day of year' can only come after a year has been found
+A PHP Object cannot be converted to a XPath-string
+A four digit ISO year could not be found
+A four digit year could not be found
+A meridian could not be found
+A non-numeric value encountered
+A single digit day of week could not be found
+A six digit microsecond could not be found
+A textual day could not be found
+A textual month could not be found
+A thread value other than 1 is not supported by this implementation
+A three digit day-of-year could not be found
+A three digit millisecond could not be found
+A two digit ISO week could not be found
+A two digit day could not be found
+A two digit hour could not be found
+A two digit minute could not be found
+A two digit month could not be found
+A two digit second could not be found
+A two digit year could not be found
+Access violation (Segmentation fault) encountered\ntrying to abort cleanly...
+Address buffer overflow
+An error occurred while invoking the authorizer callback
+An iterator cannot be used with foreach by reference
+Apache is running a threaded MPM, but your PHP Module is not compiled to be threadsafe.  You need to recompile PHP.
+Array and string offset access syntax with curly braces is no longer supported
+Array callback has to contain indices 0 and 1
+Array callback must have exactly two elements
+Array of functions is not allowed
+Array of incomplete type is not allowed
+Array of object IDs cannot be empty
+Array of values must be an associative array with string keys
+Array of void type is not allowed
+Array sizes are inconsistent
+Array to string conversion
+Attempt to assign an invalid callback, insufficient number of arguments
+Attempt to assign element of non C array
+Attempt to assign property of non-object
+Attempt to assign read-only location
+Attempt to call non C function pointer
+Attempt to cast owned C pointer
+Attempt to count() on non C array
+Attempt to iterate on non C array
+Attempt to perform assign of owned C pointer
+Attempt to perform assign pointer to owned C data
+Attempt to read element of non C array
+Attempt to read over data boundary
+Attempt to read over string boundary
+Attempt to read property "
+Attempt to write over data boundary
+Attempting to set reference to non referenceable value
+Attempting to use non-attribute class "
+# Attribute "
+Attribute class "
+Automatic conversion of false to array is deprecated
+Backup failed: source database is busy
+Backup failed: source database is locked
+Bad GD2 header
+Bad scan conversion character "
+Bad unserialize data
+Bit field "
+Breakpoint exists at #
+Breakpoint exists for opline #
+C array index out of bounds
+CPU doesn't support SSE2
+CTRL events can only be received on the main thread
+CTRL events trapping is only supported on console
+Can only throw objects
+Can only use PDO::FETCH_FUNC in PDOStatement::fetchAll()
+# Can use "
+Can't bind a lob for output
+Can't cache files in chroot() directory with too big inode
+# Can't create a temporary mailbox:
+Can't initialize heap
+# Can't re-open '$new_mailbox' mailbox:
+Cannot access "
+Cannot access node list without offset
+Cannot access parser properties before loading data
+Cannot access property starting with "
+Cannot add element to the array as the next element is already occupied
+Cannot add newnode as the previous sibling of refnode
+Cannot add next element to object of type FFI\\CData
+Cannot allocate callback
+Cannot append to WeakMap
+Cannot append to an attribute list
+Cannot apply [] to ResourceBundle object
+Cannot assign an empty string to a string offset
+Cannot assign by reference to an array dimension of an object
+Cannot assign by reference to overloaded object
+Cannot bind an instance to a static closure
+Cannot call callback
+Cannot call constructor
+Cannot call default session handler
+Cannot call forward_static_call() when no class scope is active
+Cannot change opcache.jit setting at run-time (JIT is disabled)
+Cannot check dimension on a COM object
+Cannot compare DateInterval objects
+Cannot connect to HTTPS server through proxy
+# Cannot connect to IMAP server
+# Cannot connect to IMAP server $server:
+Cannot convert to resource type
+Cannot copy hash
+Cannot create duplicate attribute
+Cannot create unnamed attribute
+Cannot delete dimension from a COM object
+Cannot delete properties from a COM object
+Cannot directly construct AddressInfo, use socket_addrinfo_lookup() instead
+Cannot directly construct CurlHandle, use curl_init() instead
+Cannot directly construct CurlMultiHandle, use curl_multi_init() instead
+Cannot directly construct CurlShareHandle, use curl_share_init() instead
+Cannot directly construct DeflateContext, use deflate_init() instead
+Cannot directly construct FTP\\Connection, use ftp_connect() or ftp_ssl_connect() instead
+Cannot directly construct IMAP\\Connection, use imap_open() instead
+Cannot directly construct InflateContext, use inflate_init() instead
+Cannot directly construct LDAP\\Connection, use ldap_create() instead
+Cannot directly construct LDAP\\Result, use the dedicated functions instead
+Cannot directly construct LDAP\\ResultEntry, use the dedicated functions instead
+Cannot directly construct OpenSSLAsymmetricKey, use openssl_pkey_new() instead
+Cannot directly construct OpenSSLCertificate, use openssl_x509_read() instead
+Cannot directly construct OpenSSLCertificateSigningRequest, use openssl_csr_new() instead
+Cannot directly construct PgSql\\Connection, use pg_connect() or pg_pconnect() instead
+Cannot directly construct PgSql\\Lob, use pg_lo_open() instead
+Cannot directly construct PgSql\\Result, use a dedicated function instead
+Cannot directly construct Shmop, use shmop_open() instead
+Cannot directly construct Socket, use socket_create() instead
+Cannot directly construct SysvMessageQueue, use msg_get_queue() instead
+Cannot directly construct SysvSemaphore, use sem_get() instead
+Cannot directly construct SysvSharedMemory, use shm_attach() instead
+Cannot directly construct XMLParser, use xml_parser_create() or xml_parser_create_ns() instead
+Cannot directly construct mysqli_warning
+Cannot end an oplog without starting it
+Cannot fetch SoapServer object
+Cannot fetch all data from the symbol table, invalid data source
+Cannot fetch all the constants, invalid data source
+Cannot fetch information from a fiber that has not been started or is terminated
+Cannot fetch the callable from a fiber that has terminated
+Cannot fit all OIDs for SET query into one packet, using multiple queries
+Cannot free EnchantBroker object with open EnchantDictionary objects
+Cannot instantiate FFI\\CData of zero size
+Cannot instantiate user-supplied statement class
+Cannot leak variable that is not refcounted
+Cannot load module "
+Cannot lock mutex
+Cannot manually construct InternalIterator
+Cannot modify header information - headers already sent
+Cannot open "
+Cannot prepare callback
+Cannot prepare callback CIF
+Cannot re-assign $this
+Cannot read property
+Cannot rebind scope of closure created from function
+Cannot rebind scope of closure created from method
+Cannot register a reverse output handler conflict outside of MINIT
+Cannot register an output handler alias outside of MINIT
+Cannot register an output handler conflict outside of MINIT
+Cannot resume a fiber that is not suspended
+Cannot resume an already running generator
+Cannot start a fiber that has already been started
+Cannot start a fiber that is the target of another fiber
+Cannot suspend in a force-closed fiber
+Cannot suspend outside of a fiber
+Cannot switch fibers in current execution context
+Cannot throw objects that do not implement Throwable
+Cannot unbind $this of closure using $this
+Cannot unbind $this of method
+Cannot unset $this
+Cannot unset PDORow offset
+Cannot unset PDORow property
+Cannot unset offset in a non-array variable
+Cannot unset string offsets
+# Cannot use "
+Cannot use 'readonly' as method modifier
+Cannot use [] for reading
+Cannot use [] on objects in constant expression
+Cannot use a scalar value as an array
+Cannot use empty array elements in arrays
+Cannot use list() as standalone expression
+Cannot use object as array
+Cannot use temporary expression in write context
+Cannot write to PDORow offset
+Cannot write to PDORow property
+Cannot write to read-only property
+Cannot yield from finally in a force-closed generator
+Case folding mode must be one of the PDO::CASE_* constants
+# Class "
+Class name must be a valid object or a string
+Collator class not defined
+Column index must be greater than or equal to 0
+Comparison of incompatible C types
+Corrupt member variable name
+# Could not allocate parser
+Could not copy from temporary stream - ini file truncated
+Could not create WBMP
+Could not create gdImage
+Could not fetch data, invalid data source
+Could not fetch file name, invalid data source, aborting included file listing
+Could not fetch included file count, invalid data source
+Could not find information about included file...
+Could not get x-size
+Could not get y-size
+Could not read color palette
+Could not save WBMP
+Couldn't fetch backtrace, invalid data source
+Couldn't switch frames, invalid data source
+Data must be loaded before expanding
+Data must be loaded before reading
+DateFormat class not defined
+DatePeriod has not been initialized correctly
+DatePeriod::__construct() accepts (DateTimeInterface, DateInterval, int [, int]), or (DateTimeInterface, DateInterval, DateTime [, int]), or (string [, int]) as arguments
+DateTimeInterface can't be implemented by user classes
+Day of week must be between 1 and 7
+Different numbers of variable names and field specifiers
+Direct instantiation of WeakReference is not allowed, use WeakReference::create instead
+Directive oci8.old_oci_close_semantics is deprecated
+Directory object is already initialized
+Division by zero
+# Done
+# Done.
+Double date specification
+Double time specification
+Double timezone specification
+# Dummy
+Duplicate field name "
+During class fetch
+EOF before image was complete
+Empty string
+Empty string as an extension
+Encoding mode must be ZLIB_ENCODING_RAW, ZLIB_ENCODING_GZIP or ZLIB_ENCODING_DEFLATE
+Encoding: '*' may only be first arraySize value in list
+Encoding: Can't decode apache map, missing key
+Encoding: Can't decode apache map, missing value
+Encoding: Can't decode apache map, only Strings or Longs are allowed as keys
+Encoding: Cannot find encoding
+Encoding: Error calling from_xml callback
+Encoding: Error calling to_xml callback
+Encoding: Internal Error
+Encoding: Invalid timestamp
+Encoding: Restriction: invalid enumeration value "
+Encoding: Restriction: length greater than 'maxLength'
+Encoding: Restriction: length is not equal to 'length'
+Encoding: Restriction: length less than 'minLength'
+Encoding: SoapVar has no 'enc_type' property
+Encoding: Violation of encoding rules
+Encoding: object has no 'any' property
+Enumerator value "
+Epoch doesn't fit in a PHP integer
+Error casting object to string in collator_convert_object_to_string()
+Error converting utf16 to utf8 in collator_convert_zval_utf16_to_utf8()
+Error from compressing
+Error mode must be one of the PDO::ERRMODE_* constants
+Error reading comproessed chunk
+Escaped character expected
+Execution context not set!
+Expected array for frame
+FFI API is restricted by "
+FFI internal error. Unsupported parameter type
+FFI internal error. Unsupported return type
+FFI passing array is not implemented
+FFI passing struct/union is not implemented
+FFI return array is not implemented
+FFI return struct/union is not implemented
+FFI::load() doesn't work in conjunction with "
+FFI\\CData
+FFI\\CData or FFI\\CType
+FFI\\CData or string
+FFI\\CType is not a function
+FFI\\CType is not a pointer
+FFI\\CType is not a structure
+FFI\\CType is not an array
+FFI\\CType is not an enumeration
+FFI\\Cdata is not a C string
+FFI\\Cdata is not a pointer
+FTP does not support simultaneous read/write connections
+FTP proxy may only be used in read mode
+Fail to read header
+Failed to clone SpoofChecker object
+Failed to create closure from callable
+Failed to find breakpoint #
+Failed to read property due to libxml error
+Fetch mode must be a bitmask of PDO::FETCH_* constants
+File Upload Mime headers garbled
+File name is not a string
+File upload error - unable to create a temporary file
+Filename cannot be empty
+First array member is not a valid class name or object
+Format literal not found
+Found unconstructed BreakIterator
+Found unconstructed IntlCalendar
+Found unconstructed IntlDateFormatter
+Found unconstructed IntlDatePatternGenerator
+Found unconstructed IntlIterator
+Found unconstructed IntlTimeZone
+Found unconstructed MessageFormatter
+Found unconstructed NumberFormatter
+Found unconstructed ResourceBundle
+Found unconstructed Spoofchecker
+Found unconstructed transliterator
+Found unexpected data
+Freeing memory
+GC buffer overflow (GC disabled)\n
+Generated salt too short
+Generator already closed
+Generator currently running
+Generator passed to yield from was aborted without proper return and is unable to continue
+Get commit status
+Glob support is not available
+Got chunk
+HTTP request failed!
+HTTP wrapper does not support writeable connections
+HY000
+HY093
+HY105
+Handler name must be a string
+Header "
+Header may not contain
+Header may not contain NUL bytes
+Header name "
+Header name cannot be numeric,
+Header to delete may not contain colon.
+Hour cannot be higher than 12
+IM001
+ISO Week must be between 1 and 53
+Ignoring session_start() because a session has already been started
+Illegal member variable name
+Illegal offset type
+Illegal offset type in isset or empty
+Illegal offset type in unset
+Illegal string offset
+# Illegal string offset "
+Implicit conversion from float-string "
+Impossible to not specify a stdin delimiter without -rr
+Impossible to yield from the Generator being currently run
+Incompatible types when assigning
+Incomplete enum "
+Incomplete struct "
+Incomplete union "
+# Incorrect "
+Input string is too long
+Instantiation of class Closure is not allowed
+Insufficient data for unserializing -
+# Interface "
+Internal error: Failed to retrieve the argument's reflection object
+Internal error: Failed to retrieve the reflection object
+Internal help error, non-unique alias "
+Interned string buffer overflow
+IntlCalendar::set() has no variant with exactly 4 parameters
+IntlGregorianCalendar object is already constructed
+IntlRuleBasedBreakIterator object is already constructed
+# Invalid "
+Invalid OID value passed
+Invalid RelaxNG Validation Context
+Invalid Schema Validation Context
+Invalid XBM
+Invalid XPath Context
+Invalid arguments to print, expected nothing, function name or method name
+Invalid bcrypt cost parameter specified:
+Invalid boundary in multipart/form-data POST data
+Invalid browscap ini file:
+Invalid characters passed for attempted conversion, these have been ignored
+Invalid column index
+Invalid document encoding
+Invalid finfo object
+Invalid number of threads
+Invalid object handle
+Invalid or uninitialized EnchantBroker object
+Invalid or uninitialized EnchantDictionary object
+Invalid or uninitialized SNMP object
+Invalid or uninitialized XMLWriter object
+Invalid or uninitialized Zip object
+Invalid parameter type for conditional breakpoint
+Invalid run command, cannot put further arguments after stdin
+Invalid run command, unterminated escape sequence
+Invalid scanner mode
+Invalid serialization data for DatePeriod object
+Invalid serialization data for DateTime object
+Invalid serialization data for DateTimeImmutable object
+Invalid serialization data for DateTimeZone object
+Invalid stream/context parameter
+Invalid timezone offset in minutes
+Iterated value is no longer an array or object
+Iterator does not support rewinding
+Iterator not initialized or already consumed
+JIT is compatible only with CALL and HYBRID VM. JIT disabled.
+JIT is incompatible with third party extensions that override zend_execute_ex(). JIT disabled.
+JIT is incompatible with third party extensions that setup user opcode handlers. JIT disabled.
+Key array must be of the form array(0 => key, 1 => phrase)
+LDAP connection has already been closed
+LDAP result has already been closed
+Length is too large to safely generate
+Line is not an int
+Locale class not defined
+Malformed input
+Maximum number of allowable file uploads has been exceeded
+Memory Manager Disabled!
+Memory allocation failed for IP_ADAPTER_ADDRESSES struct
+Memory cost is outside of allowed memory range
+Meridian can only come after an hour has been found
+Method name must be a string
+Missing boundary in multipart/form-data POST data
+Missing expected time part
+Missing format specifier at end of string
+Missing padding character
+Missing redirection target
+Mixing of ISO dates with natural dates is not allowed
+Mode must be one of 'r', 'r+', 'w', or 'w+'
+Modification of ArrayObject during sorting is prohibited
+# Module "
+Multi OID walks are not supported!
+NULL pointer dereference
+Nanoseconds was not in the range 0 to 999 999 999 or seconds was negative
+Negative width in bit-field "
+No PostgreSQL connection opened yet
+No URL resource specified
+No active class
+No active op array!
+No active symbol table!
+No execution context
+No execution context set
+No file uploaded
+No function table loaded
+# No key "
+No more entries in hash table!
+No pattern was provided
+No resource supplied
+No security protocol supported
+No session id returned by function
+No set command selected!
+No stream arrays were passed
+No string was provided
+No variant with 4 arguments (excluding trailing NULLs)
+Node from wrong document
+Node must be associated with a document
+Normalizer class not defined
+Not Executing!
+Not a full path given or extension_dir ini setting is not set
+Not a valid gd2 file
+Not enough data available to satisfy format
+Not enough free shared space to allocate
+# Not executing
+# Not executing!
+Not executing, and execution context not set
+# Not running
+Not supported in multithreaded Web servers
+# Not yet implemented
+Nothing to execute!
+Nothing was deleted, no corresponding watchpoint found
+Number is not an integer string
+Number of bind variables doesn't match number of fields in prepared statement
+NumberFormatter class not defined
+NumberFormatter object is already constructed
+OCIAttrGet: OCI_ATTR_CALL_TIMEOUT
+OCIAttrSet: OCI_ATTR_ACTION
+OCIAttrSet: OCI_ATTR_CALL_TIMEOUT
+OCIAttrSet: OCI_ATTR_CLIENT_IDENTIFIER
+OCIAttrSet: OCI_ATTR_CLIENT_INFO
+OCIAttrSet: OCI_ATTR_MODULE
+OCIAttrSet: OCI_ATTR_PASSWORD
+OCIAttrSet: OCI_ATTR_SERVER
+OCIAttrSet: OCI_ATTR_SESSION
+OCIAttrSet: OCI_ATTR_USERNAME
+OCIEnvNlsCreate: Check the character set is valid and that PHP has access to Oracle libraries and NLS data
+OCIHandleAlloc: OCI_HTYPE_SESSION
+OCIHandleAlloc: OCI_HTYPE_SVCCTX
+OCINlsCharSetNameToId: unknown character set name
+OCINlsNumericInfoGet: OCI_NLS_CHARSET_MAXBYTESZ
+OCIServerDetach
+OCISessionBegin
+OCIStmtExecute
+OCIStmtFetch
+OCIStmtPrepare
+OCITransCommit
+OCITransRollback
+OCI_NEED_DATA
+Object is not initialized
+Object not initialized
+One parameter to a memory allocation multiplication is negative or zero, failing operation gracefully\n
+Only 'cdata' property may be read
+Only 'cdata' property may be set
+Only arrays and Traversables can be unpacked
+Only classes can be marked with #[ZendTestAttribute]
+Only the first byte will be assigned to the string offset
+Only the leftmost array can be undimensioned
+Only variable references should be returned by reference
+Only variable references should be yielded by reference
+Only variables should be assigned by reference
+Only variables should be passed by reference
+# Option "
+Options should have the form [\
+Out of memory
+Overflow in enumeration values "
+PDO object is not initialized, constructor was not called
+PDO object is uninitialized
+PDO::ATTR_STATEMENT_CLASS class must be a valid class
+PDO::ATTR_STATEMENT_CLASS class must be derived from PDOStatement
+PDO::ATTR_STATEMENT_CLASS value must be an array with the format
+PDO::FETCH_INTO and PDO::FETCH_CLASS cannot be set as the default fetch mode
+PNG support is not available
+POST Content-Length of
+Pair level
+Paletter image not supported by webp
+Parser must not be called recursively
+Parsing Schema: <restriction> or <extension> expected in complexContent
+Parsing Schema: attribute has both 'ref' and 'type' attributes
+Parsing Schema: attribute has both 'ref' attribute and subtype
+Parsing Schema: attribute has both 'type' attribute and subtype
+Parsing Schema: attribute has no 'name' nor 'ref' attributes
+Parsing Schema: attributeGroup has both 'ref' attribute and subattribute
+Parsing Schema: attributeGroup has no 'name' nor 'ref' attributes
+Parsing Schema: can't import schema. Namespace must not match the enclosing schema 'targetNamespace'
+Parsing Schema: complexType has no 'name' attribute
+Parsing Schema: element has both 'default' and 'fixed' attributes
+Parsing Schema: element has both 'itemType' attribute and subtype
+Parsing Schema: element has both 'ref' and 'fixed' attributes
+Parsing Schema: element has both 'ref' and 'nillable' attributes
+Parsing Schema: element has both 'ref' and 'type' attributes
+Parsing Schema: element has both 'ref' attribute and subtype
+Parsing Schema: element has both 'type' attribute and subtype
+Parsing Schema: element has no 'name' nor 'ref' attributes
+Parsing Schema: expected <restriction> or <extension> in simpleContent
+Parsing Schema: expected <restriction>, <list> or <union> in simpleType
+Parsing Schema: extension has no 'base' attribute
+Parsing Schema: group has both 'ref' attribute and subcontent
+Parsing Schema: group has no 'name' nor 'ref' attributes
+Parsing Schema: include has no 'schemaLocation' attribute
+Parsing Schema: missing restriction value
+Parsing Schema: redefine has no 'schemaLocation' attribute
+Parsing Schema: restriction has no 'base' attribute
+Parsing Schema: simpleType has no 'name' attribute
+Parsing WSDL: <binding> has no name attribute
+Parsing WSDL: <message> has no name attribute
+Parsing WSDL: <portType> has no name attribute
+Parsing WSDL: <service> has no name attribute
+Parsing WSDL: Could not find any usable binding services in WSDL.
+Parsing WSDL: Couldn't bind to service
+Parsing WSDL: Missing 'name' attribute for <binding>
+Parsing WSDL: Missing 'name' attribute for <operation>
+Parsing WSDL: Missing 'type' attribute for <binding>
+Parsing WSDL: Missing message attribute for <header>
+Parsing WSDL: Missing part attribute for <header>
+Parsing WSDL: No address associated with <port>
+Parsing WSDL: No binding associated with <port>
+Parsing WSDL: No location associated with <port>
+Parsing WSDL: Unspecified encodingStyle
+Password hashing failed for unknown reason
+Password is too long
+Path cannot be empty
+Path to document must not contain any null bytes
+PostgreSQL connection has already been closed
+PostgreSQL large object has already been closed
+PostgreSQL result has already been closed
+Precision must be an integer
+Preloading doesn't work in "
+Preloading failed to initgroups(\
+Preloading is incompatible with first-exec and profile triggered JIT
+Private methods cannot be final as they are never overridden by other classes
+Product of memory allocation multiplication would exceed INT_MAX, failing operation gracefully\n
+Property access is not allowed yet
+Property queryString is read only
+Putting buf...
+Putting int...
+Putting word...
+Read Error: truncated data
+Read-only segment cannot be written
+Reading file
+Reading gd2 header info
+Recursion detected
+Redeclaration of "
+Redefinition of "
+Redirection limit reached, aborting
+Registered tick function cannot be unregistered while it is being executed
+Remote file already exists and overwrite context option not specified
+ResourceBundle does not support writable iterators
+ResourceBundle object is already constructed
+Restarting!
+Returning by reference from a void function is deprecated
+SNMP output print format must be an SNMP_OID_OUTPUT_* constant
+SNMP retrieval method must be a bitmask of SNMP_VALUE_LIBRARY, SNMP_VALUE_PLAIN, and SNMP_VALUE_OBJECT
+SNMP::$max_oids must be greater than 0 or null
+SOAP-ERROR:
+SQLAllocHandle (DBC)
+SQLAllocHandle: STMT
+SQLAllocStmt
+SQLBindCol
+SQLBindParameter
+SQLColAttribute
+SQLColumnPrivileges
+SQLColumns
+SQLConnect
+SQLDataSources
+SQLDescribeCol
+SQLDescribeParameter
+SQLDriverConnect
+SQLEndTran: Commit
+SQLEndTran: Rollback
+SQLExecDirect
+SQLExecute
+SQLFetchScroll
+SQLForeignKeys
+SQLFreeStmt
+SQLGetCursorName
+SQLGetData
+SQLGetTypeInfo
+SQLMoreResults
+SQLPrepare
+SQLPrimaryKeys
+SQLProcedureColumns
+SQLProcedures
+SQLRowCount
+SQLSetConnectAttr AUTOCOMMIT
+SQLSetConnectAttr AUTOCOMMIT = OFF
+SQLSetConnectAttr AUTOCOMMIT = ON
+SQLSetConnectAttr SQL_ODBC_CURSORS
+SQLSetConnectOption
+SQLSetCursorName
+SQLSetEnvAttr: ODBC3
+SQLSetEnvAttr: SQL_ATTR_CP_MATCH
+SQLSetStmtAttr: SQL_ATTR_CURSOR_SCROLLABLE
+SQLSpecialColumns
+SQLStatistics
+SQLTablePrivileges
+SQLTables
+SQLTransact
+SQLite Extension are disabled
+SSL: failed invoking reneg limit notification callback
+SSL: failed loading CA names from cafile
+Schema must be set prior to reading
+Second array member is not a valid method
+Security level must be one of "
+Security protocol must be "
+Security protocol must be one of "
+Seeking...
+Server doesn't support FTPS.
+Session id must be a string
+Session is not active
+Set autocommit
+SetConnectOption
+SetStmtOption
+Shared memory block has already been destroyed
+SimpleXMLElement is not properly initialized
+SoapHeader::__construct(): "
+SoapServer::addFunction(): Function "
+SoapServer::addSoapHeader() may be called only during SOAP request processing
+SoapServer::setPersistence(): Persistence cannot be set when the SOAP server is used in function mode
+Some opcache.jit_debug bits cannot be changed after startup
+Spoofchecker class not defined
+String offset cast occurred
+String size overflow
+TCP/IP option is not available for error logging
+Telling...
+# The
+# The "
+The (unset) cast is no longer supported
+The DateTime object has not been correctly initialized by its constructor
+The InternalIterator object has not been properly initialized
+The additional headers cannot contain the "
+The authorizer callback returned an invalid type: expected int
+The authorizer callback returned an invalid value
+The command "
+The driver_version property is deprecated
+The escaped character could not be found
+The filter.default ini setting is deprecated
+The first parameter in session.save_path is invalid
+The first parameter makes no sense !
+The format separator does not match
+The inner constructor wasn't initialized with an iterator instance
+The number of elements in the type definition string must match the number of bind variables
+The number of variables must match the number of parameters in the prepared statement
+The object is in an invalid state as the parent constructor was not called
+The parent constructor was not called: the object is in an invalid state
+The passed argument was not a stack !
+The second parameter in session.save_path is invalid
+The separation symbol ([;:/.,-]) could not be found
+The separation symbol could not be found
+The stack contains nothing !
+The timezone could not be found in the database
+This shared object is nor a Zend extension nor a module
+Throwing from FFI callbacks is not allowed
+Time cost is outside of allowed time range
+Timezone database is corrupt. Please file a bug report as this should never happen
+Timezone initialization failed
+Too many arguments
+Trailing data
+Trait "
+Transliterator class not defined
+Transliterator::$id is read-only
+Trying to compare uninitialized DateTimeZone objects
+Type float/double is not allowed at position
+Type must be a single character
+Type must be of type string when object ID is a string
+Unable to activate SSL mode
+Unable to bind parameter number
+Unable to call custom replacement function
+Unable to cast node to string
+Unable to find my handle property
+Unable to generate salt
+Unable to initialize the input buffer
+Unable to open extensions outside the defined directory
+Unable to resume from offset
+Unconstructed Transliterator object cannot be cloned
+Undefined C type "
+Undefined array key
+Undefined array key "
+Undefined constant "
+Undefined period specifier
+Undefined variable $this
+Unexpected character
+Unexpected data found.
+Unexpected failure hashing password
+Uninitialized string offset
+Unknown SOAP version
+Unknown and uncaught modification type.
+Unknown file open mode
+Unknown format specifier "
+Unknown reason
+Unmatched [ in format string
+Unsupported "
+Unsupported argument type
+Unsupported attribute "
+Unsupported attribute type
+Unsupported constant expression
+Unsupported operand types
+Use after free()
+# Use of "
+User-supplied function must be a valid callback
+User-supplied statement class cannot have a public constructor
+User-supplied statement does not accept constructor arguments
+Using $this when not in object context
+Using ${expr} (variable variables) in strings is deprecated, use {${expr}} instead
+Using ${var} in strings is deprecated, use {$var} instead
+Using raw format data
+Value must be of type string when object ID is a string
+Variable is not assigned by any conversion specifiers
+Variadic function closures are not supported
+VirtualAlloc() failed
+VirtualFree() failed
+WeakMap key must be an object
+WebP decode: realloc failed
+Width must be an integer
+# Width of "
+Writing index
+Wrong argument number
+Wrong field name
+Wrong type of bit field "
+XMLReader::expand() requires the DOM extension to be enabled
+XPath query did not return a nodeset
+Year out of range (0-9999)
+You MUST load PDO before loading any PDO drivers
+You cannot initialize a GdFont object except through helper functions
+You cannot initialize a GdImage object except through helper functions
+You cannot initialize a PSpell\\Config object except through helper functions
+You cannot initialize a PSpell\\Dictionary object except through helper functions
+You should not create a tidyNode manually
+Zero width in bit-field "
+[] operator not supported for SplFixedArray
+[] operator not supported for strings
+# \
+# ^
+__clone method called on non-object
+and argument #2 ($string_2) must have the same length
+and argument #2 ($values) must have the same number of elements
+args element is not an array
+# array
+attempt to cast to larger type
+attempt to read over data boundary
+attempt to read over string boundary
+attempt to use a closed file
+attempt to write over data boundary
+auto_detect_line_endings is deprecated
+avif error - Could not allocate memory
+avif error - Could not create GD truecolor image
+avif error - avif doesn't support palette images
+avif error - couldn't allocate memory
+avif error - image dimensions are too large
+avif error - image dimensions must not be zero
+bad type specifier while parsing parameters
+c-client imap_getacl failed
+call a method
+# calling
+can't allocate continuation
+can't re-open '$new_mailbox' mailbox:
+# cannot be "
+cannot be 0 for the POSIX_S_IFCHR and POSIX_S_IFBLK modes
+cannot be PDO::FETCH_LAZY in PDOStatement::fetchAll()
+cannot be a class constant
+cannot be a recursive array
+cannot be an array when working on a single string
+cannot be empty
+cannot be empty when HMAC is requested
+cannot be null for non-static methods
+cannot be null for the chosen cipher algorithm
+cannot be null when argument #1 ($objectOrMethod) is an object
+cannot be null when argument #2 ($name) is a string
+cannot be null when argument #2 ($wrapper_or_options) is a string
+cannot be null when argument #3 ($atime) is an integer
+cannot be null when the socket type is AF_INET
+cannot be null when the socket type is AF_INET6
+cannot be provided when argument #2 ($wrapper_or_options) is an array
+cannot be true when argument #2 ($width) is 0
+cannot change a protected metatable
+cannot combine mode "
+# cannot contain
+# cannot contain "
+cannot contain empty keys
+cannot create tempnam
+cannot have a fractional part
+cannot use multiple endian options
+cannot use multiple word order options
+connect.inc: Failed to connect as '$user' to '$dbase':
+contains a closed socket
+contains an invalid cURL option
+contains invalid encoding "
+corrupt magic file
+could not dup descriptor for temp file
+could not find any valid magic files!
+could not obtain parameters for parsing
+declare(encoding=...) ignored because
+define(): Argument #3 ($case_insensitive) is ignored since declaration of case-insensitive constants is no longer supported
+deflate_init(): "
+empty password
+error converting input string
+error copying from pipe to temp file
+error reading
+error seeking
+error while writing to temp file
+failed setting compression level
+failed to invoke callback
+file is already closed
+file_override_enabled has no effect when file_cache_only is set
+first character must be one of "
+free() non a C pointer
+func_get_arg() cannot be called from the global scope
+func_get_args() cannot be called from the global scope
+func_num_args() must be called from a function context
+gd-jpeg error: cannot allocate gdImage struct
+gd-jpeg: error: jpeg library was compiled for 12-bit precision. This is mostly useless, because JPEGs on the web are 8-bit and such versions of the jpeg library won't read or write them. GD doesn't support these unusual images. Edit your jmorecfg.h file to specify the correct precision and completely 'make clean' and 'make install' libjpeg again. Sorry
+gd-jpeg: error: jpeg library was compiled for 12-bit precision. This is mostly useless, because JPEGs on the web are 8-bit and such versions of the jpeg library won't read or write them. GD doesn't support these unusual images. Edit your jmorecfg.h file to specify the correct precision and completely 'make clean' and 'make install' libjpeg again. Sorry.
+gd-jpeg: warning: jpeg_finish_decompress reports suspended data source
+gd-jpeg: warning: jpeg_start_decompress reports suspended data source
+gd-png error: cannot allocate gdImage struct
+gd-png error: cannot allocate gray palette
+gd-png error: cannot allocate libpng info struct
+gd-png error: cannot allocate libpng main struct
+gd-png error: compression level must be 0 through 9
+gd-png error: no colors in palette
+gd-png error: setjmp returns error condition
+gd-tga: premature end of image data\n
+gd-webp cannot allocate temporary buffer
+gd-webp cannot get webp info
+gd-webp encoding failed
+gd2 header complete
+gd2: EOF while reading\n
+get_called_class() must be called from within a class
+get_class() without arguments must be called from within a class
+has already been closed
+individual body cannot be empty
+infinite recursion prevented
+input LOB is no longer a stream
+invalid capture index
+invalid format (repeated flags)
+invalid format (width or precision too long)
+invalid option
+invalid order function for sorting
+invalid pattern capture
+is an invalid DocumentType object
+is an invalid configuration option, "
+is an invalid offset
+# is invalid
+is not a supported source encoding
+is not a supported target encoding
+is not a valid cURL multi option
+is not a valid cURL option
+is not a valid cURL share option
+is not a valid codepoint
+is not a valid encoding
+is not a valid fault code
+is not a valid node type
+is not an integer string
+# is not well-formed
+# is out of range
+is required when using this extract type
+# is too large
+# is too long
+is uninitialized
+iterable type is now a compile time alias for array|Traversable,
+jday must be between 2440588 and
+malformed pattern (ends with
+malformed pattern (missing
+mb_chr() does not support the "
+mb_ord() does not support the "
+mb_strpos(): Unknown error
+# missing
+# modify a property
+# must be "
+must be 0 or 1 for attribute MYSQLI_STMT_ATTR_UPDATE_MAX_LENGTH
+must be 1 for SQLSetConnectOption(), or 2 for SQLSetStmtOption()
+must be CL_EXPUNGE or 0
+must be CP_UID or 0
+must be FORK_NOSIGCHLD or FORK_WAITPID
+must be FT_UID or 0
+must be Palette
+must be RegexIterator::MATCH, RegexIterator::GET_MATCH,
+must be SOAP_FUNCTIONS_ALL when an integer is passed
+must be SODIUM_CRYPTO_AEAD_AES256GCM_KEYBYTES bytes long
+must be SODIUM_CRYPTO_AEAD_AES256GCM_NPUBBYTES bytes long
+must be SODIUM_CRYPTO_AEAD_CHACHA20POLY1305_IETF_KEYBYTES bytes long
+must be SODIUM_CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES bytes long
+must be SODIUM_CRYPTO_AEAD_CHACHA20POLY1305_KEYBYTES bytes long
+must be SODIUM_CRYPTO_AEAD_CHACHA20POLY1305_NPUBBYTES bytes long
+must be SODIUM_CRYPTO_AEAD_XCHACHA20POLY1305_IETF_KEYBYTES bytes long
+must be SODIUM_CRYPTO_AEAD_XCHACHA20POLY1305_IETF_NPUBBYTES bytes long
+must be SODIUM_CRYPTO_AUTH_BYTES bytes long
+must be SODIUM_CRYPTO_AUTH_KEYBYTES bytes long
+must be SODIUM_CRYPTO_BOX_KEYPAIRBYTES bytes long
+must be SODIUM_CRYPTO_BOX_NONCEBYTES bytes long
+must be SODIUM_CRYPTO_BOX_PUBLICKEYBYTES bytes long
+must be SODIUM_CRYPTO_BOX_SECRETKEYBYTES bytes long
+must be SODIUM_CRYPTO_BOX_SEEDBYTES bytes long
+must be SODIUM_CRYPTO_KDF_BYTES_MIN bytes long
+must be SODIUM_CRYPTO_KDF_CONTEXTBYTES bytes long
+must be SODIUM_CRYPTO_KX_KEYPAIRBYTES bytes long
+must be SODIUM_CRYPTO_KX_PUBLICKEYBYTES bytes long
+must be SODIUM_CRYPTO_KX_SEEDBYTES bytes long
+must be SODIUM_CRYPTO_PWHASH_SALTBYTES bytes long
+must be SODIUM_CRYPTO_PWHASH_SCRYPTSALSA208SHA256_SALTBYTES bytes long
+must be SODIUM_CRYPTO_SCALARMULT_SCALARBYTES bytes long
+must be SODIUM_CRYPTO_SECRETBOX_KEYBYTES bytes long
+must be SODIUM_CRYPTO_SECRETBOX_NONCEBYTES bytes long
+must be SODIUM_CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_HEADERBYTES bytes long
+must be SODIUM_CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_KEYBYTES bytes long
+must be SODIUM_CRYPTO_SHORTHASH_KEYBYTES bytes long
+must be SODIUM_CRYPTO_SIGN_BYTES bytes long
+must be SODIUM_CRYPTO_SIGN_KEYPAIRBYTES bytes long
+must be SODIUM_CRYPTO_SIGN_PUBLICKEYBYTES bytes long
+must be SODIUM_CRYPTO_SIGN_SECRETKEYBYTES bytes long
+must be SODIUM_CRYPTO_SIGN_SEEDBYTES bytes long
+must be SODIUM_CRYPTO_STREAM_KEYBYTES bytes long
+must be SODIUM_CRYPTO_STREAM_NONCEBYTES bytes long
+must be SODIUM_CRYPTO_STREAM_XCHACHA20_KEYBYTES bytes long
+must be SODIUM_CRYPTO_STREAM_XCHACHA20_NONCEBYTES bytes long
+must be STR_PAD_LEFT, STR_PAD_RIGHT, or STR_PAD_BOTH
+must be ST_UID or 0
+must be TrueColor
+must be a 3x3 array
+must be a DNS_* constant
+must be a NumberFormatter::TYPE_* constant
+must be a PHP_XML_OPTION_* constant
+must be a PREG_* constant
+must be a RecursiveTreeIterator::PREFIX_* constant
+must be a UConverter::REASON_* constant
+must be a a valid normalization form
+must be a bitmask of CP_UID, and CP_MOVE
+must be a bitmask of FT_UID, FT_PEEK, and FT_INTERNAL
+must be a bitmask of FT_UID, FT_PREFETCHTEXT, and FT_INTERNAL
+must be a bitmask of IMAP_GC_TEXTS, IMAP_GC_ELT, and IMAP_GC_ENV
+must be a bitmask of OP_READONLY, OP_ANONYMOUS, OP_HALFOPEN,
+must be a bitmask of PDO::FETCH_* constants
+must be a bitmask of SA_* constants
+must be a bitmask of SE_FREE, and SE_UID
+must be a bitmask of SE_UID, and SE_NOPREFETCH
+must be a bitmask of SNMP_VALUE_LIBRARY, SNMP_VALUE_PLAIN, and SNMP_VALUE_OBJECT
+must be a bitmask of the OP_* constants, and CL_EXPUNGE
+must be a bz2 stream
+must be a callable, null given
+must be a combination of CLONE_* flags
+must be a cryptographic hashing algorithm if HMAC is requested
+must be a greater than 0
+must be a greater than or equal to 0
+must be a list array
+must be a multiple of argument #2 ($word_size)
+must be a non-empty string
+must be a reference to a state
+must be a single character
+must be a two-letter ISO 3166-1 compatible country code
+must be a user-defined class name, internal class name given
+must be a valid DNS record type
+must be a valid Directory resource
+must be a valid Hash Context resource
+must be a valid SNMP protocol version
+must be a valid URL component identifier,
+must be a valid XML attribute
+must be a valid XML node
+must be a valid access mode
+must be a valid array offset type
+must be a valid attribute filter flag
+must be a valid base64 string
+must be a valid base64 variant identifier
+must be a valid bit mask of PGSQL_CONV_FORCE_NULL, PGSQL_DML_NO_CONV,
+must be a valid bit mask of PGSQL_CONV_IGNORE_DEFAULT,
+must be a valid calendar ID
+must be a valid callback, function "
+must be a valid charset
+must be a valid class
+must be a valid codepage
+must be a valid comparison operator
+must be a valid cryptographic hashing algorithm
+must be a valid data source URI
+must be a valid data source name
+must be a valid data source name (via URI)
+must be a valid element type
+must be a valid encoding, "
+must be a valid extract type
+must be a valid flag value
+must be a valid format value
+must be a valid function name, function "
+must be a valid hashing algorithm
+must be a valid hexadecimal string
+must be a valid identifier
+must be a valid language, "
+must be a valid method name
+must be a valid mode
+must be a valid parser property
+must be a valid password hashing algorithm
+must be a valid resource type
+must be a valid sort flag
+must be a valid stream/context
+must be a valid type
+must be an ASSERT_* constant
+must be an INPUT_* constant
+must be an OPENSSL_ENCODING_* constant
+must be an SNMP_OID_OUTPUT_* constant
+must be an array or a sort flag
+must be an array or a sort flag that has not already been specified
+must be an integer indexed array
+must be an object that has a "
+must be at least as long as the block size
+must be at most 3 characters
+must be at most SODIUM_CRYPTO_SECRETSTREAM_XCHACHA20POLY1305_MESSAGEBYTES_MAX bytes long
+must be between -1 and 255
+must be between -1 and 9
+must be between 0 and 255
+must be between 0 and the segment size
+must be between 1 and 32
+must be between 1 and 4 (inclusive)
+must be between 1 and 65535
+must be between 1 and 65535 when argument #5 ($raw) is true
+must be between 1 and 7
+must be between 1 and the number of elements in argument #1 ($array)
+must be between 1970 and 2037 (inclusive)
+must be between 2 and 36 (inclusive)
+must be contained in argument #1 ($haystack)
+must be contained in argument #1 ($main_str)
+must be contained in argument #2 ($data)
+# must be either "
+must be either COUNT_NORMAL or COUNT_RECURSIVE
+must be either FTP_ASCII or FTP_BINARY
+must be either IntlCalendar::WALLTIME_FIRST or
+must be either Locale::ACTUAL_LOCALE or Locale::VALID_LOCALE
+must be either MYSQLI_STORE_RESULT or MYSQLI_USE_RESULT
+must be either MYSQLI_USE_RESULT or MYSQLI_STORE_RESULT with MYSQLI_ASYNC as an optional bitmask flag
+must be either PGSQL_STATUS_LONG or PGSQL_STATUS_STRING
+must be either SIG_DFL or SIG_IGN when an integer value is given
+must be either SQL_FETCH_FIRST or SQL_FETCH_NEXT
+must be either Transliterator::FORWARD or Transliterator::REVERSE
+must be empty or a single character
+must be greater or equal than 0
+must be greater than 0
+must be greater than 0 for attribute MYSQLI_STMT_ATTR_PREFETCH_ROWS
+# must be greater than 0 for the "
+# must be greater than 0 for the FTP_TIMEOUT_SEC option
+must be greater than or equal to -1
+must be greater than or equal to 0
+must be greater than or equal to 0 when using the threshold mode
+must be greater than or equal to 1
+must be greater than or equal to 3
+must be greater than or equal to SODIUM_CRYPTO_KDF_BYTES_MIN
+must be greater than or equal to argument #1 ($min)
+must be in the range of 0-255
+must be integer-indexed
+must be less than 65535 bytes
+must be less than argument #2 ($maximum)
+must be less than or equal to 1048576
+must be less than or equal to INT_MAX - 4 bytes
+must be less than or equal to SODIUM_CRYPTO_KDF_BYTES_MAX
+must be less than or equal to argument #2 ($max)
+must be less than or equal to the length of argument #2 ($buf)
+must be less than the number of fields for this result set
+must be less than the number of the arguments passed to the currently executed function
+must be longer than 2 characters
+must be null for a tar- or zip-based phar stub, string given
+must be null when argument #1 ($lifetime_or_options) is an array
+must be null when argument #2 ($name) is an array
+must be null when argument #2 ($wrapper_or_options) is an array
+must be null when argument #4 ($seconds) is null
+must be odd if argument #1 ($a) is negative
+must be of type PgSql\\Connection when the connection is provided
+must be of type array when argument #2 ($replacement) is an array, string given
+must be of type array when using translate or scale
+must be of type array, string given
+must be of type string when argument #1 ($ldap) is an LDAP instance
+must be of type string, array given
+must be of type string|int|float|bool|null
+# must be one character
+# must be one of
+# must be one of "
+must be one of AF_UNIX, AF_INET, or AF_INET6
+must be one of AF_UNIX, AF_INET6, or AF_INET
+must be one of E_USER_ERROR, E_USER_WARNING, E_USER_NOTICE,
+must be one of FTP_TIMEOUT_SEC, FTP_AUTOSEEK, or FTP_USEPASVADDRESS
+must be one of GMP_ROUND_ZERO, GMP_ROUND_PLUSINF, or GMP_ROUND_MINUSINF
+must be one of GRAPHEME_EXTR_COUNT, GRAPHEME_EXTR_MAXBYTES, or GRAPHEME_EXTR_MAXCHARS
+must be one of IMG_FLIP_VERTICAL, IMG_FLIP_HORIZONTAL, or IMG_FLIP_BOTH
+must be one of IntlCalendar::WALLTIME_FIRST,
+must be one of IntlPartsIterator::KEY_SEQUENTIAL,
+must be one of LOCK_SH, LOCK_EX, or LOCK_UN
+must be one of MYSQLI_NUM, MYSQLI_ASSOC, or MYSQLI_BOTH
+must be one of PDO::FETCH_BOTH, PDO::FETCH_ASSOC, or PDO::FETCH_NUM
+must be one of PGSQL_ASSOC, PGSQL_NUM, or PGSQL_BOTH
+must be one of PGSQL_NOTICE_LAST, PGSQL_NOTICE_ALL, or PGSQL_NOTICE_CLEAR
+must be one of PGSQL_SEEK_SET, PGSQL_SEEK_CUR, or PGSQL_SEEK_END
+must be one of PHPDBG_COLOR_PROMPT, PHPDBG_COLOR_NOTICE, or PHPDBG_COLOR_ERROR
+must be one of PRIO_PGRP, PRIO_USER, or PRIO_PROCESS
+must be one of SOAP_ACTOR_NEXT, SOAP_ACTOR_NONE, or SOAP_ACTOR_UNLIMATERECEIVER
+must be one of SOCK_STREAM, SOCK_DGRAM, SOCK_SEQPACKET,
+must be one of SQL_CUR_USE_IF_NEEDED,
+must be one of STREAM_SHUT_RD, STREAM_SHUT_WR, or STREAM_SHUT_RDWR
+must be one of SUNFUNCS_RET_TIMESTAMP, SUNFUNCS_RET_STRING, or SUNFUNCS_RET_DOUBLE
+must be one of Spoofchecker::ASCII, Spoofchecker::SINGLE_SCRIPT_RESTRICTIVE,
+must be one of ZLIB_ENCODING_RAW, ZLIB_ENCODING_GZIP, or ZLIB_ENCODING_DEFLATE
+must be one of ZLIB_NO_FLUSH, ZLIB_PARTIAL_FLUSH, ZLIB_SYNC_FLUSH, ZLIB_FULL_FLUSH, ZLIB_BLOCK, or ZLIB_FINISH
+must be one of the MB_CASE_* constants
+must be one of the MYSQLI_CURSOR_TYPE_* constants
+must be one of the MYSQLI_TRANS_* constants
+must be one of the PDO::FETCH_* constants
+must be one of the SORT* constants
+must be provided for instance properties
+must be provided when argument #2 ($wrapper_or_options) is a string
+must be specified when enabling encryption
+must be the same size as argument #1 ($im1)
+# must contain a "
+must contain arrays only containing the "
+must contain arrays with consecutive integer indices starting from 0
+must contain at least 1 valid key
+must contain at least one element
+must contain only arrays, where each array is a control
+must contain only one of CachingIterator::CALL_TOSTRING,
+must contain only string keys
+must contain only strings
+must contain only valid cURL options
+must contain only valid callbacks
+must have 6 elements
+# must have a "
+must have a correct length
+must have a multiple of 4 elements
+must have a valid syntax
+# must have an "
+must have an even number of elements
+must have at least one color
+must have at least one element
+must have consecutive integer indices starting from 0
+must have exactly two elements: "
+# must have key "
+must have the node attribute
+must have the same number of elements as the links array
+# must not be empty
+must not be the spl_autoload_call() function
+must not be zero
+must not combine 'H' and 'K' flags
+must not combine 'h' and 'C' flags
+must not combine 'h' and 'c' flags
+must not combine 'h' and 'k' flags
+must not combine 'k' and 'C' flags
+must not combine 'k' and 'c' flags
+must not contain any null bytes
+must not contain empty strings
+must not contain null bytes
+must not contain strings with null bytes
+must not exceed the specified range
+must not go past 23:59:59, December 31, 3000, UTC
+must not include RFMEM value, not allowed within this context
+must not include RFSIGSHARE value, not allowed within this context
+must not include both RFFDG and RFCFDG, because these flags are mutually exclusive
+must only contain array keys "
+must only contain arrays
+must only contain arrays and streams
+must only contain objects of type LDAP
+must only contain string values
+must only contain string-indexed arrays
+must only contain the "
+must specify at least one encoding
+must use PDO::FETCH_CLASSTYPE with PDO::FETCH_CLASS
+must use PDO::FETCH_SERIALIZE with PDO::FETCH_CLASS
+mysqli_data_seek() cannot be used in MYSQLI_USE_RESULT mode
+mysqli_num_rows() cannot be used in MYSQLI_USE_RESULT mode
+mysqli_result::data_seek() cannot be used in MYSQLI_USE_RESULT mode
+name conflict for module
+negative array index
+no magic files loaded
+# not implemented
+# not passed
+only the leftmost array can be undimensioned
+opcache.file_cache must be a full path of accessible directory.\n
+opcache.max_wasted_percentage must be set between 1 and 50.\n
+opcache.memory_consumption is set below the required 8MB.\n
+# option "
+pdo_oci_handle_factory
+# phar error: "
+phar error: Directory not empty
+phar error: cannot create directory "
+phar error: cannot remove directory "
+phar error: cannot rmdir directory "
+phar error: file "
+phar error: invalid url "
+phar error: invalid url or non-existent phar "
+phar error: no directory in "
+phar error: not a phar stream url "
+phar error: not a phar url "
+phar error: open mode append not supported
+phar error: unlink failed
+phar error: write operations disabled by the php.ini setting phar.readonly
+phar file "
+phar url "
+pthread_mutex_init
+pthread_mutexattr_destroy
+pthread_mutexattr_init
+pthread_mutexattr_settype
+# put.
+remote cafile streams are disabled for security purposes
+rfc2397: illegal URL
+rfc2397: illegal media type
+rfc2397: illegal parameter
+rfc2397: no comma in URL
+rfc2397: unable to decode
+run command is disallowed during hard interrupt
+second character must be one of "
+set break used incorrectly: set break [id] <on|off>
+set breaks used incorrectly: set breaks <on|off>
+set colors used incorrectly: set colors <on|off>
+set lines used incorrectly: set lines <number>
+set pagination used incorrectly: set pagination <on|off>
+sh command is disallowed during hard interrupt
+socket type must be one of AF_UNIX, AF_INET, or AF_INET6
+socket_select(): At least one array argument must be passed
+sodium_init()
+string slice too long
+third character must be "
+tidy object is not initialized
+too many captures
+too many results to unpack
+unbalanced pattern
+unexpected <EOF>
+unexpected character 'escape_char(ch)'
+unexpected sequence 'escape_string(yy_text, 1 + YYPOS - yy_text))'
+unfinished capture
+unlink of "
+upload_max_filesize of
+usage set stepping [<opcode|line>]
+var_export does not handle circular references
+vasprintf failed
+wrong number of arguments to
+wrong size for the hashed password
+zend.assertions may be completely enabled or disabled only in php.ini
+zlib window size (logarithm) (
+# |
+
+# Group with format strings
+
+#   into (
+# ($end)
+# (after
+(breaking at opline
+(inclusive)
+(path:
+(tried to allocate
+- dynamic modules are not supported
+Chunks Wide
+Chunks vertically
+# \n
+# already defined
+# and
+# and %%H
+# and property
+# argument
+# arguments are required,
+arguments for the fetch mode provided,
+# as array
+as execution context, not a valid file or symlink
+# as non static
+# at continuation
+# at line
+# bytes
+bytes (Current memory usage is
+bytes exhausted (tried to allocate
+bytes exhausted at
+# bytes passed
+bytes were written, expected to write
+# bytes)
+bytes) (tried to allocate
+# bytes) at
+# bytes,
+bytes. Uncompressing into buffer of
+cannot be instantiated
+cannot be of type array
+cannot be passed by reference
+cannot contain non abstract method
+# characters to "
+chunk index entries
+# colours
+command is disallowed during hard interrupt
+# constant
+contains a null byte
+# could not be converted to
+could not be converted to bool
+could not be converted to string
+# could not be found
+could not compile file
+did not create an Iterator
+died before SIGKILL was sent
+does not have a constructor, cannot pass arguments
+does not match enum backing type
+does not support method calls
+doesn't exist in class
+# done.
+# elements
+# elements,
+# exists
+# expected
+file is closed
+# for cases
+# for initialization
+# for parameter
+for stream_metadata
+# from
+# from uncompress
+# given
+# given, called in
+# has no effect
+has no unserializer
+# held by property
+implements the Serializable interface, which is deprecated. Implement __serialize() and __unserialize() instead (or in addition, if support for old PHP versions is necessary)
+# in
+# in table for
+instance wasn't initialized properly
+# is deprecated
+is greater than \\377
+is inapplicable to this socket type
+# is installed
+is nor an array nor an object
+# is not a string
+is not a user defined function, no oplines exist
+is not a user defined method, no oplines exist
+is not a valid backing value for enum "
+is not a valid phar archive
+# is not allowed
+# is not callable
+is not compatible with property
+# is undefined
+# items,
+# magic
+# method
+# module failed
+must be a field name from this result set
+must be greater than or equal to 0
+must be less than the number of fields for this result set
+must be passed by reference, value given
+# must be public
+must not be accessed before initialization
+# not found
+object is already closed
+object is not fully initialized
+object_id:
+of C function '
+# of type
+# offset
+# on line
+# on string
+oplines in file
+oplines in function
+oplines in method
+option must have an array value
+# or null,
+overwrites previous argument
+packet. PID=
+# parameter
+# passed and
+# passed in
+# past its maximal value
+# past its minimal value
+# points
+points in array with only
+# present
+# property
+# provided
+readonly property
+# received
+requires PDO API version
+requires Zend Engine API version
+# resource
+# resource supplied
+# returned
+# size
+# supports only version
+# to
+# to property
+to reference held by property
+# to write index
+used as array
+was built with configuration
+when argument #1 ($search) is
+# when declared
+with an empty name
+' (include_path='
+' (info)\n
+' (mem)\n
+' (tried:
+#' (value '
+#' (wrong "
+' (wrong header)\n
+#' already defined
+' already defined in '
+# ' and '
+# ' at line
+# ' doesn't exist
+# ' excepted checksum: 0x%08x actual checksum: 0x%08x\n
+# ' flags
+' for reading from stdin
+' from PHP '
+# ' from type '
+# ' has fixed value '
+' in <message>
+' in s[np]printf call
+' is not a valid mode for fopen
+' is not a valid utf-8 string
+# ' is not allowed)
+# ' is too
+' must have a single part
+# ' not present
+' of C struct/union
+' of non C struct/union
+# ' property
+# ' type='
+# ' value='
+# ') failed:
+', FFI_LIB defined twice
+', FFI_SCOPE defined twice
+', bad FFI_LIB define
+', bad FFI_SCOPE define
+', cannot read_file
+', cannot resolve C function '
+', cannot resolve C variable '
+', different 'targetNamespace'
+# ', expecting '
+# ', expecting at least
+', expecting exactly
+', file doesn't exist
+# ', found '
+# ', found PHP '
+', namespace must not match the enclosing schema 'targetNamespace'
+', not a regular file
+# ', redefinition of '
+', unexpected 'targetNamespace'='
+# ':  expected=0x%08x, found=0x%08x
+# '\n
+() (previously declared in
+() - access must be exactly one of public, protected or private
+() can only be called after a stylesheet has been imported
+() cannot be a NULL function
+() cannot be abstract
+() cannot be static
+() cannot take arguments
+() cannot take arguments by reference
+() does not accept unknown named parameters
+# () dynamically
+# () expects
+() expects at least
+() expects at most
+() expects at most 2 argument for the fetch mode provided,
+() expects exactly
+() expects exactly 0 arguments,
+() expects exactly 1 argument for the fetch mode provided,
+() expects exactly 2 argument for PDO::FETCH_FUNC,
+# () from
+() from global scope
+() from scope
+() has been disabled for security reasons
+() is deprecated
+() must be static
+() must have public visibility
+() must not return a value,
+() must take exactly %
+() must take exactly 1 argument
+# () on
+() to object of class
+(): Argument #
+(): Argument #1 ($callback) must be a valid callback,
+(): Argument #1 ($pieces) must be of type array, string given
+(): Argument #1 ($value) must be of type Countable|array,
+(): Array value for VLV control must have a "
+(): Array value for VLV control must have an "
+(): Array value for VLV control must have either an "
+(): Attempt to close cURL handle from a callback
+(): Attempt to reset cURL handle from a callback
+(): Class of end date must be exactly DateTime or DateTimeImmutable, object of class
+(): Class of start date must be exactly DateTime or DateTimeImmutable, object of class
+(): Control OID
+(): Control must have a "
+(): Control must have an "
+(): Disabling safe uploads is no longer supported
+(): Expects exactly 3 arguments when argument #3
+(): If option "
+# (): Option "
+(): Option must be a valid callback
+(): Parameter #
+(): Return type must be
+(): Return value must be of type
+(): Sort key list must have an "
+# (): The
+(): The provided file handle must be writable
+(): cURL option must not contain any null bytes
+(): never-returning function must not implicitly return
+# (): no
+# (): option "
+(): option array cannot have numeric keys
+(): supplied argument is not a valid
+(): supplied resource is not a valid
+# ) after startup
+) at index
+# ) cannot be found
+# ) could not be found
+# ) for command
+) from chunk
+# ) from position
+# ) is already in use
+) is not user defined
+# ) must be of type
+) the file does not exist
+# ), from
+), not a regular file or symlink
+), please try to set opcache.use_cwd to 0 in ini file
+# ), y from
+# ).\n
+# , %%G, %
+, as this would result in an inconsistent type conversion
+# , because the name is already in use
+# , cannot run
+, check path and permissions
+, ensure the file exists
+# , err
+, file does not exist
+, invalid data source
+# , it does not exist
+, it is not a regular file
+, not found or invalid zend extension / module:
+, or -2 and -36
+, whereas running engine is
+, which does not match the installed Zend Engine API version
+. Node no longer exists
+. Packet size=
+: Only one of seed or secret is to be passed for initialization
+: Secret length must be >=
+: Unable to register functions, unable to load
+: integer overflow in format string
+: not enough arguments
+: too few arguments
+: unknown format code
+::__clone() from
+::__construct()
+::__serialize() must return an array
+::__toString() implemented without string return type
+::__toString() must return a string
+::__toString() must return a string value
+::getCurrentLine(): Return value must be of type string,
+::offsetSet() instead
+> in all
+> in attribute
+> in attributeGroup
+> in choice
+> in complexContent
+> in complexType
+> in element
+> in extension
+> in group
+> in list
+> in restriction
+> in schema
+> in sequence
+> in simpleContent
+> in simpleType
+> in union
+Access to undeclared static property
+Accessing static property
+Added key '
+Allowed memory size of
+Already Positioned in file to
+An infinite value cannot be converted to base
+Arginfo / zpp mismatch during call of
+Argument number specifier must be greater than zero and less than
+Array of functions is not allowed at line
+Attempt to assign an invalid callback,
+Attempt to assign field '
+Attempt to assign read-only C variable '
+Attempt to assign read-only field '
+Attempt to assign undefined C variable '
+Attempt to assign undefined field '
+Attempt to call undefined C function '
+Attempt to read field '
+Attempt to read property "
+Attempt to read undefined C variable '
+Attempt to read undefined field '
+Attempt to unset static property
+Attempting to kill locker
+Attempting to use non-attribute class "
+# Attribute class
+Attribute class "
+Attribute constructor of class
+Attribute value must be of type bool for selected attribute,
+Attribute value must be of type int for selected attribute,
+Backup failed:
+Bad chunk size:
+Bad data format:
+Bad magic format `
+Bad scan conversion character "
+Bad version:
+Bit field "
+Blacklist JIT compilation failed,
+Breakpoint already exists for
+# Breakpoint at
+Breakpoint exists at
+Breakpoint exists for
+Cached script '
+# Call to
+Call to a member function
+Call to undefined function
+Call to undefined method
+# Cannot access
+Cannot access offset of type
+Cannot access property of object of type
+Cannot append properties to objects, use
+# Cannot assign
+Cannot bind closure to scope of internal class
+Cannot bind method
+# Cannot call
+Cannot call abstract method
+Cannot call private
+# Cannot create
+Cannot create dynamic property
+Cannot create mutex (error
+# Cannot declare
+Cannot declare self-referencing constant
+# Cannot decrement
+Cannot decrement property
+Cannot dynamically load
+Cannot get fiber return value:
+# Cannot increment
+Cannot increment property
+Cannot instantiate abstract class
+Cannot instantiate enum
+Cannot instantiate interface
+Cannot instantiate trait
+Cannot load blacklist file:
+Cannot load module "
+Cannot modify header information - headers already sent by (output started at
+Cannot modify readonly property
+Cannot modify readonly property DatePeriod::$
+Cannot open "
+Cannot perform bitwise not on
+# Cannot redeclare
+Cannot set breakpoint in
+# Cannot stat
+Cannot unset readonly property
+# Cannot use
+Cannot use "
+Cannot use object of type
+Cannot write read-only property
+Checksum failed for '
+ChunkSize:
+Chunks:
+Command array element
+Conditional break
+Could not add variable: OID='
+Could not fetch class
+# Could not find
+Could not find the class
+Could not list function
+# Could not load
+Could not open '
+Could not open file
+# Couldn't fetch
+Couldn't fetch function
+Creation of dynamic property
+Data starts at
+Declaration does not declare anything at line
+Duplicate field name "
+# Duplicate tag
+Duplicate value in enum
+Encoding: Attribute '
+Encoding: Element '
+Encoding: External reference '
+Encoding: Restriction: invalid enumeration value "
+Encoding: Unresolved reference '
+Encoding: Violation of id and ref information items '
+Encoding: object has no '
+Encoding: string '
+Enum case type
+Enumerator value "
+Erroneous data format for unserializing '
+Error in packet at
+Error in packet at '
+Error while receiving public key. PID=
+Error while sending
+Error while sending public key request packet. PID=
+Error: OID not increasing:
+FFI Parser:
+FFI: Failed pre-loading '
+FFI: failed pre-loading '
+FTP server reports
+Failed identify data
+Failed loading '
+Failed loading Zend extension '
+Failed loading scope '
+Failed opening required '
+Failed resolving C function '
+Failed resolving C variable '
+Failed to check locker
+Failed to compile
+Failed to compile code for expression
+Failed to create closure from callable:
+Failed to create new session ID:
+Failed to create session ID by collision:
+Failed to create session ID:
+Failed to create test table: [
+Failed to create(read) session ID:
+Failed to drop old test table: [
+Failed to execute
+Failed to find the requested color (
+Failed to find the requested element (
+Failed to open
+Failed to open or create
+Failed to open session:
+Failed to send SIGKILL to locker
+Failed to set execution context (
+Failed to set memory limit to
+Failed to set up data channel:
+Failed to stat
+Fatal error:
+File cached script loaded into memory '
+Flexible array member in union at line
+Flexible array member not at end of struct at line
+Forced restart at
+# Format:
+Function registration failed - duplicate name -
+Function returning array is not allowed at line
+Function returning function is not allowed at line
+GetAdaptersAddresses failed:
+Got file code:
+# HTTP request failed!
+# Header name "
+Illegal length modifier specified '
+Illegal string offset "
+# Image is
+Image palette completed:
+Implicit conversion from float-string "
+Incompatible types when assigning to type '
+Incomplete C type
+Incomplete enum "
+Incomplete struct "
+Incomplete type at line
+Incomplete union "
+Inconsistent entries in `
+Incorrect number of arguments for C function '
+Index must be between 0 and
+Index size is
+Indirect modification of overloaded element of
+Indirect modification of overloaded property
+Instantiation of
+Internal help error, non-unique alias "
+Invalid access level for
+# Invalid action
+Invalid backtrace size
+Invalid callback
+Invalid file for conditional break
+Invalid format type
+Invalid object identifier:
+Invalid opcode name
+Invalid range supplied: start=%0.0f end=%0.0f
+Invalid redirect URL!
+It's not possible to assign a complex type to
+KLockers:
+Killed locker
+Largest compressed chunk is
+Loading blacklist file:  '
+MAX_FILE_SIZE of %
+Missing arginfo for
+Missing mime boundary at the end of the data for file
+Multiple calling convention specifiers at line
+Named parameter $
+Negative array index at line
+Negative width in bit-field "
+No blacklist file found matching:
+No frame #
+No help topic found for
+# No key "
+# No response from
+Not allowed to call handler '
+OID value must be of type string|int,
+Object of class
+Object of type
+Octal escape sequence overflow \\
+Offset out of range %
+Only the leftmost array can be undimensioned at line
+Out of memory (allocated
+Output buffer space exceeded
+Output overrun of %
+Overflow in enumeration values "
+PDO: driver
+PDO::ATTR_STATEMENT_CLASS constructor_args must be of type ?array,
+PDO::ATTR_STATEMENT_CLASS value must be of type array,
+Packets out of order. Expected
+Parse Error:
+Parsing Schema: attribute '
+Parsing Schema: attributeGroup '
+Parsing Schema: can't import schema from '
+Parsing Schema: can't include schema from '
+Parsing Schema: element '
+Parsing Schema: group '
+Parsing Schema: unexpected <
+Parsing Schema: unresolved element 'ref' attribute '
+Parsing Schema: unresolved group 'ref' attribute '
+Parsing WSDL: <binding> '
+Parsing WSDL: <fault> with name '
+Parsing WSDL: <message> '
+Parsing WSDL: <portType> '
+Parsing WSDL: <service> '
+Parsing WSDL: Couldn't find <definitions> in '
+Parsing WSDL: Couldn't load from '
+Parsing WSDL: Missing <message> with name '
+Parsing WSDL: Missing <portType> with name '
+Parsing WSDL: Missing <portType>/<operation> with name '
+Parsing WSDL: Missing name for <fault> of '
+Parsing WSDL: Missing name for <input> of '
+Parsing WSDL: Missing name for <output> of '
+Parsing WSDL: Missing part '
+Parsing WSDL: No <binding> element with name '
+Parsing WSDL: No name associated with <part> '
+Parsing WSDL: The fault message '
+Parsing WSDL: Unexpected WSDL element <
+Parsing WSDL: Unexpected extensibility element <
+Parsing WSDL: Unknown encodingStyle '
+Parsing WSDL: Unknown required WSDL extension '
+Passing incompatible argument
+Positioning in file to
+Possible integer overflow in zend_arena_calloc() (
+Precision -1 is only supported for %
+Precision must be between -1 and
+Precision must be greater than zero and less than
+Preloading failed to initgroups(\
+Preloading failed to setgid(
+Preloading failed to setuid(
+Processing Chunk
+Processing Chunk (
+REQUEST_BODY_FILE: open('
+Redeclaration of "
+Redefinition of "
+Redirection target must be of type int,
+Reference with value of type
+Requires 1 or 2 arguments,
+Requires 2 or 3 arguments,
+Restart Scheduled! Reason:
+RestartC(+1):
+RestartC(-1):
+RestartC:
+Session callback must have a return value of type bool,
+# Size of `
+# Size:
+SoapHeader::__construct(): "
+SoapServer::addFunction(): Function "
+Struct/union can't contain an instance of itself at line
+Stuck count for pid
+Stuck count for thread id
+The arguments array must contain
+# The class
+The class requested (
+# The command "
+The expanded parameter requires SQLite3 >= 3.14 and
+The function requested (
+The magic method
+# The method
+The requested class (
+The requested function (
+The requested name (
+The source of the requested class (
+The use statement with non-compound name '
+# There are only
+Too few arguments to function
+Trying to access array offset on value of type
+Trying to clone an uncloneable object of class
+# Trying to use
+Type float/double is not allowed at position
+Type kind must be dispatchable, %08x given
+Typed property
+Typed static property
+Unable to bind parameter number
+Unable to call handler
+Unable to clear statement:
+Unable to close database:
+Unable to execute statement:
+Unable to initialize module
+Unable to load extension at '
+Unable to open blob:
+Unable to prepare statement:
+Unable to read stream for parameter
+Unable to register module
+Unable to reset statement:
+Unable to set busy timeout:
+Unable to startup Zend extension
+Unable to startup module
+Uncaught exception
+Undefined C type "
+Undefined array key "
+Undefined constant
+Undefined constant "
+Undefined offset for object of type
+Undefined property:
+Undefined variable $
+Unknown class '
+Unknown format specifier "
+Unknown named parameter $
+# Unknown option
+Unknown parameter type:
+UnlockAll:
+Unsupported array index type at line
+Unsupported attribute "
+Unsupported calling convention line
+Unsupported content type:  '
+Unsupported declare '
+Unsupported encoding [
+Unsupported node type:
+Unsupported operand types:
+Unsupported parameter type (
+Unsupported type _Complex at line
+Unsupported type specifier combination at line
+UpdateC(+1):
+UpdateC(-1):
+UpdateC:
+Uploaded file size 0 - file [
+# Value for
+Value must be of type string|int|float|null,
+# Value of type
+Values must be of type string|int|float|bool|null,
+# Version:
+Width must be greater than zero and less than
+# Width of "
+Wrong COM_STMT_PREPARE response size. Received
+Wrong parameter count for
+Wrong type of bit field "
+Zero width in bit-field "
+# [%03d/
+# [%03d] Cannot remove records, [
+# [%03d] [
+[clean] Failed to drop old test table: [
+# \n
+] cannot be found (missing integer key)
+# ] not saved
+# ] only has
+# array item
+array_key_exists(): Argument #2 ($array) must be of type array,
+avif error -
+bad argument #
+bad magic in `
+call_user_func_array(): Argument #2 ($args) must be of type array,
+cannot allocate %
+cannot find entry `
+# cannot map `
+cannot mprotect `
+# cannot open `
+cannot open tmp file `
+# cannot read `
+cannot read fd
+cannot read magic file `
+# cannot stat `
+cannot write tmp file `
+contains invalid encoding "
+contains invalid flag: '
+contains invalid type for element
+corrupted file '
+# error writing `
+failed loading cafile stream: `
+failed pre-loading '
+foreach() argument must be of type array|object,
+function type is not allowed at line
+gd-jpeg, libjpeg: recoverable error:
+gd-jpeg, libjpeg: strace message:
+gd-png color_type is palette, colors:
+gd-png warning: image data references out-of-range color index (
+get_class(): Argument #1 ($object) must be of type object,
+getcwd() failed for '
+getifaddrs() failed
+# indirect count (
+individual body must be of type array,
+invalid mode 0
+# invalid option
+invalid replacement value (a
+invalid value (
+is an invalid configuration option, "
+lu is not a multiple of
+magic element size
+malformed pattern (ends with
+mb_chr() does not support the "
+mb_ord() does not support the "
+mm_malloc failed, avail
+# must be
+must be a 3x3 array, matrix[
+must be a class name compatible with
+must be a class name derived from
+must be a file name or a stream resource,
+must be a string, an array(class, method), or a callable object,
+must be a valid
+must be a valid callback or null,
+must be a valid callback,
+must be a valid callback, function "
+must be a valid class name,
+must be a valid encoding, "
+must be a valid function name, function "
+must be a valid language, "
+must be an instance of mysqli,
+# must be between
+must be between 0 and
+must be between 2 and
+must be greater than 0 and less than
+must be greater than or equal to
+must be less than
+must be less than or equal to
+must be less than or equal to argument #
+# must be of type
+must be of type ?
+must be of type ?array,
+must be of type Countable|array,
+must be of type DOMNode|string,
+must be of type LDAP|array,
+must be of type SimpleXMLElement|DOMNode,
+must be of type SoapHeader|array|null,
+must be of type array for the LDAP_OPT_CLIENT_CONTROLS option,
+must be of type array,
+must be of type array|string|int,
+must be of type bool for the FTP_AUTOSEEK option,
+must be of type bool for the FTP_USEPASVADDRESS option,
+must be of type callable|int,
+must be of type int for the FTP_TIMEOUT_SEC option,
+must be of type int,
+must be of type object,
+must be of type object|string,
+must be of type resource|string,
+must be of type string or file-resource,
+must be of type string,
+must be of type string|int|array,
+must be of type string|int|float|bool,
+must be of type zero-terminated string or array,
+# must consist of exactly
+# must contain a "
+# must have key "
+must not combine '
+must only have elements of type Socket,
+must only have elements of type string|int,
+name conflict for module
+name use count (
+# negative offset
+no function environment for tail call at level
+no valid certs found cafile stream: `
+opcache cannot create directory for file '
+opcache cannot create file '
+opcache cannot read from file '
+opcache cannot unlock file '
+opcache cannot write to file '
+opcache.max_accelerated_files is set above the limit (
+opcache.max_accelerated_files is set below the required minimum (
+phar error: "
+phar error: Could not write
+phar error: cannot create directory "
+phar error: cannot remove directory "
+phar error: cannot rmdir directory "
+phar error: file "
+phar error: invalid url "
+phar error: invalid url or non-existent phar "
+phar error: no directory in "
+phar error: not a phar stream url "
+phar error: not a phar url "
+phar file "
+phar url "
+remap to huge page
+request_startup() for
+skip Can't bind to LDAP Server - [
+skip Can't connect to MySQL Server - [
+stack overflow (
+string too long: `
+strlen(): Argument #1 ($str) must be of type string,
+# u) exceeded
+# unlink of "
+unreadable symlink `
+upload_max_filesize of
+void type is not allowed at line
+write() failed -
+zend_signal: handler was replaced for signal (
+zend_signal: shutdown with non-zero blocking depth (
+zlib >= 1.2.4 required for BLOCK deflate; current version:
+# |int,
+# |int|null,
+# |string,
+# |string|null,
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/php-function-names-933150.data b/pkg/render/applicationlayer/embed/coreruleset/rules/php-function-names-933150.data
new file mode 100644
index 0000000000..057a690277
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/php-function-names-933150.data
@@ -0,0 +1,245 @@
+##! File autogenerated by util/php-dictionary-gen with: -a 30 -F 90000 -s ../fp-finder/spell.sh
+array_diff_uassoc
+array_diff_ukey
+array_filter
+array_intersect_uassoc
+array_intersect_ukey
+array_key_exists
+array_map
+array_push
+array_reduce
+array_shift
+array_udiff
+array_udiff_assoc
+array_udiff_uassoc
+array_uintersect
+array_uintersect_assoc
+array_uintersect_uassoc
+array_values
+base64_decode
+base64_encode
+bson_decode
+bson_encode
+bzdecompress
+bzopen
+call_user_func
+class_exists
+convert_uuencode
+curl_exec
+curl_file_create
+curl_init
+debug_backtrace
+dirname
+error_reporting
+escapeshellarg
+escapeshellcmd
+exif_imagetype
+exif_read_data
+exif_tagname
+exif_thumbnail
+fclose
+file_exists
+file_get_contents
+finfo_open
+fopen
+fputs
+fsockopen
+ftp_connect
+ftp_get
+ftp_nb_get
+ftp_nb_put
+ftp_put
+function_exists
+fwrite
+get_cfg_var
+get_class
+get_class_methods
+get_class_vars
+get_current_user
+get_defined_constants
+get_defined_functions
+get_defined_vars
+get_meta_tags
+getcwd
+getenv
+getimagesize
+getlastmod
+getmygid
+getmyinode
+getmypid
+getmyuid
+gzcompress
+gzdecode
+gzdeflate
+gzencode
+gzfile
+gzinflate
+gzopen
+gzread
+gzuncompress
+gzwrite
+hash_file
+hash_hmac_file
+hash_update_file
+header_register_callback
+hex2bin
+highlight_file
+html_entity_decode
+htmlentities
+htmlspecialchars
+htmlspecialchars_decode
+image2wbmp
+imagecreatefromgif
+imagecreatefromjpeg
+imagecreatefrompng
+imagecreatefromwbmp
+imagecreatefromxbm
+imagecreatefromxpm
+imagegd
+imagegd2
+ini_get
+ini_get_all
+ini_set
+intval
+iptcembed
+is_array
+is_dir
+is_executable
+is_file
+is_int
+is_null
+is_numeric
+is_object
+is_readable
+is_writable
+is_writeable
+iterator_apply
+json_decode
+json_encode
+mb_ereg
+mb_ereg_match
+mb_ereg_replace
+mb_ereg_replace_callback
+mb_eregi
+mb_eregi_replace
+mb_parse_str
+md5_file
+method_exists
+mkdir
+move_uploaded_file
+mysql_query
+number_format
+ob_clean
+ob_end_clean
+ob_end_flush
+ob_flush
+ob_get_clean
+ob_get_contents
+ob_get_flush
+ob_start
+odbc_connect
+odbc_exec
+odbc_execute
+odbc_result
+odbc_result_all
+parse_ini_file
+parse_str
+parse_url
+pfsockopen
+pg_connect
+pg_execute
+pg_prepare
+pg_query
+php_strip_whitespace
+php_uname
+phpinfo
+phpversion
+posix_getegid
+posix_geteuid
+posix_getgid
+posix_getlogin
+posix_getpwnam
+posix_getpwuid
+posix_kill
+posix_mkfifo
+posix_mknod
+posix_ttyname
+preg_match
+preg_match_all
+preg_replace
+preg_replace_callback
+preg_replace_callback_array
+preg_split
+print_r
+printf
+proc_close
+proc_get_status
+proc_nice
+proc_open
+proc_terminate
+putenv
+rawurldecode
+rawurlencode
+read_exif_data
+readdir
+readgzfile
+register_shutdown_function
+register_tick_function
+rename_function
+rtrim
+runkit_constant_add
+runkit_constant_redefine
+runkit_function_add
+runkit_function_copy
+runkit_function_redefine
+runkit_function_rename
+runkit_method_add
+runkit_method_copy
+runkit_method_redefine
+runkit_method_rename
+session_set_save_handler
+session_start
+set_error_handler
+set_exception_handler
+set_include_path
+set_magic_quotes_runtime
+setdefaultstub
+settype
+sha1_file
+shell_exec
+show_source
+simplexml_load_file
+simplexml_load_string
+socket_connect
+socket_create
+spl_autoload_register
+sqlite_array_query
+sqlite_create_aggregate
+sqlite_create_function
+sqlite_exec
+sqlite_open
+sqlite_popen
+sqlite_query
+sqlite_single_query
+sqlite_unbuffered_query
+str_replace
+stream_context_create
+stream_socket_client
+strip_tags
+stripcslashes
+stripslashes
+strlen
+strpos
+strrev
+strtolower
+strtotime
+strtoupper
+uasort
+ucfirst
+uksort
+unserialize
+urldecode
+urlencode
+usort
+var_dump
+zlib_decode
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/php-function-names-933151.data b/pkg/render/applicationlayer/embed/coreruleset/rules/php-function-names-933151.data
new file mode 100644
index 0000000000..646dddefe8
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/php-function-names-933151.data
@@ -0,0 +1,2201 @@
+##! File autogenerated by util/php-dictionary-gen with: -a 30 -F 90000 -s ../fp-finder/spell.sh
+ZendTestNS2_ZendSubNS_namespaced_deprecated_func
+ZendTestNS2_ZendSubNS_namespaced_func
+ZendTestNS2_namespaced_deprecated_func
+ZendTestNS2_namespaced_func
+accel_chdir
+acos
+acosh
+addcslashes
+addslashes
+apache_child_terminate
+apache_get_modules
+apache_get_version
+apache_getenv
+apache_lookup_uri
+apache_note
+apache_request_headers
+apache_response_headers
+apache_setenv
+array_change_key_case
+array_chunk
+array_column
+array_combine
+array_count_values
+array_diff
+array_diff_assoc
+array_diff_key
+array_diff_uassoc
+array_diff_ukey
+array_fill
+array_fill_keys
+array_flip
+array_intersect
+array_intersect_assoc
+array_intersect_key
+array_intersect_uassoc
+array_intersect_ukey
+array_is_list
+array_key_first
+array_key_last
+array_keys
+array_map
+array_merge
+array_merge_recursive
+array_multisort
+array_pad
+array_pop
+array_product
+array_rand
+array_reduce
+array_replace
+array_replace_recursive
+array_reverse
+array_search
+array_slice
+array_splice
+array_sum
+array_udiff
+array_udiff_assoc
+array_udiff_uassoc
+array_uintersect
+array_uintersect_assoc
+array_uintersect_uassoc
+array_unique
+array_unshift
+array_walk
+array_walk_recursive
+arsort
+asinh
+asort
+assert_options
+atan
+atan2
+atanh
+base64_decode
+base64_encode
+base_convert
+bcadd
+bccomp
+bcdiv
+bcmod
+bcmul
+bcpow
+bcpowmod
+bcscale
+bcsqrt
+bcsub
+bin2hex
+bind_textdomain_codeset
+bindec
+bindtextdomain
+boolval
+bzcompress
+bzdecompress
+bzerrno
+bzerror
+bzerrstr
+bzopen
+bzread
+cal_days_in_month
+cal_from_jd
+cal_info
+cal_to_jd
+call_user_func_array
+ceil
+chdir
+chgrp
+chmod
+chown
+chr
+chunk_split
+class_alias
+class_implements
+class_parents
+class_uses
+clearstatcache
+closedir
+closelog
+collator_asort
+collator_compare
+collator_create
+collator_get_attribute
+collator_get_error_code
+collator_get_error_message
+collator_get_locale
+collator_get_sort_key
+collator_get_strength
+collator_set_attribute
+collator_set_strength
+collator_sort
+collator_sort_with_sort_keys
+com_create_guid
+com_event_sink
+com_get_active_object
+com_load_typelib
+com_message_pump
+com_print_typeinfo
+config_get_hash
+connection_aborted
+connection_status
+convert_uudecode
+convert_uuencode
+count_chars
+crc32
+ctype_alnum
+ctype_alpha
+ctype_cntrl
+ctype_digit
+ctype_graph
+ctype_lower
+ctype_print
+ctype_punct
+ctype_space
+ctype_upper
+ctype_xdigit
+curl_close
+curl_copy_handle
+curl_errno
+curl_error
+curl_escape
+curl_exec
+curl_file_create
+curl_getinfo
+curl_init
+curl_multi_add_handle
+curl_multi_close
+curl_multi_errno
+curl_multi_exec
+curl_multi_getcontent
+curl_multi_info_read
+curl_multi_init
+curl_multi_remove_handle
+curl_multi_select
+curl_multi_setopt
+curl_multi_strerror
+curl_pause
+curl_reset
+curl_setopt
+curl_setopt_array
+curl_share_close
+curl_share_errno
+curl_share_init
+curl_share_setopt
+curl_share_strerror
+curl_strerror
+curl_unescape
+curl_upkeep
+curl_version
+date_add
+date_create
+date_create_from_format
+date_create_immutable
+date_create_immutable_from_format
+date_date_set
+date_default_timezone_get
+date_default_timezone_set
+date_diff
+date_format
+date_get_last_errors
+date_interval_create_from_date_string
+date_interval_format
+date_isodate_set
+date_modify
+date_offset_get
+date_parse
+date_parse_from_format
+date_sub
+date_sun_info
+date_sunrise
+date_sunset
+date_time_set
+date_timestamp_get
+date_timestamp_set
+date_timezone_get
+date_timezone_set
+datefmt_create
+datefmt_format
+datefmt_format_object
+datefmt_get_calendar
+datefmt_get_calendar_object
+datefmt_get_datetype
+datefmt_get_error_code
+datefmt_get_error_message
+datefmt_get_locale
+datefmt_get_pattern
+datefmt_get_timetype
+datefmt_get_timezone
+datefmt_get_timezone_id
+datefmt_is_lenient
+datefmt_localtime
+datefmt_parse
+datefmt_set_calendar
+datefmt_set_lenient
+datefmt_set_pattern
+datefmt_set_timezone
+dba_close
+dba_delete
+dba_exists
+dba_fetch
+dba_firstkey
+dba_handlers
+dba_insert
+dba_key_split
+dba_list
+dba_nextkey
+dba_open
+dba_optimize
+dba_popen
+dba_replace
+dba_sync
+dcgettext
+dcngettext
+debug_backtrace
+debug_print_backtrace
+debug_zval_dump
+decbin
+dechex
+deflate_add
+deflate_init
+deg2rad
+dgettext
+disk_free_space
+disk_total_space
+dl_test_test1
+dl_test_test2
+dngettext
+dns_check_record
+dns_get_mx
+dns_get_record
+dom_import_simplexml
+easter_date
+easter_days
+enchant_broker_describe
+enchant_broker_dict_exists
+enchant_broker_free
+enchant_broker_free_dict
+enchant_broker_get_dict_path
+enchant_broker_get_error
+enchant_broker_init
+enchant_broker_list_dicts
+enchant_broker_request_dict
+enchant_broker_request_pwl_dict
+enchant_broker_set_dict_path
+enchant_broker_set_ordering
+enchant_dict_add
+enchant_dict_add_to_session
+enchant_dict_check
+enchant_dict_describe
+enchant_dict_get_error
+enchant_dict_is_added
+enchant_dict_quick_check
+enchant_dict_store_replacement
+enchant_dict_suggest
+enum_exists
+error_clear_last
+error_get_last
+error_log
+error_reporting
+escapeshellarg
+escapeshellcmd
+exif_imagetype
+exif_read_data
+exif_tagname
+exif_thumbnail
+expm1
+extension_loaded
+fastcgi_finish_request
+fdatasync
+fdiv
+feof
+ffi_trampoline
+fflush
+fgetc
+fgetcsv
+fgets
+file_put_contents
+filter_has_var
+filter_id
+filter_input
+filter_input_array
+filter_list
+filter_var
+filter_var_array
+finfo_buffer
+finfo_close
+finfo_file
+finfo_open
+finfo_set_flags
+floatval
+fmod
+fnmatch
+forward_static_call
+forward_static_call_array
+fpassthru
+fpm_get_status
+fprintf
+fputcsv
+fread
+frenchtojd
+fscanf
+fseek
+fsockopen
+fstat
+fsync
+ftell
+ftok
+ftp_alloc
+ftp_append
+ftp_cdup
+ftp_chdir
+ftp_chmod
+ftp_close
+ftp_connect
+ftp_delete
+ftp_exec
+ftp_fget
+ftp_fput
+ftp_get
+ftp_get_option
+ftp_login
+ftp_mdtm
+ftp_mkdir
+ftp_mlsd
+ftp_nb_continue
+ftp_nb_fget
+ftp_nb_fput
+ftp_nb_get
+ftp_nb_put
+ftp_nlist
+ftp_pasv
+ftp_put
+ftp_pwd
+ftp_raw
+ftp_rawlist
+ftp_rename
+ftp_rmdir
+ftp_set_option
+ftp_site
+ftp_size
+ftp_ssl_connect
+ftp_systype
+ftruncate
+func_get_arg
+func_get_args
+func_num_args
+fwrite
+gc_collect_cycles
+gc_disable
+gc_enable
+gc_enabled
+gc_mem_caches
+gc_status
+gd_info
+get_browser
+get_called_class
+get_cfg_var
+get_class_methods
+get_class_vars
+get_current_user
+get_debug_type
+get_declared_classes
+get_declared_interfaces
+get_declared_traits
+get_defined_constants
+get_defined_functions
+get_defined_vars
+get_extension_funcs
+get_headers
+get_html_translation_table
+get_include_path
+get_included_files
+get_loaded_extensions
+get_mangled_object_vars
+get_meta_tags
+get_object_vars
+get_open_basedir
+get_parent_class
+get_resource_id
+get_resource_type
+get_resources
+getcwd
+getdate
+getenv
+gethostbyaddr
+gethostbyname
+gethostbynamel
+gethostname
+getimagesize
+getimagesizefromstring
+getlastmod
+getmygid
+getmyinode
+getmypid
+getmyuid
+getopt
+getprotobyname
+getprotobynumber
+getrusage
+getservbyname
+getservbyport
+gettext
+gettimeofday
+gettype
+gmdate
+gmmktime
+gmp_abs
+gmp_add
+gmp_and
+gmp_binomial
+gmp_clrbit
+gmp_cmp
+gmp_com
+gmp_div_q
+gmp_div_qr
+gmp_div_r
+gmp_divexact
+gmp_export
+gmp_fact
+gmp_gcd
+gmp_gcdext
+gmp_hamdist
+gmp_import
+gmp_init
+gmp_intval
+gmp_invert
+gmp_jacobi
+gmp_kronecker
+gmp_lcm
+gmp_legendre
+gmp_mod
+gmp_mul
+gmp_neg
+gmp_nextprime
+gmp_or
+gmp_perfect_power
+gmp_perfect_square
+gmp_popcount
+gmp_pow
+gmp_powm
+gmp_prob_prime
+gmp_random_bits
+gmp_random_range
+gmp_random_seed
+gmp_root
+gmp_rootrem
+gmp_scan0
+gmp_scan1
+gmp_setbit
+gmp_sign
+gmp_sqrt
+gmp_sqrtrem
+gmp_strval
+gmp_sub
+gmp_testbit
+gmp_xor
+gmstrftime
+grapheme_extract
+grapheme_stripos
+grapheme_stristr
+grapheme_strlen
+grapheme_strpos
+grapheme_strripos
+grapheme_strrpos
+grapheme_strstr
+grapheme_substr
+gregoriantojd
+gzcompress
+gzdecode
+gzdeflate
+gzencode
+gzfile
+gzinflate
+gzopen
+gzuncompress
+hash_algos
+hash_copy
+hash_equals
+hash_file
+hash_final
+hash_hkdf
+hash_hmac
+hash_hmac_algos
+hash_hmac_file
+hash_init
+hash_pbkdf2
+hash_update
+hash_update_file
+hash_update_stream
+header_register_callback
+header_remove
+headers_list
+headers_sent
+hebrev
+hex2bin
+hexdec
+highlight_file
+highlight_string
+hrtime
+html_entity_decode
+htmlentities
+htmlspecialchars_decode
+http_build_query
+http_response_code
+hypot
+iconv
+iconv_get_encoding
+iconv_mime_decode
+iconv_mime_decode_headers
+iconv_mime_encode
+iconv_set_encoding
+iconv_strlen
+iconv_strpos
+iconv_strrpos
+iconv_substr
+idn_to_ascii
+idn_to_utf8
+ignore_user_abort
+image_type_to_extension
+image_type_to_mime_type
+imageaffine
+imageaffinematrixconcat
+imageaffinematrixget
+imagealphablending
+imageantialias
+imagearc
+imageavif
+imagebmp
+imagechar
+imagecharup
+imagecolorallocate
+imagecolorallocatealpha
+imagecolorat
+imagecolorclosest
+imagecolorclosestalpha
+imagecolorclosesthwb
+imagecolordeallocate
+imagecolorexact
+imagecolorexactalpha
+imagecolormatch
+imagecolorresolve
+imagecolorresolvealpha
+imagecolorset
+imagecolorsforindex
+imagecolorstotal
+imagecolortransparent
+imageconvolution
+imagecopy
+imagecopymerge
+imagecopymergegray
+imagecopyresampled
+imagecopyresized
+imagecreate
+imagecreatefromavif
+imagecreatefrombmp
+imagecreatefromgd
+imagecreatefromgd2
+imagecreatefromgd2part
+imagecreatefromgif
+imagecreatefromjpeg
+imagecreatefrompng
+imagecreatefromstring
+imagecreatefromtga
+imagecreatefromwbmp
+imagecreatefromwebp
+imagecreatefromxbm
+imagecreatefromxpm
+imagecreatetruecolor
+imagecrop
+imagecropauto
+imagedashedline
+imagedestroy
+imageellipse
+imagefill
+imagefilledarc
+imagefilledellipse
+imagefilledpolygon
+imagefilledrectangle
+imagefilltoborder
+imagefilter
+imageflip
+imagefontheight
+imagefontwidth
+imageftbbox
+imagefttext
+imagegammacorrect
+imagegd
+imagegd2
+imagegetclip
+imagegetinterpolation
+imagegif
+imagegrabscreen
+imagegrabwindow
+imageinterlace
+imageistruecolor
+imagejpeg
+imagelayereffect
+imageline
+imageloadfont
+imageopenpolygon
+imagepalettecopy
+imagepalettetotruecolor
+imagepng
+imagepolygon
+imagerectangle
+imageresolution
+imagerotate
+imagesavealpha
+imagescale
+imagesetbrush
+imagesetclip
+imagesetinterpolation
+imagesetpixel
+imagesetstyle
+imagesetthickness
+imagesettile
+imagestring
+imagestringup
+imagesx
+imagesy
+imagetruecolortopalette
+imagetypes
+imagewbmp
+imagewebp
+imagexbm
+imap_8bit
+imap_alerts
+imap_append
+imap_base64
+imap_binary
+imap_body
+imap_bodystruct
+imap_check
+imap_clearflag_full
+imap_close
+imap_createmailbox
+imap_delete
+imap_deletemailbox
+imap_errors
+imap_expunge
+imap_fetch_overview
+imap_fetchbody
+imap_fetchheader
+imap_fetchmime
+imap_fetchstructure
+imap_gc
+imap_get_quota
+imap_get_quotaroot
+imap_getacl
+imap_getmailboxes
+imap_getsubscribed
+imap_headerinfo
+imap_headers
+imap_is_open
+imap_last_error
+imap_list
+imap_listscan
+imap_lsub
+imap_mail
+imap_mail_compose
+imap_mail_copy
+imap_mail_move
+imap_mailboxmsginfo
+imap_mime_header_decode
+imap_msgno
+imap_mutf7_to_utf8
+imap_num_msg
+imap_num_recent
+imap_open
+imap_ping
+imap_qprint
+imap_renamemailbox
+imap_reopen
+imap_rfc822_parse_adrlist
+imap_rfc822_parse_headers
+imap_rfc822_write_address
+imap_savebody
+imap_search
+imap_set_quota
+imap_setacl
+imap_setflag_full
+imap_sort
+imap_status
+imap_subscribe
+imap_thread
+imap_timeout
+imap_uid
+imap_undelete
+imap_unsubscribe
+imap_utf7_decode
+imap_utf7_encode
+imap_utf8
+imap_utf8_to_mutf7
+in_array
+inet_ntop
+inet_pton
+inflate_add
+inflate_get_read_len
+inflate_get_status
+inflate_init
+ini_get
+ini_get_all
+ini_parse_quantity
+ini_restore
+ini_set
+intdiv
+interface_exists
+intl_error_name
+intl_get_error_code
+intl_get_error_message
+intl_is_failure
+intlcal_add
+intlcal_after
+intlcal_before
+intlcal_clear
+intlcal_create_instance
+intlcal_equals
+intlcal_field_difference
+intlcal_from_date_time
+intlcal_get
+intlcal_get_actual_maximum
+intlcal_get_actual_minimum
+intlcal_get_available_locales
+intlcal_get_day_of_week_type
+intlcal_get_error_code
+intlcal_get_error_message
+intlcal_get_first_day_of_week
+intlcal_get_greatest_minimum
+intlcal_get_keyword_values_for_locale
+intlcal_get_least_maximum
+intlcal_get_locale
+intlcal_get_maximum
+intlcal_get_minimal_days_in_first_week
+intlcal_get_minimum
+intlcal_get_now
+intlcal_get_repeated_wall_time_option
+intlcal_get_skipped_wall_time_option
+intlcal_get_time
+intlcal_get_time_zone
+intlcal_get_type
+intlcal_get_weekend_transition
+intlcal_in_daylight_time
+intlcal_is_equivalent_to
+intlcal_is_lenient
+intlcal_is_set
+intlcal_is_weekend
+intlcal_roll
+intlcal_set
+intlcal_set_first_day_of_week
+intlcal_set_lenient
+intlcal_set_minimal_days_in_first_week
+intlcal_set_repeated_wall_time_option
+intlcal_set_skipped_wall_time_option
+intlcal_set_time
+intlcal_set_time_zone
+intlcal_to_date_time
+intlgregcal_create_instance
+intlgregcal_get_gregorian_change
+intlgregcal_is_leap_year
+intlgregcal_set_gregorian_change
+intltz_count_equivalent_ids
+intltz_create_default
+intltz_create_enumeration
+intltz_create_time_zone
+intltz_create_time_zone_id_enumeration
+intltz_from_date_time_zone
+intltz_get_canonical_id
+intltz_get_display_name
+intltz_get_dst_savings
+intltz_get_equivalent_id
+intltz_get_error_code
+intltz_get_error_message
+intltz_get_gmt
+intltz_get_id
+intltz_get_id_for_windows_id
+intltz_get_offset
+intltz_get_raw_offset
+intltz_get_region
+intltz_get_tz_data_version
+intltz_get_unknown
+intltz_get_windows_id
+intltz_has_same_rules
+intltz_to_date_time_zone
+intltz_use_daylight_time
+ip2long
+iptcembed
+iptcparse
+is_bool
+is_callable
+is_countable
+is_executable
+is_file
+is_finite
+is_float
+is_infinite
+is_iterable
+is_link
+is_nan
+is_readable
+is_resource
+is_scalar
+is_soap_fault
+is_string
+is_subclass_of
+is_uploaded_file
+is_writable
+iterator_apply
+iterator_count
+iterator_to_array
+jddayofweek
+jdmonthname
+jdtofrench
+jdtogregorian
+jdtojewish
+jdtojulian
+jdtounix
+jewishtojd
+json_last_error
+json_last_error_msg
+json_validate
+juliantojd
+krsort
+ksort
+lcfirst
+lcg_value
+lchgrp
+lchown
+ldap_8859_to_t61
+ldap_add
+ldap_add_ext
+ldap_bind
+ldap_bind_ext
+ldap_compare
+ldap_connect
+ldap_connect_wallet
+ldap_count_entries
+ldap_count_references
+ldap_delete
+ldap_delete_ext
+ldap_dn2ufn
+ldap_err2str
+ldap_errno
+ldap_error
+ldap_escape
+ldap_exop
+ldap_exop_passwd
+ldap_exop_refresh
+ldap_exop_sync
+ldap_exop_whoami
+ldap_explode_dn
+ldap_first_attribute
+ldap_first_entry
+ldap_first_reference
+ldap_free_result
+ldap_get_attributes
+ldap_get_dn
+ldap_get_entries
+ldap_get_option
+ldap_get_values_len
+ldap_list
+ldap_mod_add
+ldap_mod_add_ext
+ldap_mod_del
+ldap_mod_del_ext
+ldap_mod_replace
+ldap_mod_replace_ext
+ldap_modify_batch
+ldap_next_attribute
+ldap_next_entry
+ldap_next_reference
+ldap_parse_exop
+ldap_parse_reference
+ldap_parse_result
+ldap_read
+ldap_rename
+ldap_rename_ext
+ldap_sasl_bind
+ldap_search
+ldap_set_option
+ldap_set_rebind_proc
+ldap_start_tls
+ldap_t61_to_8859
+ldap_unbind
+levenshtein
+libxml_clear_errors
+libxml_disable_entity_loader
+libxml_get_errors
+libxml_get_external_entity_loader
+libxml_get_last_error
+libxml_set_external_entity_loader
+libxml_set_streams_context
+libxml_use_internal_errors
+linkinfo
+litespeed_finish_request
+litespeed_request_headers
+litespeed_response_headers
+locale_accept_from_http
+locale_canonicalize
+locale_compose
+locale_filter_matches
+locale_get_all_variants
+locale_get_default
+locale_get_display_language
+locale_get_display_name
+locale_get_display_region
+locale_get_display_script
+locale_get_display_variant
+locale_get_keywords
+locale_get_primary_language
+locale_get_region
+locale_get_script
+locale_lookup
+locale_parse
+locale_set_default
+localeconv
+localtime
+log10
+log1p
+long2ip
+lstat
+ltrim
+mb_check_encoding
+mb_chr
+mb_convert_case
+mb_convert_encoding
+mb_convert_kana
+mb_convert_variables
+mb_decode_mimeheader
+mb_decode_numericentity
+mb_detect_encoding
+mb_detect_order
+mb_encode_mimeheader
+mb_encode_numericentity
+mb_encoding_aliases
+mb_ereg
+mb_ereg_match
+mb_ereg_replace
+mb_ereg_replace_callback
+mb_ereg_search
+mb_ereg_search_getpos
+mb_ereg_search_getregs
+mb_ereg_search_init
+mb_ereg_search_pos
+mb_ereg_search_regs
+mb_ereg_search_setpos
+mb_eregi
+mb_eregi_replace
+mb_get_info
+mb_http_input
+mb_http_output
+mb_internal_encoding
+mb_language
+mb_list_encodings
+mb_ord
+mb_output_handler
+mb_parse_str
+mb_preferred_mime_name
+mb_regex_encoding
+mb_regex_set_options
+mb_scrub
+mb_send_mail
+mb_split
+mb_str_pad
+mb_str_split
+mb_strcut
+mb_strimwidth
+mb_stripos
+mb_stristr
+mb_strlen
+mb_strpos
+mb_strrchr
+mb_strrichr
+mb_strripos
+mb_strrpos
+mb_strstr
+mb_strtolower
+mb_strtoupper
+mb_strwidth
+mb_substitute_character
+mb_substr
+mb_substr_count
+md5_file
+memory_get_peak_usage
+memory_get_usage
+memory_reset_peak_usage
+metaphone
+mhash
+mhash_count
+mhash_get_block_size
+mhash_get_hash_name
+mhash_keygen_s2k
+microtime
+mime_content_type
+mkdir
+mktime
+move_uploaded_file
+msg_get_queue
+msg_queue_exists
+msg_receive
+msg_remove_queue
+msg_send
+msg_set_queue
+msg_stat_queue
+msgfmt_create
+msgfmt_format
+msgfmt_format_message
+msgfmt_get_error_code
+msgfmt_get_error_message
+msgfmt_get_locale
+msgfmt_get_pattern
+msgfmt_parse
+msgfmt_parse_message
+msgfmt_set_pattern
+mt_getrandmax
+mt_rand
+mt_srand
+mysqli_affected_rows
+mysqli_autocommit
+mysqli_begin_transaction
+mysqli_change_user
+mysqli_character_set_name
+mysqli_close
+mysqli_commit
+mysqli_connect
+mysqli_connect_errno
+mysqli_connect_error
+mysqli_data_seek
+mysqli_debug
+mysqli_dump_debug_info
+mysqli_errno
+mysqli_error
+mysqli_error_list
+mysqli_execute_query
+mysqli_fetch_all
+mysqli_fetch_array
+mysqli_fetch_assoc
+mysqli_fetch_column
+mysqli_fetch_field
+mysqli_fetch_field_direct
+mysqli_fetch_fields
+mysqli_fetch_lengths
+mysqli_fetch_object
+mysqli_fetch_row
+mysqli_field_count
+mysqli_field_seek
+mysqli_field_tell
+mysqli_free_result
+mysqli_get_charset
+mysqli_get_client_info
+mysqli_get_client_stats
+mysqli_get_client_version
+mysqli_get_connection_stats
+mysqli_get_host_info
+mysqli_get_links_stats
+mysqli_get_proto_info
+mysqli_get_server_info
+mysqli_get_server_version
+mysqli_get_warnings
+mysqli_info
+mysqli_init
+mysqli_insert_id
+mysqli_kill
+mysqli_more_results
+mysqli_multi_query
+mysqli_next_result
+mysqli_num_fields
+mysqli_num_rows
+mysqli_options
+mysqli_ping
+mysqli_poll
+mysqli_prepare
+mysqli_query
+mysqli_real_connect
+mysqli_real_escape_string
+mysqli_real_query
+mysqli_reap_async_query
+mysqli_refresh
+mysqli_release_savepoint
+mysqli_report
+mysqli_rollback
+mysqli_savepoint
+mysqli_select_db
+mysqli_set_charset
+mysqli_sqlstate
+mysqli_ssl_set
+mysqli_stat
+mysqli_stmt_affected_rows
+mysqli_stmt_attr_get
+mysqli_stmt_attr_set
+mysqli_stmt_bind_param
+mysqli_stmt_bind_result
+mysqli_stmt_close
+mysqli_stmt_data_seek
+mysqli_stmt_errno
+mysqli_stmt_error
+mysqli_stmt_error_list
+mysqli_stmt_execute
+mysqli_stmt_fetch
+mysqli_stmt_field_count
+mysqli_stmt_free_result
+mysqli_stmt_get_result
+mysqli_stmt_get_warnings
+mysqli_stmt_init
+mysqli_stmt_insert_id
+mysqli_stmt_more_results
+mysqli_stmt_next_result
+mysqli_stmt_num_rows
+mysqli_stmt_param_count
+mysqli_stmt_prepare
+mysqli_stmt_reset
+mysqli_stmt_result_metadata
+mysqli_stmt_send_long_data
+mysqli_stmt_sqlstate
+mysqli_stmt_store_result
+mysqli_store_result
+mysqli_thread_id
+mysqli_thread_safe
+mysqli_use_result
+mysqli_warning_count
+natcasesort
+natsort
+net_get_interfaces
+ngettext
+nl2br
+nl_langinfo
+normalizer_get_raw_decomposition
+normalizer_is_normalized
+normalizer_normalize
+numfmt_create
+numfmt_format
+numfmt_format_currency
+numfmt_get_attribute
+numfmt_get_error_code
+numfmt_get_error_message
+numfmt_get_locale
+numfmt_get_pattern
+numfmt_get_symbol
+numfmt_get_text_attribute
+numfmt_parse
+numfmt_parse_currency
+numfmt_set_attribute
+numfmt_set_pattern
+numfmt_set_symbol
+numfmt_set_text_attribute
+ob_clean
+ob_end_clean
+ob_end_flush
+ob_flush
+ob_get_clean
+ob_get_contents
+ob_get_flush
+ob_get_length
+ob_get_level
+ob_get_status
+ob_gzhandler
+ob_implicit_flush
+ob_list_handlers
+oci_bind_array_by_name
+oci_bind_by_name
+oci_cancel
+oci_client_version
+oci_close
+oci_collection_append
+oci_collection_assign
+oci_collection_element_assign
+oci_collection_element_get
+oci_collection_max
+oci_collection_size
+oci_collection_trim
+oci_commit
+oci_connect
+oci_define_by_name
+oci_error
+oci_execute
+oci_fetch
+oci_fetch_all
+oci_fetch_array
+oci_fetch_assoc
+oci_fetch_object
+oci_fetch_row
+oci_field_is_null
+oci_field_name
+oci_field_precision
+oci_field_scale
+oci_field_size
+oci_field_type
+oci_field_type_raw
+oci_free_collection
+oci_free_descriptor
+oci_free_statement
+oci_get_implicit_resultset
+oci_lob_append
+oci_lob_copy
+oci_lob_eof
+oci_lob_erase
+oci_lob_export
+oci_lob_flush
+oci_lob_import
+oci_lob_is_equal
+oci_lob_load
+oci_lob_read
+oci_lob_rewind
+oci_lob_save
+oci_lob_seek
+oci_lob_size
+oci_lob_tell
+oci_lob_truncate
+oci_lob_write
+oci_new_collection
+oci_new_connect
+oci_new_cursor
+oci_new_descriptor
+oci_num_fields
+oci_num_rows
+oci_parse
+oci_password_change
+oci_pconnect
+oci_register_taf_callback
+oci_result
+oci_rollback
+oci_server_version
+oci_set_action
+oci_set_call_timeout
+oci_set_client_identifier
+oci_set_client_info
+oci_set_db_operation
+oci_set_edition
+oci_set_module_name
+oci_set_prefetch
+oci_set_prefetch_lob
+oci_statement_type
+oci_unregister_taf_callback
+ocifetchinto
+ocigetbufferinglob
+ocisetbufferinglob
+octdec
+odbc_autocommit
+odbc_binmode
+odbc_close
+odbc_close_all
+odbc_columnprivileges
+odbc_columns
+odbc_commit
+odbc_connect
+odbc_connection_string_is_quoted
+odbc_connection_string_quote
+odbc_connection_string_should_quote
+odbc_cursor
+odbc_data_source
+odbc_error
+odbc_errormsg
+odbc_exec
+odbc_execute
+odbc_fetch_array
+odbc_fetch_into
+odbc_fetch_object
+odbc_fetch_row
+odbc_field_len
+odbc_field_name
+odbc_field_num
+odbc_field_scale
+odbc_field_type
+odbc_foreignkeys
+odbc_free_result
+odbc_gettypeinfo
+odbc_longreadlen
+odbc_next_result
+odbc_num_fields
+odbc_num_rows
+odbc_pconnect
+odbc_prepare
+odbc_primarykeys
+odbc_procedurecolumns
+odbc_procedures
+odbc_result
+odbc_result_all
+odbc_rollback
+odbc_setoption
+odbc_specialcolumns
+odbc_statistics
+odbc_tableprivileges
+odbc_tables
+opcache_compile_file
+opcache_get_configuration
+opcache_get_status
+opcache_invalidate
+opcache_is_script_cached
+opcache_reset
+opendir
+openlog
+openssl_cipher_iv_length
+openssl_cipher_key_length
+openssl_cms_decrypt
+openssl_cms_encrypt
+openssl_cms_read
+openssl_cms_sign
+openssl_cms_verify
+openssl_csr_export
+openssl_csr_export_to_file
+openssl_csr_get_public_key
+openssl_csr_get_subject
+openssl_csr_new
+openssl_csr_sign
+openssl_decrypt
+openssl_dh_compute_key
+openssl_digest
+openssl_encrypt
+openssl_error_string
+openssl_get_cert_locations
+openssl_get_cipher_methods
+openssl_get_curve_names
+openssl_get_md_methods
+openssl_open
+openssl_pbkdf2
+openssl_pkcs12_export
+openssl_pkcs12_export_to_file
+openssl_pkcs12_read
+openssl_pkcs7_decrypt
+openssl_pkcs7_encrypt
+openssl_pkcs7_read
+openssl_pkcs7_sign
+openssl_pkcs7_verify
+openssl_pkey_derive
+openssl_pkey_export
+openssl_pkey_export_to_file
+openssl_pkey_free
+openssl_pkey_get_details
+openssl_pkey_get_private
+openssl_pkey_get_public
+openssl_pkey_new
+openssl_private_decrypt
+openssl_private_encrypt
+openssl_public_decrypt
+openssl_public_encrypt
+openssl_random_pseudo_bytes
+openssl_seal
+openssl_sign
+openssl_spki_export
+openssl_spki_export_challenge
+openssl_spki_new
+openssl_spki_verify
+openssl_verify
+openssl_x509_check_private_key
+openssl_x509_checkpurpose
+openssl_x509_export
+openssl_x509_export_to_file
+openssl_x509_fingerprint
+openssl_x509_free
+openssl_x509_parse
+openssl_x509_read
+openssl_x509_verify
+output_add_rewrite_var
+output_reset_rewrite_vars
+parse_ini_file
+parse_ini_string
+parse_str
+passthru
+password_algos
+password_get_info
+password_hash
+password_needs_rehash
+password_verify
+pathinfo
+pclose
+pcntl_alarm
+pcntl_async_signals
+pcntl_exec
+pcntl_fork
+pcntl_forkx
+pcntl_get_last_error
+pcntl_getpriority
+pcntl_rfork
+pcntl_setpriority
+pcntl_signal
+pcntl_signal_dispatch
+pcntl_signal_get_handler
+pcntl_sigprocmask
+pcntl_sigtimedwait
+pcntl_sigwaitinfo
+pcntl_strerror
+pcntl_unshare
+pcntl_wait
+pcntl_waitpid
+pcntl_wexitstatus
+pcntl_wifcontinued
+pcntl_wifexited
+pcntl_wifsignaled
+pcntl_wifstopped
+pcntl_wstopsig
+pcntl_wtermsig
+pdo_drivers
+pfsockopen
+pg_affected_rows
+pg_cancel_query
+pg_client_encoding
+pg_close
+pg_connect
+pg_connect_poll
+pg_connection_busy
+pg_connection_reset
+pg_connection_status
+pg_consume_input
+pg_convert
+pg_copy_from
+pg_copy_to
+pg_dbname
+pg_delete
+pg_end_copy
+pg_enter_pipeline_mode
+pg_escape_bytea
+pg_escape_identifier
+pg_escape_literal
+pg_escape_string
+pg_execute
+pg_exit_pipeline_mode
+pg_fetch_all
+pg_fetch_all_columns
+pg_fetch_array
+pg_fetch_assoc
+pg_fetch_object
+pg_fetch_result
+pg_fetch_row
+pg_field_is_null
+pg_field_name
+pg_field_num
+pg_field_prtlen
+pg_field_size
+pg_field_table
+pg_field_type
+pg_field_type_oid
+pg_fieldisnull
+pg_fieldprtlen
+pg_flush
+pg_free_result
+pg_get_notify
+pg_get_pid
+pg_get_result
+pg_host
+pg_insert
+pg_last_error
+pg_last_notice
+pg_last_oid
+pg_lo_close
+pg_lo_create
+pg_lo_export
+pg_lo_import
+pg_lo_open
+pg_lo_read
+pg_lo_read_all
+pg_lo_seek
+pg_lo_tell
+pg_lo_truncate
+pg_lo_unlink
+pg_lo_write
+pg_meta_data
+pg_num_fields
+pg_num_rows
+pg_options
+pg_parameter_status
+pg_pconnect
+pg_ping
+pg_pipeline_status
+pg_pipeline_sync
+pg_port
+pg_prepare
+pg_put_line
+pg_query
+pg_query_params
+pg_result_error
+pg_result_error_field
+pg_result_seek
+pg_result_status
+pg_select
+pg_send_execute
+pg_send_prepare
+pg_send_query
+pg_send_query_params
+pg_set_client_encoding
+pg_set_error_context_visibility
+pg_set_error_verbosity
+pg_socket
+pg_trace
+pg_transaction_status
+pg_tty
+pg_unescape_bytea
+pg_untrace
+pg_update
+pg_version
+php_ini_loaded_file
+php_ini_scanned_files
+php_sapi_name
+php_strip_whitespace
+php_uname
+phpcredits
+phpdbg_break_file
+phpdbg_break_function
+phpdbg_break_method
+phpdbg_break_next
+phpdbg_clear
+phpdbg_color
+phpdbg_end_oplog
+phpdbg_exec
+phpdbg_get_executable
+phpdbg_prompt
+phpdbg_start_oplog
+phpinfo
+phpversion
+posix_access
+posix_ctermid
+posix_eaccess
+posix_fpathconf
+posix_get_last_error
+posix_getcwd
+posix_getegid
+posix_geteuid
+posix_getgid
+posix_getgrgid
+posix_getgrnam
+posix_getgroups
+posix_getlogin
+posix_getpgid
+posix_getpgrp
+posix_getpid
+posix_getppid
+posix_getpwnam
+posix_getpwuid
+posix_getrlimit
+posix_getsid
+posix_getuid
+posix_initgroups
+posix_isatty
+posix_kill
+posix_mkfifo
+posix_mknod
+posix_pathconf
+posix_setegid
+posix_seteuid
+posix_setgid
+posix_setpgid
+posix_setrlimit
+posix_setsid
+posix_setuid
+posix_strerror
+posix_sysconf
+posix_times
+posix_ttyname
+posix_uname
+preg_filter
+preg_grep
+preg_last_error
+preg_last_error_msg
+preg_match_all
+preg_quote
+preg_replace_callback
+preg_replace_callback_array
+preg_split
+proc_close
+proc_get_status
+proc_nice
+proc_open
+proc_terminate
+property_exists
+pspell_add_to_personal
+pspell_add_to_session
+pspell_check
+pspell_clear_session
+pspell_config_create
+pspell_config_data_dir
+pspell_config_dict_dir
+pspell_config_ignore
+pspell_config_mode
+pspell_config_personal
+pspell_config_repl
+pspell_config_runtogether
+pspell_config_save_repl
+pspell_new
+pspell_new_config
+pspell_new_personal
+pspell_save_wordlist
+pspell_store_replacement
+pspell_suggest
+putenv
+quoted_printable_decode
+quoted_printable_encode
+quotemeta
+rad2deg
+random_bytes
+random_int
+rawurldecode
+rawurlencode
+readdir
+readfile
+readgzfile
+readline
+readline_add_history
+readline_callback_handler_install
+readline_callback_handler_remove
+readline_callback_read_char
+readline_clear_history
+readline_completion_function
+readline_info
+readline_list_history
+readline_on_new_line
+readline_read_history
+readline_redisplay
+readline_write_history
+readlink
+realpath
+realpath_cache_get
+realpath_cache_size
+register_shutdown_function
+register_tick_function
+resourcebundle_count
+resourcebundle_create
+resourcebundle_get
+resourcebundle_get_error_code
+resourcebundle_get_error_message
+resourcebundle_locales
+restore_error_handler
+restore_exception_handler
+rewind
+rewinddir
+rmdir
+rsort
+sapi_windows_cp_conv
+sapi_windows_cp_get
+sapi_windows_cp_is_utf8
+sapi_windows_cp_set
+sapi_windows_generate_ctrl_event
+sapi_windows_set_ctrl_handler
+sapi_windows_vt100_support
+scandir
+sem_acquire
+sem_get
+sem_release
+sem_remove
+session_abort
+session_cache_expire
+session_cache_limiter
+session_create_id
+session_decode
+session_destroy
+session_encode
+session_gc
+session_get_cookie_params
+session_id
+session_module_name
+session_name
+session_regenerate_id
+session_register_shutdown
+session_reset
+session_save_path
+session_set_cookie_params
+session_set_save_handler
+session_start
+session_status
+session_unset
+session_write_close
+set_error_handler
+set_exception_handler
+set_include_path
+set_time_limit
+setcookie
+setlocale
+setrawcookie
+sha1
+sha1_file
+shell_exec
+shm_attach
+shm_detach
+shm_get_var
+shm_has_var
+shm_put_var
+shm_remove
+shm_remove_var
+shmop_close
+shmop_delete
+shmop_open
+shmop_read
+shmop_size
+shmop_write
+similar_text
+simplexml_import_dom
+simplexml_load_file
+simplexml_load_string
+sinh
+snmp2_get
+snmp2_getnext
+snmp2_real_walk
+snmp2_set
+snmp2_walk
+snmp3_get
+snmp3_getnext
+snmp3_real_walk
+snmp3_set
+snmp3_walk
+snmp_get_quick_print
+snmp_get_valueretrieval
+snmp_read_mib
+snmp_set_enum_print
+snmp_set_oid_output_format
+snmp_set_quick_print
+snmp_set_valueretrieval
+snmpget
+snmpgetnext
+snmprealwalk
+snmpset
+snmpwalk
+socket_accept
+socket_addrinfo_bind
+socket_addrinfo_connect
+socket_addrinfo_explain
+socket_addrinfo_lookup
+socket_atmark
+socket_bind
+socket_clear_error
+socket_close
+socket_cmsg_space
+socket_connect
+socket_create
+socket_create_listen
+socket_create_pair
+socket_export_stream
+socket_get_option
+socket_getpeername
+socket_getsockname
+socket_import_stream
+socket_last_error
+socket_listen
+socket_read
+socket_recv
+socket_recvfrom
+socket_recvmsg
+socket_select
+socket_send
+socket_sendmsg
+socket_sendto
+socket_set_block
+socket_set_nonblock
+socket_set_option
+socket_shutdown
+socket_strerror
+socket_write
+socket_wsaprotocol_info_export
+socket_wsaprotocol_info_import
+socket_wsaprotocol_info_release
+sodium_add
+sodium_base642bin
+sodium_bin2base64
+sodium_bin2hex
+sodium_compare
+sodium_crypto_aead_aes256gcm_decrypt
+sodium_crypto_aead_aes256gcm_encrypt
+sodium_crypto_aead_aes256gcm_is_available
+sodium_crypto_aead_aes256gcm_keygen
+sodium_crypto_aead_chacha20poly1305_decrypt
+sodium_crypto_aead_chacha20poly1305_encrypt
+sodium_crypto_aead_chacha20poly1305_ietf_decrypt
+sodium_crypto_aead_chacha20poly1305_ietf_encrypt
+sodium_crypto_aead_chacha20poly1305_ietf_keygen
+sodium_crypto_aead_chacha20poly1305_keygen
+sodium_crypto_aead_xchacha20poly1305_ietf_decrypt
+sodium_crypto_aead_xchacha20poly1305_ietf_encrypt
+sodium_crypto_aead_xchacha20poly1305_ietf_keygen
+sodium_crypto_auth
+sodium_crypto_auth_keygen
+sodium_crypto_auth_verify
+sodium_crypto_box
+sodium_crypto_box_keypair
+sodium_crypto_box_keypair_from_secretkey_and_publickey
+sodium_crypto_box_open
+sodium_crypto_box_publickey
+sodium_crypto_box_publickey_from_secretkey
+sodium_crypto_box_seal
+sodium_crypto_box_seal_open
+sodium_crypto_box_secretkey
+sodium_crypto_box_seed_keypair
+sodium_crypto_core_ristretto255_add
+sodium_crypto_core_ristretto255_from_hash
+sodium_crypto_core_ristretto255_is_valid_point
+sodium_crypto_core_ristretto255_random
+sodium_crypto_core_ristretto255_scalar_add
+sodium_crypto_core_ristretto255_scalar_complement
+sodium_crypto_core_ristretto255_scalar_invert
+sodium_crypto_core_ristretto255_scalar_mul
+sodium_crypto_core_ristretto255_scalar_negate
+sodium_crypto_core_ristretto255_scalar_random
+sodium_crypto_core_ristretto255_scalar_reduce
+sodium_crypto_core_ristretto255_scalar_sub
+sodium_crypto_core_ristretto255_sub
+sodium_crypto_generichash
+sodium_crypto_generichash_final
+sodium_crypto_generichash_init
+sodium_crypto_generichash_keygen
+sodium_crypto_generichash_update
+sodium_crypto_kdf_derive_from_key
+sodium_crypto_kdf_keygen
+sodium_crypto_kx_client_session_keys
+sodium_crypto_kx_keypair
+sodium_crypto_kx_publickey
+sodium_crypto_kx_secretkey
+sodium_crypto_kx_seed_keypair
+sodium_crypto_kx_server_session_keys
+sodium_crypto_pwhash
+sodium_crypto_pwhash_scryptsalsa208sha256
+sodium_crypto_pwhash_scryptsalsa208sha256_str
+sodium_crypto_pwhash_scryptsalsa208sha256_str_verify
+sodium_crypto_pwhash_str
+sodium_crypto_pwhash_str_needs_rehash
+sodium_crypto_pwhash_str_verify
+sodium_crypto_scalarmult
+sodium_crypto_scalarmult_ristretto255
+sodium_crypto_scalarmult_ristretto255_base
+sodium_crypto_secretbox
+sodium_crypto_secretbox_keygen
+sodium_crypto_secretbox_open
+sodium_crypto_secretstream_xchacha20poly1305_init_pull
+sodium_crypto_secretstream_xchacha20poly1305_init_push
+sodium_crypto_secretstream_xchacha20poly1305_keygen
+sodium_crypto_secretstream_xchacha20poly1305_pull
+sodium_crypto_secretstream_xchacha20poly1305_push
+sodium_crypto_secretstream_xchacha20poly1305_rekey
+sodium_crypto_shorthash
+sodium_crypto_shorthash_keygen
+sodium_crypto_sign
+sodium_crypto_sign_detached
+sodium_crypto_sign_ed25519_pk_to_curve25519
+sodium_crypto_sign_ed25519_sk_to_curve25519
+sodium_crypto_sign_keypair
+sodium_crypto_sign_keypair_from_secretkey_and_publickey
+sodium_crypto_sign_open
+sodium_crypto_sign_publickey
+sodium_crypto_sign_publickey_from_secretkey
+sodium_crypto_sign_secretkey
+sodium_crypto_sign_seed_keypair
+sodium_crypto_sign_verify_detached
+sodium_crypto_stream
+sodium_crypto_stream_keygen
+sodium_crypto_stream_xchacha20
+sodium_crypto_stream_xchacha20_keygen
+sodium_crypto_stream_xchacha20_xor
+sodium_crypto_stream_xchacha20_xor_ic
+sodium_crypto_stream_xor
+sodium_hex2bin
+sodium_increment
+sodium_memcmp
+sodium_memzero
+sodium_pad
+sodium_unpad
+soundex
+spl_autoload
+spl_autoload_call
+spl_autoload_extensions
+spl_autoload_functions
+spl_autoload_register
+spl_autoload_unregister
+spl_classes
+spl_object_hash
+spl_object_id
+sprintf
+sqrt
+sscanf
+str_contains
+str_decrement
+str_ends_with
+str_getcsv
+str_increment
+str_ireplace
+str_pad
+str_repeat
+str_rot13
+str_shuffle
+str_split
+str_starts_with
+str_word_count
+strcasecmp
+strcmp
+strcoll
+strcspn
+stream_bucket_append
+stream_bucket_make_writeable
+stream_bucket_new
+stream_bucket_prepend
+stream_context_create
+stream_context_get_default
+stream_context_get_options
+stream_context_get_params
+stream_context_set_default
+stream_context_set_option
+stream_context_set_options
+stream_context_set_params
+stream_copy_to_stream
+stream_filter_append
+stream_filter_prepend
+stream_filter_register
+stream_filter_remove
+stream_get_contents
+stream_get_filters
+stream_get_line
+stream_get_meta_data
+stream_get_transports
+stream_get_wrappers
+stream_is_local
+stream_isatty
+stream_resolve_include_path
+stream_select
+stream_set_blocking
+stream_set_chunk_size
+stream_set_read_buffer
+stream_set_timeout
+stream_set_write_buffer
+stream_socket_accept
+stream_socket_client
+stream_socket_enable_crypto
+stream_socket_get_name
+stream_socket_pair
+stream_socket_recvfrom
+stream_socket_sendto
+stream_socket_server
+stream_socket_shutdown
+stream_supports_lock
+stream_wrapper_register
+stream_wrapper_restore
+stream_wrapper_unregister
+strftime
+stripcslashes
+stripos
+stripslashes
+stristr
+strnatcasecmp
+strnatcmp
+strncasecmp
+strncmp
+strpbrk
+strptime
+strrchr
+strrev
+strripos
+strrpos
+strspn
+strstr
+strtok
+strtr
+strval
+substr_compare
+substr_count
+substr_replace
+sys_get_temp_dir
+sys_getloadavg
+tanh
+tempnam
+test1
+test2
+textdomain
+tidy_access_count
+tidy_clean_repair
+tidy_config_count
+tidy_diagnose
+tidy_error_count
+tidy_get_body
+tidy_get_config
+tidy_get_error_buffer
+tidy_get_head
+tidy_get_html
+tidy_get_html_ver
+tidy_get_opt_doc
+tidy_get_output
+tidy_get_release
+tidy_get_root
+tidy_get_status
+tidy_getopt
+tidy_is_xhtml
+tidy_is_xml
+tidy_parse_file
+tidy_parse_string
+tidy_repair_file
+tidy_repair_string
+tidy_warning_count
+time_nanosleep
+time_sleep_until
+timezone_abbreviations_list
+timezone_identifiers_list
+timezone_location_get
+timezone_name_from_abbr
+timezone_name_get
+timezone_offset_get
+timezone_open
+timezone_transitions_get
+timezone_version_get
+tmpfile
+token_get_all
+token_name
+trait_exists
+transliterator_create
+transliterator_create_from_rules
+transliterator_create_inverse
+transliterator_get_error_code
+transliterator_get_error_message
+transliterator_list_ids
+transliterator_transliterate
+trigger_error
+uasort
+ucwords
+uksort
+umask
+uniqid
+unixtojd
+unregister_tick_function
+urldecode
+use_soap_error_handler
+usleep
+usort
+utf8_decode
+utf8_encode
+var_dump
+var_export
+variant_abs
+variant_add
+variant_and
+variant_cast
+variant_cat
+variant_cmp
+variant_date_from_timestamp
+variant_date_to_timestamp
+variant_div
+variant_eqv
+variant_fix
+variant_get_type
+variant_idiv
+variant_imp
+variant_int
+variant_mod
+variant_mul
+variant_neg
+variant_not
+variant_or
+variant_pow
+variant_round
+variant_set
+variant_set_type
+variant_sub
+variant_xor
+version_compare
+vfprintf
+vprintf
+vsprintf
+wordwrap
+xml_error_string
+xml_get_current_byte_index
+xml_get_current_column_number
+xml_get_current_line_number
+xml_get_error_code
+xml_parse
+xml_parse_into_struct
+xml_parser_create
+xml_parser_create_ns
+xml_parser_free
+xml_parser_get_option
+xml_parser_set_option
+xml_set_character_data_handler
+xml_set_default_handler
+xml_set_element_handler
+xml_set_end_namespace_decl_handler
+xml_set_external_entity_ref_handler
+xml_set_notation_decl_handler
+xml_set_object
+xml_set_processing_instruction_handler
+xml_set_start_namespace_decl_handler
+xml_set_unparsed_entity_decl_handler
+xmlwriter_end_attribute
+xmlwriter_end_cdata
+xmlwriter_end_comment
+xmlwriter_end_document
+xmlwriter_end_dtd
+xmlwriter_end_dtd_attlist
+xmlwriter_end_dtd_element
+xmlwriter_end_dtd_entity
+xmlwriter_end_element
+xmlwriter_end_pi
+xmlwriter_flush
+xmlwriter_full_end_element
+xmlwriter_open_memory
+xmlwriter_open_uri
+xmlwriter_output_memory
+xmlwriter_set_indent
+xmlwriter_set_indent_string
+xmlwriter_start_attribute
+xmlwriter_start_attribute_ns
+xmlwriter_start_cdata
+xmlwriter_start_comment
+xmlwriter_start_document
+xmlwriter_start_dtd
+xmlwriter_start_dtd_attlist
+xmlwriter_start_dtd_element
+xmlwriter_start_dtd_entity
+xmlwriter_start_element
+xmlwriter_start_element_ns
+xmlwriter_start_pi
+xmlwriter_text
+xmlwriter_write_attribute
+xmlwriter_write_attribute_ns
+xmlwriter_write_cdata
+xmlwriter_write_comment
+xmlwriter_write_dtd
+xmlwriter_write_dtd_attlist
+xmlwriter_write_dtd_element
+xmlwriter_write_dtd_entity
+xmlwriter_write_element
+xmlwriter_write_element_ns
+xmlwriter_write_pi
+xmlwriter_write_raw
+zend_call_method
+zend_create_unterminated_string
+zend_get_current_func_name
+zend_get_map_ptr_last
+zend_get_unit_enum
+zend_iterable
+zend_iterable_legacy
+zend_leak_bytes
+zend_leak_variable
+zend_number_or_string
+zend_number_or_string_or_null
+zend_string_or_object
+zend_string_or_object_or_null
+zend_string_or_stdclass
+zend_string_or_stdclass_or_null
+zend_terminate_string
+zend_test_array_return
+zend_test_compile_string
+zend_test_crash
+zend_test_create_throwing_resource
+zend_test_deprecated
+zend_test_fill_packed_array
+zend_test_func
+zend_test_is_string_marked_as_valid_utf8
+zend_test_nullable_array_return
+zend_test_override_libxml_global_state
+zend_test_parameter_with_attribute
+zend_test_void_return
+zend_test_zend_call_stack_get
+zend_test_zend_call_stack_use_all
+zend_test_zend_ini_parse_quantity
+zend_test_zend_ini_parse_uquantity
+zend_test_zend_ini_str
+zend_thread_id
+zend_version
+zend_weakmap_attach
+zend_weakmap_dump
+zend_weakmap_remove
+zip_close
+zip_entry_close
+zip_entry_compressedsize
+zip_entry_compressionmethod
+zip_entry_filesize
+zip_entry_name
+zip_entry_open
+zip_entry_read
+zip_open
+zip_read
+zlib_decode
+zlib_encode
+zlib_get_coding_type
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/php-variables.data b/pkg/render/applicationlayer/embed/coreruleset/rules/php-variables.data
new file mode 100644
index 0000000000..f5b55ff60e
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/php-variables.data
@@ -0,0 +1,30 @@
+# The data in this list comes from
+# https://www.php.net/manual/en/reserved.variables.php
+# https://www.php.net/manual/en/language.variables.superglobals.php
+# https://www.php.net/manual/en/language.constants.predefined.php
+
+#  These superglobal variables are:
+$GLOBALS
+$_COOKIE
+$_ENV
+$_FILES
+$_GET
+$_POST
+$_REQUEST
+$_SERVER
+$_SESSION
+$argc
+$argv
+$http_​response_​header
+# Deprecated
+$php_​errormsg
+
+# This is really old, completely deprecated vars (PHP >= 4 < 5.3)
+$HTTP_COOKIE_VARS
+$HTTP_ENV_VARS
+$HTTP_GET_VARS
+$HTTP_POST_FILES
+$HTTP_POST_VARS
+$HTTP_RAW_POST_DATA
+$HTTP_REQUEST_VARS
+$HTTP_SERVER_VARS
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/restricted-files.data b/pkg/render/applicationlayer/embed/coreruleset/rules/restricted-files.data
new file mode 100644
index 0000000000..a133d11f78
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/restricted-files.data
@@ -0,0 +1,267 @@
+# Apache
+# (no slash; also guards against old.htaccess, old.htpasswd, etc.)
+.htaccess
+.htdigest
+.htpasswd
+# home level dotfiles (keep in sync with lfi-os-files.data)
+# grep -E '^\.' lfi-os-files.data
+.addressbook
+.aptitude/config
+.aws/
+.azure/
+.bash_
+.bashrc
+.cache/notify-osd.log
+.config/
+.cshrc
+.docker
+.drush/
+.env
+.eslintignore
+.fbcindex
+.forward
+.gitattributes
+.gitconfig
+.gnupg/
+.google_authenticator
+.hplip/hplip.conf
+.htaccess
+.htdigest
+.htpasswd
+.ksh_history
+.lesshst
+.lftp/
+.lhistory
+.lighttpdpassword
+.lldb-history
+.local/share/mc/
+.lynx_cookies
+.my.cnf
+.mysql_history
+.nano_history
+.node_repl_history
+.nsconfig
+.nsr
+.oh-my-
+.password-store
+.pearrc
+.pgpass
+.php_history
+.pinerc
+.pki/
+.proclog
+.procmailrc
+.profile
+.psql_history
+.python_history
+.rediscli_history
+.rhistory
+.rhosts
+.sh_history
+.sqlite_history
+.ssh/
+.subversion/
+.tconn/
+.tcshrc
+.tor/
+.vidalia/
+.vim/
+.viminfo
+.vimrc
+.www_acl
+.wwwacl
+.xauthority
+.zhistory
+.zsh_history
+.zshrc
+# Version control
+/.git/
+/.gitignore
+/.hg/
+/.hgignore
+/.svn/
+# October CMS credentials file
+/auth.json
+# Wordpress
+wp-config.php
+wp-config.bak
+wp-config.old
+wp-config.temp
+wp-config.tmp
+wp-config.txt
+# Symfony
+/config/config.yml
+/config/config_dev.yml
+/config/config_prod.yml
+/config/config_test.yml
+/config/parameters.yml
+/config/routing.yml
+/config/security.yml
+/config/services.yml
+# Drupal
+/sites/default/default.settings.php
+/sites/default/settings.php
+/sites/default/settings.local.php
+# NextCloud
+/config/config.php
+# PrestaShop configuration files
+/config/settings.inc.php
+/app/config/parameters.php
+# Magento
+/app/etc/local.xml
+# Sublime Text
+/sftp-config.json
+# ASP.NET
+/Web.config
+# Node
+/package.json
+/package-lock.json
+/npm-shrinkwrap.json
+/gruntfile.js
+/npm-debug.log
+/ormconfig.json
+/tsconfig.json
+/webpack.config.js
+/yarn.lock
+# Composer
+/composer.json
+/composer.lock
+/packages.json
+# dotenv
+/.env
+# OSX
+/.DS_Store
+# WS FTP
+/.ws_ftp.ini
+# New Per-Project Files
+.idea
+nbproject/
+bower.json
+.bowerrc
+.eslintrc
+.jshintrc
+.gitlab-ci.yml
+.travis.yml
+database.yml
+Dockerfile
+# PHP_CodeSniffer configuration files
+.php_cs.dist
+.phpcs.xml
+phpcs.xml
+.phpcs.xml.dist
+phpcs.xml.dist
+# Windows desktop configuration file
+Desktop.ini
+# Windows Explorer cache of thumbnail images
+Thumbs.db
+# PHP configuration files
+.user.ini
+php.ini
+# Oracle WebLogic Server configuration file
+weblogic.xml
+# Oracle SOAP Request Handler configuration file
+soapConfig.xml
+# Common names for local PHP error logs
+php_error.log
+php_errors.log
+# Java directory for non-public application data
+WEB-INF/
+# Fortinet SSL VPN session file
+sslvpn_websession
+
+# /proc entries (keep in sync with lfi-os-files.data)
+# grep -E "^proc/" lfi-os-files.data
+proc/0
+proc/1
+proc/2
+proc/3
+proc/4
+proc/5
+proc/6
+proc/7
+proc/8
+proc/9
+proc/acpi
+proc/asound
+proc/bootconfig
+proc/buddyinfo
+proc/bus
+proc/cgroups
+proc/cmdline
+proc/config.gz
+proc/consoles
+proc/cpuinfo
+proc/crypto
+proc/devices
+proc/diskstats
+proc/dma
+proc/docker
+proc/driver
+proc/dynamic_debug
+proc/execdomains
+proc/fb
+proc/filesystems
+proc/fs
+proc/interrupts
+proc/iomem
+proc/ioports
+proc/ipmi
+proc/irq
+proc/kallsyms
+proc/kcore
+proc/key-users
+proc/keys
+proc/kmsg
+proc/kpagecgroup
+proc/kpagecount
+proc/kpageflags
+proc/latency_stats
+proc/loadavg
+proc/locks
+proc/mdstat
+proc/meminfo
+proc/misc
+proc/modules
+proc/mounts
+proc/mpt
+proc/mtd
+proc/mtrr
+proc/net
+proc/pagetypeinfo
+proc/partitions
+proc/pressure
+proc/sched_debug
+proc/schedstat
+proc/scsi
+proc/self
+proc/slabinfo
+proc/softirqs
+proc/stat
+proc/swaps
+proc/sys
+proc/sysrq-trigger
+proc/sysvipc
+proc/thread-self
+proc/timer_list
+proc/timer_stats
+proc/tty
+proc/uptime
+proc/version
+proc/version_signature
+proc/vmallocinfo
+proc/vmstat
+proc/zoneinfo
+
+# /sys entries (keep in sync with lfi-os-files.data)
+# grep -E "^sys/" lfi-os-files.data
+sys/block
+sys/bus
+sys/class
+sys/dev
+sys/devices
+sys/firmware
+sys/fs
+sys/hypervisor
+sys/kernel
+sys/module
+sys/power
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/restricted-upload.data b/pkg/render/applicationlayer/embed/coreruleset/rules/restricted-upload.data
new file mode 100644
index 0000000000..c144d7c09d
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/restricted-upload.data
@@ -0,0 +1,174 @@
+# This list can be generated from restricted-files.data by running the following shell command:
+# body_start=$(grep -n -E -m 1 '^[^#$]' rules/restricted-upload.data | cut -d: -f1)
+# ed -s rules/restricted-upload.data <<EOF
+# $((body_start - 1)),\$d
+# w
+# q
+# EOF
+# words="$(awk ' !/^#/ {split($0, segments, "/")} {word = segments[length(segments)]} length(word) > 3 {print word}' rules/restricted-files.data | \
+#   sort | uniq)"
+# while read -r word; do
+#   if [ "$(util/fp-finder/spell.sh -m -e - <<<"${word}")" != "${word}" ]; then
+#     echo "${word}" >> rules/restricted-upload.data
+#   fi
+# done <<<"${words}"
+
+.DS_Store
+.addressbook
+.bash_
+.bashrc
+.bowerrc
+.cshrc
+.docker
+.env
+.eslintignore
+.eslintrc
+.fbcindex
+.forward
+.gitattributes
+.gitconfig
+.gitignore
+.gitlab-ci.yml
+.google_authenticator
+.hgignore
+.htaccess
+.htdigest
+.htpasswd
+.idea
+.jshintrc
+.ksh_history
+.lesshst
+.lhistory
+.lighttpdpassword
+.lldb-history
+.lynx_cookies
+.my.cnf
+.mysql_history
+.nano_history
+.node_repl_history
+.nsconfig
+.nsr
+.oh-my-
+.password-store
+.pearrc
+.pgpass
+.php_cs.dist
+.php_history
+.phpcs.xml
+.phpcs.xml.dist
+.pinerc
+.proclog
+.procmailrc
+.profile
+.psql_history
+.python_history
+.rediscli_history
+.rhistory
+.rhosts
+.sh_history
+.sqlite_history
+.tcshrc
+.travis.yml
+.user.ini
+.viminfo
+.vimrc
+.ws_ftp.ini
+.www_acl
+.wwwacl
+.xauthority
+.zhistory
+.zsh_history
+.zshrc
+Desktop.ini
+Dockerfile
+Thumbs.db
+Web.config
+acpi
+asound
+auth.json
+bootconfig
+bower.json
+buddyinfo
+cgroups
+cmdline
+composer.json
+composer.lock
+config.gz
+config.php
+config.yml
+config_dev.yml
+config_prod.yml
+config_test.yml
+cpuinfo
+database.yml
+default.settings.php
+diskstats
+dynamic_debug
+execdomains
+filesystems
+gruntfile.js
+hplip.conf
+hypervisor
+iomem
+ioports
+ipmi
+kallsyms
+kcore
+key-users
+kmsg
+kpagecgroup
+kpagecount
+kpageflags
+latency_stats
+loadavg
+local.xml
+mdstat
+meminfo
+mtrr
+notify-osd.log
+npm-debug.log
+npm-shrinkwrap.json
+ormconfig.json
+package-lock.json
+package.json
+packages.json
+pagetypeinfo
+parameters.php
+parameters.yml
+php.ini
+php_error.log
+php_errors.log
+phpcs.xml
+phpcs.xml.dist
+routing.yml
+sched_debug
+schedstat
+security.yml
+services.yml
+settings.inc.php
+settings.local.php
+settings.php
+sftp-config.json
+slabinfo
+soapConfig.xml
+softirqs
+sslvpn_websession
+sysrq-trigger
+sysvipc
+thread-self
+timer_list
+timer_stats
+tsconfig.json
+version_signature
+vmallocinfo
+vmstat
+weblogic.xml
+webpack.config.js
+wp-config.bak
+wp-config.old
+wp-config.php
+wp-config.temp
+wp-config.tmp
+wp-config.txt
+yarn.lock
+zoneinfo
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/scanners-user-agents.data b/pkg/render/applicationlayer/embed/coreruleset/rules/scanners-user-agents.data
new file mode 100644
index 0000000000..2fe8a17ee2
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/scanners-user-agents.data
@@ -0,0 +1,112 @@
+# This file lists what we think the most widely used
+# security scanners identifyable via their user agents.
+#
+# The list is curated by hand. Attempts to machine-generate
+# a larger list leads to a lot of false positives and edge
+# cases where certain scanners / bots are welcome in certain
+# situations. We consider this a baseline of unwanted scanners.
+
+
+# http://www.arachni-scanner.com/
+arachni
+
+betabot
+
+bewica-security-scan
+
+# Backup File Artifacts Checker
+# https://github.com/mazen160/bfac
+BFAC
+
+# Commix
+# https://github.com/commixproject/commix
+commix
+
+# Detectify website vulnerability scanner
+# https://detectify.com/
+Detectify
+
+# hidden page scanner
+# (deprecated) https://www.owasp.org/index.php/Category:OWASP_DirBuster_Project
+dirbuster
+
+fimap
+
+# vuln scanner
+# https://github.com/ffuf/ffuf
+fuzz faster
+
+# Scanner that looks for existing or hidden web objects
+# https://github.com/OJ/gobuster
+gobuster
+
+# sql injection
+havij
+
+hexometer
+
+jbrofuzz
+
+jorgee
+
+libwhisker
+
+# port scanner
+# https://github.com/robertdavidgraham/masscan
+masscan
+
+morfeus
+
+# Nessus
+# http://www.tenable.com/products/nessus-vulnerability-scanner
+nessus
+
+netlab360
+
+netsparker
+
+# vuln scanner
+# https://cirt.net/Nikto2
+nikto
+
+nmap
+
+# https://github.com/projectdiscovery/nuclei
+nuclei
+
+# http://www.openvas.org/
+openvas
+
+sitelockspider
+
+# SQL Injections
+# http://sqlmap.org/
+sqlmap
+
+# https://www.cyber.nj.gov/threat-profiles/trojan-variants/sysscan
+sysscan
+
+w3af.org
+
+# http://www.robotstxt.org/db/webbandit.html
+webbandit
+
+# (deprecated) http://www.scrt.ch/en/attack/downloads/webshag
+webshag
+
+# https://github.com/xmendez/wfuzz
+wfuzz
+
+whatweb
+
+wprecon
+
+# wordpress vuln scanner
+# https://wpscan.org/
+wpscan
+
+# ZGrab scanner (Mozilla/5.0 zgrab/0.x)
+# https://zmap.io
+zgrab
+
+zmeu
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/sql-errors.data b/pkg/render/applicationlayer/embed/coreruleset/rules/sql-errors.data
new file mode 100644
index 0000000000..e37f7a6a46
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/sql-errors.data
@@ -0,0 +1,172 @@
+MySqlClient.
+Server message
+SQL error
+Oracle error
+JET Database Engine
+Procedure or function
+SQLite.Exception
+[IBM][CLI Driver][DB2/6000]
+the used select statements have different number of columns
+org.postgresql.util.PSQLException
+Access Database Engine
+Incorrect syntax near
+Syntax error in string in query expression
+SQLiteException
+' doesn't exist
+CLI Driver
+on MySQL result index
+sybase
+com.informix.jdbc
+[MySQL][ODBC
+Error
+has occurred in the vicinity of:
+Sintaxis incorrecta cerca de
+MySQL server version for the right syntax to use
+com.mysql.jdbc.exceptions
+You have an error in your SQL syntax near
+You have an error in your SQL syntax;
+An illegal character has been found in the statement
+pg_query() [:
+supplied argument is not a valid MySQL
+mssql_query()
+mysql_fetch_array()
+Exception
+java.sql.SQLException
+Column count doesn't match value count at row
+Sybase message
+SQL Server
+PostgreSQL query failed:
+Dynamic SQL Error
+System.Data.SQLite.SQLiteException
+SQLite/JDBCDriver
+Unclosed quotation mark before the character string
+System.Data.SqlClient.
+Unclosed quotation mark after the character string
+System.Data.OleDb.OleDbException
+[DM_QUERY_E_SYNTAX]
+[SqlException
+Unexpected end of command in statement
+valid PostgreSQL result
+pg_exec() [:
+[SQL Server]
+[SQLITE_ERROR]
+Microsoft OLE DB Provider for ODBC Drivers
+PostgreSQL
+org.hsqldb.jdbc
+ADODB.Field (0x800A0BCD)
+SQL syntax
+Exception
+System.Data.SqlClient.SqlException
+Data type mismatch in criteria expression.
+Driver
+DB2 SQL error
+Sybase message:
+ORA-
+[Microsoft][ODBC SQL Server Driver]
+'80040e14'
+Microsoft OLE DB Provider for SQL Server
+ in query expression
+Npgsql.
+valid MySQL result
+supplied argument is not a valid PostgreSQL result
+db2_
+Ingres SQLSTATE
+Column count doesn't match
+Warning
+[Microsoft][ODBC Microsoft Access Driver]
+[Macromedia][SQLServer JDBC Driver]
+<b>Warning</b>: ibase_
+Roadhouse.Cms.
+DB2 SQL error:
+SQLSTATE[
+MySQLSyntaxErrorException
+check the manual that corresponds to your MySQL server version
+check the manual that fits your MySQL server version
+check the manual that corresponds to your MariaDB server version
+check the manual that fits your MariaDB server version
+check the manual that corresponds to your Drizzle server version
+check the manual that fits your Drizzle server version
+Zend_Db_Adapter_Mysqli_Exception
+Zend_Db_Statement_Mysqli_Exception
+MySqlException
+Syntax error or access violation
+MemSQL does not support this type of query
+is not supported by MemSQL
+unsupported nested scalar subselect
+PG::SyntaxError:
+syntax error at or near
+ERROR: parser: parse error at or near
+org.postgresql.jdbc
+PSQLException
+System.Data.SqlClient.SqlConnection.OnError
+Microsoft SQL Native Client error
+com.jnetdirect.jsql
+macromedia.jdbc.sqlserver
+Zend_Db_Adapter_Sqlsrv_Exception
+Zend_Db_Statement_Sqlsrv_Exception
+com.microsoft.sqlserver.jdbc
+SQLSrvException
+SQLServerException
+quoted string not properly terminated
+SQL command not properly ended
+macromedia.jdbc.oracle
+oracle.jdbc
+Zend_Db_Adapter_Oracle_Exception
+Zend_Db_Statement_Oracle_Exception
+OracleException
+com.ibm.db2.jcc
+Zend_Db_Adapter_Db2_Exception
+Zend_Db_Statement_Db2_Exception
+ibm_db_dbi.ProgrammingError
+Informix ODBC Driver
+ODBC Informix driver
+weblogic.jdbc.informix
+IfxException
+org.firebirdsql.jdbc
+Microsoft.Data.SQLite.SQLiteException
+SQLite error
+sqlite3.OperationalError:
+SQLite3::SQLException
+org.sqlite.JDBC
+DriverSapDB
+com.sap.dbtech.jdbc
+Invalid keyword or missing delimiter
+SybSQLException
+Sybase.Data.AseClient
+com.sybase.jdbc
+com.ingres.gcf.jdbc
+com.frontbase.jdbc
+Syntax error 1. Missing
+Semantic error
+org.h2.jdbc
+[42000-192]
+[MonetDB][ODBC Driver
+nl.cwi.monetdb.jdbc
+Syntax error: Encountered
+org.apache.derby
+ERROR 42X01
+com.vertica.jdbc
+org.jkiss.dbeaver.ext.vertica
+com.vertica.dsi.dataengine
+com.mckoi.JDBCDriver
+com.mckoi.database.jdbc
+com.facebook.presto.jdbc
+io.prestosql.jdbc
+com.simba.presto.jdbc
+UNION query has different number of fields:
+Altibase.jdbc.driver
+com.mimer.jdbc
+Syntax error: failed at position
+io.crate.client.jdbc
+encountered after end of query
+A comparison operator is required here
+-10048: Syntax error
+SQ074: Line
+SR185: Undefined procedure
+SQ200: No table
+Virtuoso S0002 Error
+[Virtuoso Driver][Virtuoso Server]
+[Virtuoso iODBC Driver][Virtuoso Server]
+Conversion failed when converting the varchar value
+invalid input syntax for integer:
+XPATH syntax error:
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/ssrf.data b/pkg/render/applicationlayer/embed/coreruleset/rules/ssrf.data
new file mode 100644
index 0000000000..ab1048900e
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/ssrf.data
@@ -0,0 +1,177 @@
+# Sources:
+# - https://gist.githubusercontent.com/jhaddix/78cece26c91c6263653f31ba453e273b/raw/a4869d58a5ce337d1465c2d1b29777b9eecd371f/cloud_metadata.txt
+# - https://book.hacktricks.xyz/pentesting-web/ssrf-server-side-request-forgery/cloud-ssrf
+# - https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Server%20Side%20Request%20Forgery
+# - https://github.com/assetnote/blind-ssrf-chains
+
+## AWS
+# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories
+#
+# To fully protect, use IMDSv2 (see https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/)
+
+http://instance-data/latest/
+http://169.254.169.254/latest/
+
+# Common evasion techniques:
+http://2852039166/latest/
+http://025177524776/latest/
+http://0251.0376.0251.0376/latest/
+http://0xA9.0xFE.0xA9.0xFE/latest/
+http://0xA9FEA9FE/latest/
+http://0251.254.169.254/latest/
+http://[::ffff:a9fe:a9fe]/latest/
+http://[0:0:0:0:0:ffff:a9fe:a9fe]/latest/
+http://[0:0:0:0:0:ffff:169.254.169.254]/latest/
+http://169.254.169.254.nip.io/latest/
+http://nicob.net/redir-http-169.254.169.254:80-
+
+# http://127.0.0.1
+http://2130706433/
+# http://192.168.0.1
+http://3232235521/
+# http://192.168.1.1
+http://3232235777/
+# http://169.254.169.254
+http://2852039166/
+# IPv6 base
+http://[::]:
+
+# localhost bypass
+http://localtest.me
+http://127.0.0.1.nip.io
+http://127.127.127.127
+http://127.0.1.3
+http://127.0.0.0
+http://127.0.0.1
+http://0.0.0.0
+http://localhost
+http://0177.0.0.1/
+http://[::1]
+http://[0000::1]
+http://[::ffff:127.0.0.1]
+http://[0:0:0:0:0:ffff:127.0.0.1]
+http://0/
+http://127.1
+http://127.0.1
+
+# AWS ECS
+http://169.254.170.2/v2
+
+## Google Cloud
+#  https://cloud.google.com/compute/docs/metadata/overview
+#  - Requires the header "Metadata-Flavor: Google" or "X-Google-Metadata-Request: True"
+
+http://169.254.169.254/computeMetadata/v1/
+http://metadata.google.internal/computeMetadata/v1/
+http://metadata/computeMetadata/v1/
+# Common evasion techniques:
+http://2852039166/computeMetadata/v1/
+http://025177524776/computeMetadata/v1/
+http://0251.0376.0251.0376/computeMetadata/v1/
+http://[::ffff:a9fe:a9fe]/computeMetadata/v1/
+http://[0:0:0:0:0:ffff:a9fe:a9fe]/computeMetadata/v1/
+http://[0:0:0:0:0:ffff:169.254.169.254]/computeMetadata/v1/
+http://169.254.169.254.nip.io/computeMetadata/v1/
+http://0xA9.0xFE.0xA9.0xFE/computeMetadata/v1/
+http://0xA9FEA9FE/computeMetadata/v1/
+http://0251.254.169.254/computeMetadata/v1/
+
+# Google gopher SSRF
+gopher://metadata.google.internal
+
+# Google allows recursive pulls
+http://metadata.google.internal/computeMetadata/v1/instance/disks/?recursive=true
+
+## Google
+#  Beta does NOT require a header atm
+http://metadata.google.internal/computeMetadata/v1beta1/
+
+## Digital Ocean
+# https://developers.digitalocean.com/documentation/metadata/
+
+http://169.254.169.254/metadata/v1.json
+# This other prefix will be used from Azure: http://169.254.169.254/metadata/v1/
+
+## Packetcloud
+
+https://metadata.packet.net/userdata
+
+## Azure
+#
+# To be effective, these also have to:
+#
+# - contain the header Metadata: true
+# - not contain an X-Forwarded-For header
+
+http://169.254.169.254/metadata/v1/
+http://169.254.169.254/metadata/instance?api-version=2017-04-02
+http://169.254.169.254/metadata/instance/network/interface/0/ipv4/ipAddress/0/publicIpAddress?api-version=2017-04-02&format=text
+# Common evasion techniques:
+http://2852039166/metadata/v1/
+http://025177524776/metadata/v1/
+http://0251.0376.0251.0376/metadata/v1/
+http://[::ffff:a9fe:a9fe]/metadata/v1/
+http://[0:0:0:0:0:ffff:a9fe:a9fe]/metadata/v1/
+http://[0:0:0:0:0:ffff:169.254.169.254]/metadata/v1/
+http://169.254.169.254.nip.io/metadata/v1/
+http://0xA9.0xFE.0xA9.0xFE/metadata/v1/
+http://0xA9FEA9FE/metadata/v1/
+http://0251.254.169.254/metadata/v1/
+
+## OpenStack/RackSpace
+http://169.254.169.254/openstack
+
+## HP Helion
+# (header required? unknown)
+http://169.254.169.254/2009-04-04/meta-data/
+
+## Oracle Cloud
+http://192.0.0.192/latest/
+
+## Alibaba
+http://100.100.100.200/latest/meta-data/
+
+# Rancher metadata
+http://rancher-metadata/
+
+# Local Docker
+http://127.0.0.1:2375
+http://2130706433:2375/
+http://[::]:2375/
+http://[0000::1]:2375/
+http://[0:0:0:0:0:ffff:127.0.0.1]:2375/
+http://2130706433:2375/
+http://017700000001:2375/
+http://0x7f000001:2375/
+http://0xc0a80014:2375/
+# Kubernetes etcd
+http://127.0.0.1:2379
+
+# Enclosed alphanumerics
+http://169。254。169。254
+http://169｡254｡169｡254
+http://⑯⑨。②⑤④。⑯⑨｡②⑤④
+http://⓪ⓧⓐ⑨｡⓪ⓧⓕⓔ｡⓪ⓧⓐ⑨｡⓪ⓧⓕⓔ
+http://⓪ⓧⓐ⑨ⓕⓔⓐ⑨ⓕⓔ
+http://②⑧⑤②⓪③⑨①⑥⑥
+http://④②⑤｡⑤①⓪｡④②⑤｡⑤①⓪
+http://⓪②⑤①。⓪③⑦⑥。⓪②⑤①。⓪③⑦⑥
+http://⓪⓪②⑤①｡⓪⓪⓪③⑦⑥｡⓪⓪⓪⓪②⑤①｡⓪⓪⓪⓪⓪③⑦⑥
+http://[::①⑥⑨｡②⑤④｡⑯⑨｡②⑤④]
+http://[::ⓕⓕⓕⓕ:①⑥⑨。②⑤④。⑯⑨。②⑤④]
+http://⓪ⓧⓐ⑨。⓪③⑦⑥。④③⑤①⑧
+http://⓪ⓧⓐ⑨｡⑯⑥⑧⑨⑥⑥②
+http://⓪⓪②⑤①。⑯⑥⑧⑨⑥⑥②
+http://⓪⓪②⑤①｡⓪ⓧⓕⓔ｡④③⑤①⑧
+
+# Java only blind ssrf
+jar:http://127.0.0.1!/
+jar:https://127.0.0.1!/
+jar:ftp://127.0.0.1!/
+
+# Other PL1 protocols
+gopher://127.0.0.1
+gopher://localhost
+
+# AWS Lambda
+http://localhost:9001/2018-06-01/runtime/
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/unix-shell.data b/pkg/render/applicationlayer/embed/coreruleset/rules/unix-shell.data
new file mode 100644
index 0000000000..70d9ec0056
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/unix-shell.data
@@ -0,0 +1,665 @@
+# This list has generic unix shell variables, shells and commands that affect Unix systems.
+# To generate the list, we get the data from all places first. Strip or add the path to commands so it begins with `bin`.
+# Sort the file content ascending, and remove duplicate lines.
+#
+# Data comes from multiple places, listed below.
+# - Binaries:
+#   - GTFOBins. Update list using `curl -H "Accept: application/vnd.github.v3+json" https://api.github.com/repos/GTFOBins/GTFOBins.github.io/contents/_gtfobins | jq '.[].name' | grep '.md' | tr -d '"' | cut -f1 -d.`
+# - Shell lists:
+#   - https://tldp.org/LDP/Linux-Filesystem-Hierarchy/html/etc.html
+#   - https://en.wikipedia.org/wiki/Unix_shell
+#   - https://hyperpolyglot.org/unix-shells
+# - Generic shell variables (Ad-Hoc for now, needs references)
+# - Generic /etc and /dev files (Ad-Hoc, needs references)
+# - Compression and decompression utilities present on Arch Linux (as of 2022-08-02) and Debian 11
+
+${CDPATH}
+${DIRSTACK}
+${HOME}
+${HOSTNAME}
+${IFS}
+${OLDPWD}
+${OSTYPE}
+${PATH}
+${PWD}
+${SHELL}
+$CDPATH
+$DIRSTACK
+$HOME
+$HOSTNAME
+$IFS
+$OLDPWD
+$OSTYPE
+$PATH
+$PWD
+$SHELL
+bin/7z
+bin/7za
+bin/7zr
+bin/7zx
+bin/ab
+bin/addgroup
+bin/adduser
+bin/agetty
+bin/alias
+bin/alpine
+bin/ansible-playbook
+bin/apt
+bin/apt-get
+bin/aptitude
+bin/ar
+bin/arch
+bin/aria2c
+bin/arj
+bin/arp
+bin/as
+bin/ascii-xfr
+bin/ascii85
+bin/ash
+bin/aspell
+bin/at
+bin/atobm
+bin/awk
+bin/axel
+bin/aws
+bin/base32
+bin/base64
+bin/basename
+bin/basenc
+bin/bash
+bin/batch
+bin/blkid
+bin/bpftrace
+bin/breaksw
+bin/bridge
+bin/bsdcat
+bin/bsdiff
+bin/bsdtar
+bin/builtin
+bin/bundler
+bin/bunzip2
+bin/busctl
+bin/busybox
+bin/byebug
+bin/byobu
+bin/bzcat
+bin/bzcmp
+bin/bzdiff
+bin/bzegrep
+bin/bzexe
+bin/bzfgrep
+bin/bzgrep
+bin/bzip2
+bin/bzip2recover
+bin/bzless
+bin/bzmore
+bin/bzz
+bin/c89
+bin/c99
+bin/cancel
+bin/capsh
+bin/cat
+bin/cc
+bin/certbot
+bin/chattr
+bin/chdir
+bin/check_by_ssh
+bin/check_cups
+bin/check_log
+bin/check_memory
+bin/check_raid
+bin/check_ssl_cert
+bin/check_statusfile
+bin/chflags
+bin/chgrp
+bin/chmod
+bin/choom
+bin/chown
+bin/chpass
+bin/chgpasswd
+bin/chroot
+bin/chsh
+bin/clang
+bin/clang++
+bin/cmp
+bin/cobc
+bin/column
+bin/comm
+bin/command
+bin/composer
+bin/compress
+bin/coproc
+bin/core_perl/zipdetails
+bin/cowsay
+bin/cowthink
+bin/cp
+bin/cpan
+bin/cpio
+bin/cpulimit
+bin/crash
+bin/cron
+bin/crontab
+bin/csh
+bin/csplit
+bin/csvtool
+bin/cupsfilter
+bin/curl
+bin/cut
+bin/dash
+bin/date
+bin/df
+bin/dd
+bin/dhclient
+bin/dialog
+bin/diff
+bin/dig
+bin/dir
+bin/dmesg
+bin/dmidecode
+bin/dmsetup
+bin/dnf
+bin/doas
+bin/docker
+bin/done
+bin/dosbox
+bin/dpkg
+bin/du
+bin/dvips
+bin/e2fsck
+bin/easy_install
+bin/eb
+bin/echo
+bin/ed
+bin/efax
+bin/egrep
+bin/emacs
+bin/endif
+bin/endsw
+bin/env
+bin/env-update
+bin/eqn
+bin/es
+bin/esac
+bin/esh
+bin/eval
+bin/ex
+bin/exec
+bin/exiftool
+bin/expand
+bin/expect
+bin/export
+bin/expr
+bin/facter
+bin/fc
+bin/fetch
+bin/fg
+bin/fgrep
+bin/fi
+bin/file
+bin/filetest
+bin/find
+bin/finger
+bin/fish
+bin/flock
+bin/fmt
+bin/fold
+bin/foreach
+bin/fping
+bin/ftp
+bin/ftpstats
+bin/ftpwho
+bin/function
+bin/gawk
+bin/gcc
+bin/gcore
+bin/gdb
+bin/gem
+bin/genie
+bin/genisoimage
+bin/GET
+bin/HEAD
+bin/POST
+bin/getfacl
+bin/ghc
+bin/ghci
+bin/gimp
+bin/ginsh
+bin/git
+bin/go
+bin/gpg
+bin/grc
+bin/grep
+bin/groupmod
+bin/gtester
+bin/gunzip
+bin/gzcat
+bin/gzexe
+bin/gzip
+bin/hash
+bin/hd
+bin/head
+bin/hexdump
+bin/highlight
+bin/history
+bin/hostid
+bin/hostname
+bin/hping3
+bin/htdigest
+bin/htop
+bin/htpasswd
+bin/hup
+bin/iconv
+bin/id
+bin/ifconfig
+bin/iftop
+bin/install
+bin/ionice
+bin/ip
+bin/ip6tables
+bin/ipconfig
+bin/iptables
+bin/irb
+bin/ispell
+bin/java
+bin/jexec
+bin/jjs
+bin/jobs
+bin/join
+bin/journalctl
+bin/jq
+bin/jrunscript
+bin/kill
+bin/killall
+bin/knife
+bin/ksh
+bin/ksshell
+bin/last
+bin/lastcomm
+bin/lastlog
+bin/lastlogin
+bin/latex
+bin/ld
+bin/ldconfig
+bin/ldd
+bin/less
+bin/lessecho
+bin/lessfile
+bin/lesspipe
+bin/lftp
+bin/lftpget
+bin/links
+bin/ln
+bin/local
+bin/locate
+bin/loginctl
+bin/logname
+bin/logsave
+bin/look
+bin/losetup
+bin/lp
+bin/ls
+bin/ls-F
+bin/lsb_release
+bin/lscpu
+bin/lshw
+bin/lsmod
+bin/lsof
+bin/lspci
+bin/lsusb
+bin/ltrace
+bin/lua
+bin/lualatex
+bin/luatex
+bin/lwp-download
+bin/lwp-dump
+bin/lwp-mirror
+bin/lwp-request
+bin/lynx
+bin/lz
+bin/lz4
+bin/lz4c
+bin/lz4cat
+bin/lzcat
+bin/lzcmp
+bin/lzdiff
+bin/lzegrep
+bin/lzfgrep
+bin/lzgrep
+bin/lzless
+bin/lzma
+bin/lzmadec
+bin/lzmainfo
+bin/lzmore
+bin/mail
+bin/mailq
+bin/mailx
+bin/make
+bin/man
+bin/mawk
+bin/mkdir
+bin/mkfifo
+bin/mknod
+bin/mktemp
+bin/mlocate
+bin/more
+bin/mosquitto
+bin/mount
+bin/msgattrib
+bin/msgcat
+bin/msgconv
+bin/msgfilter
+bin/msgmerge
+bin/msguniq
+bin/mtr
+bin/mutt
+bin/mv
+bin/mysql
+bin/mysqladmin
+bin/mysqldump
+bin/mysqldumpslow
+bin/mysqlhotcopy
+bin/mysqlshow
+bin/nano
+bin/nasm
+bin/nawk
+bin/nc
+bin/nc.openbsd
+bin/nc.traditional
+bin/ncat
+bin/neofetch
+bin/net
+bin/netcat
+bin/netkit-ftp
+bin/netplan
+bin/netstat
+bin/nice
+bin/nl
+bin/nm
+bin/nmap
+bin/node
+bin/nohup
+bin/nping
+bin/npm
+bin/nroff
+bin/nsenter
+bin/nslookup
+bin/nstat
+bin/octave
+bin/od
+bin/onintr
+bin/openssl
+bin/openvpn
+bin/openvt
+bin/opkg
+bin/pacman
+bin/parted
+bin/passwd
+bin/paste
+bin/patch
+bin/pax
+bin/pdb
+bin/pdflatex
+bin/pdftex
+bin/pdksh
+bin/perf
+bin/perl
+bin/perl5
+bin/perlsh
+bin/perms
+bin/pf
+bin/pftp
+bin/pg
+bin/pgrep
+bin/php
+bin/php-cgi
+bin/php5
+bin/php7
+bin/pic
+bin/pico
+bin/pidstat
+bin/pigz
+bin/ping
+bin/pip
+bin/pkexec
+bin/pkg
+bin/pkg_info
+bin/pkginfo
+bin/pkill
+bin/popd
+bin/pr
+bin/printenv
+bin/printf
+bin/pry
+bin/ps
+bin/psed
+bin/psftp
+bin/psql
+bin/ptar
+bin/ptardiff
+bin/ptargrep
+bin/ptx
+bin/puppet
+bin/pushd
+bin/pwd
+bin/pxz
+bin/python
+bin/python2
+bin/python3
+bin/rake
+bin/raku
+bin/rar
+bin/rbash
+bin/rc
+bin/rcp
+bin/readelf
+bin/realpath
+bin/red
+bin/redcarpet
+bin/rename
+bin/repeat
+bin/replace
+bin/restic
+bin/rev
+bin/rlogin
+bin/rlwrap
+bin/rm
+bin/rmdir
+bin/rmuser
+bin/rnano
+bin/route
+bin/rpm
+bin/rpmdb
+bin/rpmquery
+bin/rpmverify
+bin/rsync
+bin/ruby
+bin/run-mailcap
+bin/run-parts
+bin/rview
+bin/rvim
+bin/sash
+bin/sched
+bin/scp
+bin/screen
+bin/script
+bin/sdiff
+bin/sed
+bin/sendmail
+bin/service
+bin/set
+bin/setarch
+bin/setenv
+bin/setfacl
+bin/setsid
+bin/sftp
+bin/sg
+bin/sh
+bin/sh.distrib
+bin/shuf
+bin/shutdown
+bin/sleep
+bin/slsh
+bin/smbclient
+bin/snap
+bin/socat
+bin/soelim
+bin/sort
+bin/source
+bin/split
+bin/sqlite3
+bin/ss
+bin/ssh
+bin/ssh-keygen
+bin/ssh-keyscan
+bin/sshpass
+bin/start-stop-daemon
+bin/stdbuf
+bin/strace
+bin/strings
+bin/su
+bin/sudo
+bin/svn
+bin/sysctl
+bin/systemctl
+bin/systemd-resolve
+bin/tac
+bin/tail
+bin/tailf
+bin/tar
+bin/task
+bin/taskset
+bin/tbl
+bin/tclsh
+bin/tcpdump
+bin/tcping
+bin/tcptraceroute
+bin/tcsh
+bin/tee
+bin/telnet
+bin/tex
+bin/tftp
+bin/tic
+bin/time
+bin/timedatectl
+bin/timeout
+bin/tmux
+bin/top
+bin/touch
+bin/traceroute
+bin/traceroute6
+bin/troff
+bin/tshark
+bin/ul
+bin/ulimit
+bin/uname
+bin/uncompress
+bin/unexpand
+bin/uniq
+bin/unlink
+bin/unlz4
+bin/unlzma
+bin/unpigz
+bin/unrar
+bin/unset
+bin/unshare
+bin/unxz
+bin/unzip
+bin/unzstd
+bin/up2date
+bin/update-alternatives
+bin/useradd
+bin/userdel
+bin/usermod
+bin/uudecode
+bin/uuencode
+bin/valgrind
+bin/vi
+bin/view
+bin/vigr
+bin/vim
+bin/vimdiff
+bin/vipw
+bin/virsh
+bin/volatility
+bin/w
+bin/w3m
+bin/wall
+bin/watch
+bin/wc
+bin/wget
+bin/whiptail
+bin/who
+bin/whoami
+bin/whois
+bin/wireshark
+bin/wish
+bin/xargs
+bin/xelatex
+bin/xetex
+bin/xmodmap
+bin/xmore
+bin/xpad
+bin/xterm
+bin/xxd
+bin/xz
+bin/xzcat
+bin/xzcmp
+bin/xzdec
+bin/xzdiff
+bin/xzegrep
+bin/xzfgrep
+bin/xzgrep
+bin/xzless
+bin/xzmore
+bin/yarn
+bin/yelp
+bin/yes
+bin/yum
+bin/zathura
+bin/zcat
+bin/zcmp
+bin/zdiff
+bin/zegrep
+bin/zfgrep
+bin/zgrep
+bin/zip
+bin/zipcloak
+bin/zipcmp
+bin/zipdetails
+bin/zipgrep
+bin/zipinfo
+bin/zipmerge
+bin/zipnote
+bin/zipsplit
+bin/ziptool
+bin/zless
+bin/zmore
+bin/zrun
+bin/zsh
+bin/zsoelim
+bin/zstd
+bin/zstdcat
+bin/zstdgrep
+bin/zstdless
+bin/zstdmt
+bin/zypper
+dev/fd
+dev/null
+dev/stderr
+dev/stdin
+dev/stdout
+dev/tcp
+dev/udp
+dev/zero
+etc/group
+etc/master.passwd
+etc/passwd
+etc/pwd.db
+etc/shadow
+etc/shells
+etc/spwd.db
+proc/self
+sbin/capsh
+sbin/logsave
+sbin/service
+sbin/start-stop-daemon
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/web-shells-php.data b/pkg/render/applicationlayer/embed/coreruleset/rules/web-shells-php.data
new file mode 100644
index 0000000000..511f9151e7
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/web-shells-php.data
@@ -0,0 +1,161 @@
+# This list contains patterns of various web shells, backdoors and similar
+# software written in PHP language. There is no way how to automatically update
+# this list, so it must be done by hand. Here is a recommended way how to add
+# new malicious software:
+# 1.) As patterns are matched against RESPONSE_BODY, you need to run a malicious
+#     software (ideally in an isolated environment) and catch the output.
+# 2.) In the output, search for static pattern unique enough to match only
+#     the software in question and to not do any FPs. The best pick is usually
+#     a part of HTML code with software name.
+# 3.) Include software name and URL (if available) in the comment above
+#     the pattern.
+#
+# Data comes from multiple places of which some doesn't work anymore. Few are
+# listed below:
+# - https://github.com/JohnTroony/php-webshells/tree/master/Collection
+# - https://www.localroot.net/
+# - Google search (keywords like webshells, php backdoor and similar)
+
+# 1n73ction web shell
+<title>=[ 1n73ct10n privat shell ]=</title>
+# Ajax/PHP Command Shell web shell
+>Ajax/PHP Command Shell<
+# AK-74 Security Team Web-shell
+.:: :[ AK-74 Security Team Web-shell ]: ::.
+# ALFA-SHELL web shell (deprecated, https://github.com/solevisible)
+~ ALFA TEaM Shell -
+# Andela Yuwono Priv8 Shell web shell
+<title>--==[[ Andela Yuwono Priv8 Shell ]]==--</title>
+# Ani-Shell web shell (https://ani-shell.sourceforge.net/)
+<title>Ani-Shell | India</title>
+# AnonymousFox PHP web shell
+<input type='submit' value='file' /></form>AnonymousFox
+# Antichat Shell web shell
+- Antichat Shell</title>
+# AYT web shell
+Ayyildiz Tim  | AYT
+# b374k web shell (https://github.com/b374k/b374k)
+<link rel='SHORTCUT ICON' href='data:image/png;base64,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'>
+# BloodSecurity Hackers Shell web shell
+<title>BloodSecurity Hackers Shell</title>
+# Bypass Attack Shell web shell
+<font color='red' size='6px' face='Fredericka the Great'> Bypass Attack Shell </font>
+# c0derz shell web shell
+title='.::[c0derz shell]::.'>
+# C99Shell + N3tShell web shell
+<font face=Webdings size=6><b>!</b></font>
+# Con7ext Shell V.2 web shell
+<title>Con7ext Shell V.2</title>
+# Crystal shell web shell
+<font face="Wingdings 3" size="5">y</font><b>Crystal shell v.
+# CWShell web shell
+~ CWShell ~</font></a>
+# dC3 Security Crew web shell
+&dir&pic=o.b height= width=>
+# Defacing Tool Pro web shell
+<b>[ Defacing Tool Pro v
+# Dive Shell web shell
+<title>Dive Shell - Emperor Hacking Team</title>
+# easy simple php web shell
+<script>document.getElementById("cmd").focus();</script>
+# ex0 shell web shell
+color=DeepSkyBlue   size=6>    ## ex0 shell
+# FaTaLSheLL web shell
+<p align="center" class="style4">FaTaLSheLL v
+# G-Security Webshell
+<title>G-Security Webshell</title>
+# h4ntu shell web shell
+<title>h4ntu shell [powered by tsoi]</title>
+# IDBTEAM SHELLS file manager
+<H1><center>-=[+] IDBTEAM SHELLS
+# IndoXploit web shell
+<title>IndoXploit</title>
+# KA_uShell web shell
+<KAdot Universal Shell>     |
+## Laudanum PHP Web Shells (http://sourceforge.net/projects/laudanum)
+# Laudanum dns.php
+<title>Laudanum PHP DNS Access</title>
+# Laudanum file.php
+<title>Laudanum PHP File Browser</title>
+# Laudanum host.php
+<title>Laudanum PHP Hostname by IP Lookup</title>
+# Laudanum proxy.php
+<title>Laudanum PHP Proxy</title>
+# Laudanum shell.php
+<title>Laudanum PHP Shell Access</title>
+## Laudanum WordPress Plugin settings.php
+<h2>Laudanum Tools</h2>
+# Lifka Shell web shell
+>LIFKA SHELL</span></big></big></big></a>
+# Loader'z web shell
+<title>Loader'z WEB shell</title>
+# Locus7Shell web shell
+b>--[ x2300 Locus7Shell v.
+# Lolipop web shell
+<title>Lolipop.php - Edited By KingDefacer -
+# MARIJUANA web shell (https://0x5a455553.github.io/MARIJUANA/)
+<link rel="icon" href="//0x5a455553.github.io/MARIJUANA/icon.png" />
+# Matamu Mat web shell
+<title> Matamu Mat </title>
+# MyShell web shell
+<b>MyShell</b> &copy;2001 Digitart Producciones</a>
+# NCC Shell web shell
+<h1>.:NCC:. Shell v
+# PHPShell by Macker web shell
+<font size=3>PHPShell by Macker - Version
+# PHPShell by MAX666 web shell
+PHPShell by MAX666, Private Exploit, For Server Hacking
+# qsd web shell
+<form action="" METHOD="GET" >Execute Shell Command (safe mode is off): <input type="text" name="c"><input type="submit" value="Go"></form>
+# Rootshell web shell
+<p align="center"><font face="Verdana" size="2">Rootshell v
+# rusuh web shell
+<font color=lime>./rusuh</font>
+# Safe0ver web shell
+<font color="navy"><strong>##Safe0ver##</strong></font>
+# Shany's web shell
+<center><h1>Watch Your system Shany was here.</h1></center><center><h1>Linux Shells</h1></center><hr><hr>
+# Simple PHP backdoor web shell
+<!-- Simple PHP backdoor by DK
+# SimShell web shell
+<title>SimShell - Simorgh Security MGZ</title>
+# Sincap web shell
+<title>:: AventGrup ::.. - Sincap
+# Small Shell file manager
+<title>Small Shell - Edited By KingDefacer</title>
+# Small Web Shell
+<title>small web shell by zaco
+# SoldiersofAllah Private Shell web shell
+<title>SoldiersofAllah Private Shell |
+# Sosyete web shell
+<title>Sosyete Safe Mode Bypass Shell -
+# STNC WebShell
+&nbsp;&nbsp;STNC&nbsp;WebShell&nbsp;
+# StresBypass shell web shell
+<font face="Wingdings 3" size="5">y</font><b>StresBypass<span lang="en-us">v
+# SyRiAn Sh3ll web shell
+<title>SyRiAn Sh3ll ~
+# Turk Shell web shell
+<head><title>Wardom | Ne Mutlu T
+# Unknown web shell
+<hr>to browse go to http://?d=[directory here]
+# Ustadcage48 Filemanager
+<font color="red">USTADCAGE_48</font> <font color="dodgerblue">FILE MANAGER</font>
+# WebRoot Hack Tools shell
+<title>WebRoot Hack Tools</title>
+# web shell by BLaSTER
+<div align="center"><span class="style6">By BLaSTER</span><br />
+# WinX Shell web shell
+<title>-:[GreenwooD]:- WinX Shell</title>
+# wwwolf web shell
+<sup><a href="#" onclick="cmd.value=''; cmd.focus(); return false;">Clear cmd</a></sup>
+# Yourman.sh Mini Shell web shell
+<title>Yourman.sh Mini Shell</title>
+# Zerion Mini Shell web shell
+</div><center><br />Zerion Mini Shell <font color=
+# Zero Byte Mini Shell V2 web shell
+<title>0byt3m1n1-V2</title>
+# Zerostore web shell
+<title>ZEROSHELL | ZEROSTORE</title>
+# Unknown web shell
+<input type=submit name=find value='find writeable'>
diff --git a/pkg/render/applicationlayer/embed/coreruleset/rules/windows-powershell-commands.data b/pkg/render/applicationlayer/embed/coreruleset/rules/windows-powershell-commands.data
new file mode 100644
index 0000000000..db33dae1cc
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/rules/windows-powershell-commands.data
@@ -0,0 +1,425 @@
+# Sources:
+# Microsoft PowerShell Docs: https://github.com/MicrosoftDocs/PowerShell-Docs
+# - curl -H "Accept: application/vnd.github.v3+json" https://api.github.com/repos/MicrosoftDocs/PowerShell-Docs/git/trees/main\?recursive\=1 | jq -r '.tree[] .path | capture("reference/\\d.\\d/(.*)/(?<fn>[A-Z]\\w+-\\w+).md") | .fn' | sort | uniq
+
+powershell
+Add-Computer
+Add-Content
+Add-History
+Add-JobTrigger
+Add-LocalGroupMember
+Add-Member
+Add-PSSnapin
+Add-Type
+Checkpoint-Computer
+Clear-Content
+Clear-EventLog
+Clear-History
+Clear-Host
+Clear-Item
+Clear-ItemProperty
+Clear-RecycleBin
+Clear-Variable
+Compare-Object
+Complete-Transaction
+Compress-Archive
+Connect-PSSession
+Connect-WSMan
+Convert-Path
+Convert-String
+ConvertFrom-Csv
+ConvertFrom-Json
+ConvertFrom-Markdown
+ConvertFrom-SddlString
+ConvertFrom-SecureString
+ConvertFrom-String
+ConvertFrom-StringData
+ConvertTo-Csv
+ConvertTo-Html
+ConvertTo-Json
+ConvertTo-SecureString
+ConvertTo-Xml
+Copy-Item
+Copy-ItemProperty
+Debug-Job
+Debug-Process
+Debug-Runspace
+Disable-ComputerRestore
+Disable-ExperimentalFeature
+Disable-JobTrigger
+Disable-LocalUser
+Disable-PSBreakpoint
+Disable-PSRemoting
+Disable-PSSessionConfiguration
+Disable-PSTrace
+Disable-PSWSManCombinedTrace
+Disable-RunspaceDebug
+Disable-ScheduledJob
+Disable-WSManCredSSP
+Disable-WSManTrace
+Disconnect-PSSession
+Disconnect-WSMan
+Enable-ComputerRestore
+Enable-ExperimentalFeature
+Enable-JobTrigger
+Enable-LocalUser
+Enable-PSBreakpoint
+Enable-PSRemoting
+Enable-PSSessionConfiguration
+Enable-PSTrace
+Enable-PSWSManCombinedTrace
+Enable-RunspaceDebug
+Enable-ScheduledJob
+Enable-WSManCredSSP
+Enable-WSManTrace
+Enter-PSHostProcess
+Enter-PSSession
+Exit-PSHostProcess
+Exit-PSSession
+Expand-Archive
+Export-Alias
+Export-BinaryMiLog
+Export-Clixml
+Export-Console
+Export-Counter
+Export-Csv
+Export-FormatData
+Export-ModuleMember
+Export-ODataEndpointProxy
+Export-PSSession
+Find-Command
+Find-DscResource
+Find-Module
+Find-Package
+Find-PackageProvider
+Find-RoleCapability
+Find-Script
+ForEach-Object
+Format-Custom
+Format-Hex
+Format-List
+Format-Table
+Format-Wide
+Get-Acl
+Get-Alias
+Get-AuthenticodeSignature
+Get-ChildItem
+Get-CimAssociatedInstance
+Get-CimClass
+Get-CimInstance
+Get-CimSession
+Get-Clipboard
+Get-CmsMessage
+Get-Command
+Get-ComputerInfo
+Get-ComputerRestorePoint
+Get-Content
+Get-ControlPanelItem
+Get-Counter
+Get-Credential
+Get-Culture
+Get-Date
+Get-Error
+Get-Event
+Get-EventLog
+Get-EventSubscriber
+Get-ExecutionPolicy
+Get-ExperimentalFeature
+Get-FileHash
+Get-FormatData
+Get-Help
+Get-History
+Get-Host
+Get-HotFix
+Get-InstalledModule
+Get-InstalledScript
+Get-IseSnippet
+Get-Item
+Get-ItemProperty
+Get-ItemPropertyValue
+Get-Job
+Get-JobTrigger
+Get-LocalGroup
+Get-LocalGroupMember
+Get-LocalUser
+Get-Location
+Get-LogProperties
+Get-MarkdownOption
+Get-Member
+Get-Module
+Get-OperationValidation
+Get-PSBreakpoint
+Get-PSCallStack
+Get-PSDrive
+Get-PSHostProcessInfo
+Get-PSProvider
+Get-PSReadLineKeyHandler
+Get-PSReadLineOption
+Get-PSRepository
+Get-PSSession
+Get-PSSessionCapability
+Get-PSSessionConfiguration
+Get-PSSnapin
+Get-PSSubsystem
+Get-Package
+Get-PackageProvider
+Get-PackageSource
+Get-PfxCertificate
+Get-Process
+Get-Random
+Get-Runspace
+Get-RunspaceDebug
+Get-ScheduledJob
+Get-ScheduledJobOption
+Get-Service
+Get-TimeZone
+Get-TraceSource
+Get-Transaction
+Get-TypeData
+Get-UICulture
+Get-Unique
+Get-Uptime
+Get-Variable
+Get-Verb
+Get-WSManCredSSP
+Get-WSManInstance
+Get-WinEvent
+Get-WmiObject
+Group-Object
+Import-Alias
+Import-BinaryMiLog
+Import-Clixml
+Import-Counter
+Import-Csv
+Import-IseSnippet
+Import-LocalizedData
+Import-Module
+Import-PSSession
+Import-PackageProvider
+Import-PowerShellDataFile
+Install-Module
+Install-Package
+Install-PackageProvider
+Install-Script
+Invoke-AsWorkflow
+Invoke-CimMethod
+Invoke-Command
+Invoke-Expression
+Invoke-History
+Invoke-Item
+Invoke-OperationValidation
+Invoke-RestMethod
+Invoke-WSManAction
+Invoke-WebRequest
+Invoke-WmiMethod
+Join-Path
+Join-String
+Limit-EventLog
+Measure-Command
+Measure-Object
+Move-Item
+Move-ItemProperty
+New-Alias
+New-CimInstance
+New-CimSession
+New-CimSessionOption
+New-Event
+New-EventLog
+New-FileCatalog
+New-Guid
+New-IseSnippet
+New-Item
+New-ItemProperty
+New-JobTrigger
+New-LocalGroup
+New-LocalUser
+New-Module
+New-ModuleManifest
+New-Object
+New-PSDrive
+New-PSRoleCapabilityFile
+New-PSSession
+New-PSSessionConfigurationFile
+New-PSSessionOption
+New-PSTransportOption
+New-PSWorkflowExecutionOption
+New-PSWorkflowSession
+New-ScheduledJobOption
+New-ScriptFileInfo
+New-Service
+New-TemporaryFile
+New-TimeSpan
+New-Variable
+New-WSManInstance
+New-WSManSessionOption
+New-WebServiceProxy
+New-WinEvent
+Out-Default
+Out-File
+Out-GridView
+Out-Host
+Out-Null
+Out-Printer
+Out-String
+Pop-Location
+Protect-CmsMessage
+Publish-Module
+Publish-Script
+Push-Location
+Read-Host
+Receive-Job
+Receive-PSSession
+Register-ArgumentCompleter
+Register-CimIndicationEvent
+Register-EngineEvent
+Register-ObjectEvent
+Register-PSRepository
+Register-PSSessionConfiguration
+Register-PackageSource
+Register-ScheduledJob
+Register-WmiEvent
+Remove-Alias
+Remove-CimInstance
+Remove-CimSession
+Remove-Computer
+Remove-Event
+Remove-EventLog
+Remove-Item
+Remove-ItemProperty
+Remove-Job
+Remove-JobTrigger
+Remove-LocalGroup
+Remove-LocalGroupMember
+Remove-LocalUser
+Remove-Module
+Remove-PSBreakpoint
+Remove-PSDrive
+Remove-PSReadLineKeyHandler
+Remove-PSSession
+Remove-PSSnapin
+Remove-Service
+Remove-TypeData
+Remove-Variable
+Remove-WSManInstance
+Remove-WmiObject
+Rename-Computer
+Rename-Item
+Rename-ItemProperty
+Rename-LocalGroup
+Rename-LocalUser
+Reset-ComputerMachinePassword
+Resolve-Path
+Restart-Computer
+Restart-Service
+Restore-Computer
+Resume-Job
+Resume-Service
+Save-Help
+Save-Module
+Save-Package
+Save-Script
+Select-Object
+Select-String
+Select-Xml
+Send-MailMessage
+Set-Acl
+Set-Alias
+Set-AuthenticodeSignature
+Set-CimInstance
+Set-Clipboard
+Set-Content
+Set-Date
+Set-ExecutionPolicy
+Set-Item
+Set-ItemProperty
+Set-JobTrigger
+Set-LocalGroup
+Set-LocalUser
+Set-Location
+Set-LogProperties
+Set-MarkdownOption
+Set-PSBreakpoint
+Set-PSDebug
+Set-PSReadLineKeyHandler
+Set-PSReadLineOption
+Set-PSRepository
+Set-PSSessionConfiguration
+Set-PackageSource
+Set-ScheduledJob
+Set-ScheduledJobOption
+Set-Service
+Set-StrictMode
+Set-TimeZone
+Set-TraceSource
+Set-Variable
+Set-WSManInstance
+Set-WSManQuickConfig
+Set-WmiInstance
+Show-Command
+Show-ControlPanelItem
+Show-EventLog
+Show-Markdown
+Sort-Object
+Split-Path
+Start-Job
+Start-Process
+Start-Service
+Start-Sleep
+Start-ThreadJob
+Start-Trace
+Start-Transaction
+Start-Transcript
+Stop-Computer
+Stop-Job
+Stop-Process
+Stop-Service
+Stop-Trace
+Stop-Transcript
+Suspend-Job
+Suspend-Service
+Switch-Process
+Tee-Object
+Test-ComputerSecureChannel
+Test-Connection
+Test-FileCatalog
+Test-Json
+Test-ModuleManifest
+Test-PSSessionConfigurationFile
+Test-Path
+Test-ScriptFileInfo
+Test-WSMan
+Trace-Command
+Unblock-File
+Undo-Transaction
+Uninstall-Module
+Uninstall-Package
+Uninstall-Script
+Unprotect-CmsMessage
+Unregister-Event
+Unregister-PSRepository
+Unregister-PSSessionConfiguration
+Unregister-PackageSource
+Unregister-ScheduledJob
+Update-FormatData
+Update-Help
+Update-List
+Update-Module
+Update-ModuleManifest
+Update-Script
+Update-ScriptFileInfo
+Update-TypeData
+Use-Transaction
+Wait-Debugger
+Wait-Event
+Wait-Job
+Wait-Process
+Where-Object
+Write-Debug
+Write-Error
+Write-EventLog
+Write-Host
+Write-Information
+Write-Output
+Write-Progress
+Write-Verbose
+Write-Warning
diff --git a/pkg/render/applicationlayer/embed/coreruleset/tigera.conf b/pkg/render/applicationlayer/embed/coreruleset/tigera.conf
new file mode 100644
index 0000000000..b2dc959e59
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/coreruleset/tigera.conf
@@ -0,0 +1,21 @@
+# -- Tigera CRS customizations ----------------------------------------------
+#
+# Add some common content-types expected in micro-service traffic
+SecAction \
+    "id:900220,\
+    phase:1,\
+    nolog,\
+    pass,\
+    t:none,\
+    setvar:'tx.allowed_request_content_type=|application/x-www-form-urlencoded| |multipart/form-data| |multipart/related| |text/xml| |application/xml| |application/soap+xml| |application/json| |application/cloudevents+json| |application/cloudevents-batch+json| |application/grpc| |application/grpc+proto| |application/grpc+json| |application/octet-stream|'"
+
+# Bump inbound and outbound anomaly scoring thresholds
+# CRS defaults are 5 and 4, respectively
+SecAction \
+    "id:900110,\
+    phase:1,\
+    nolog,\
+    pass,\
+    t:none,\
+    setvar:tx.inbound_anomaly_score_threshold=100,\
+    setvar:tx.outbound_anomaly_score_threshold=100"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/unicode.mapping b/pkg/render/applicationlayer/embed/coreruleset/unicode.mapping
similarity index 100%
rename from pkg/render/applicationlayer/modsec-core-ruleset/unicode.mapping
rename to pkg/render/applicationlayer/embed/coreruleset/unicode.mapping
diff --git a/pkg/render/applicationlayer/embed/embed.go b/pkg/render/applicationlayer/embed/embed.go
new file mode 100644
index 0000000000..4f69e80094
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/embed.go
@@ -0,0 +1,61 @@
+// Copyright (c) 2023 Tigera, Inc. All rights reserved.
+
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package embed
+
+import (
+	"embed"
+	"fmt"
+	"io/fs"
+)
+
+var (
+	FS fs.FS
+	//go:embed coreruleset
+	crsFS embed.FS
+)
+
+func init() {
+	var err error
+	FS, err = fs.Sub(crsFS, "coreruleset")
+	if err != nil {
+		panic(err)
+	}
+}
+
+func AsMap() (map[string]string, error) {
+	res := make(map[string]string)
+	var walkFn fs.WalkDirFunc = func(path string, d fs.DirEntry, err error) error {
+		if err != nil {
+			return err
+		}
+
+		if d.IsDir() {
+			return err
+		}
+
+		if b, err := fs.ReadFile(FS, path); err != nil {
+			return err
+		} else {
+			res[d.Name()] = string(b)
+		}
+		return nil
+	}
+
+	if err := fs.WalkDir(FS, ".", walkFn); err != nil {
+		return nil, fmt.Errorf("failed to walk core ruleset files (%w)", err)
+	}
+
+	return res, nil
+}
diff --git a/pkg/render/applicationlayer/embed/embed_test.go b/pkg/render/applicationlayer/embed/embed_test.go
new file mode 100644
index 0000000000..6e81ee030d
--- /dev/null
+++ b/pkg/render/applicationlayer/embed/embed_test.go
@@ -0,0 +1,53 @@
+// Copyright (c) 2023 Tigera, Inc. All rights reserved.
+
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package embed
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/require"
+)
+
+func TestEmbed(t *testing.T) {
+	for _, fileName := range []string{
+		// bare FS embed as sub. coreruleset prefix stripped
+		"modsecdefault.conf",
+		"crs-setup.conf",
+		"tigera.conf",
+		"unicode.mapping",
+		// subdirectory 'rules' intact
+		"rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example",
+		"rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf",
+	} {
+		_, err := FS.Open(fileName)
+		require.NoError(t, err)
+	}
+}
+
+func TestEmbedAsMap(t *testing.T) {
+	fileMap, err := AsMap()
+	require.NoError(t, err)
+	for _, fileName := range []string{
+		"modsecdefault.conf",
+		"crs-setup.conf",
+		"unicode.mapping",
+		// rules directory is stripped because of fs.Walk uses file entry name
+		"REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example",
+		"REQUEST-942-APPLICATION-ATTACK-SQLI.conf",
+	} {
+		_, ok := fileMap[fileName]
+		require.True(t, ok)
+	}
+}
diff --git a/pkg/render/applicationlayer/gen.go b/pkg/render/applicationlayer/gen.go
deleted file mode 100644
index a7cdc2fa0d..0000000000
--- a/pkg/render/applicationlayer/gen.go
+++ /dev/null
@@ -1,54 +0,0 @@
-//go:build ignore
-
-package main
-
-import (
-	"encoding/base64"
-	"fmt"
-	"os"
-	"path/filepath"
-	"text/template"
-)
-
-var tpl = template.Must(template.New("").Parse(`// THIS IS A GENERATED FILE, PLEASE DO NOT EDIT.
-package applicationlayer
-
-var ModsecurityCoreRuleSet = map[string]string{
-{{- range $name, $data := . }}
-	"{{ $name }}": "{{ $data }}",
-{{- end }}
-}
-
-`))
-
-func main() {
-
-	fout, err := os.Create("./modsecurityrules.go")
-	if err != nil {
-		fmt.Print(err)
-		os.Exit(1)
-	} else {
-		defer fout.Close()
-	}
-
-	directory, err := os.ReadDir("./modsec-core-ruleset")
-	if err != nil {
-		fmt.Print(err)
-		os.Exit(1)
-	}
-
-	ruleset := make(map[string]string)
-	for _, f := range directory {
-		if f.IsDir() {
-			continue
-		}
-		if d, err := os.ReadFile(filepath.Join("./modsec-core-ruleset", f.Name())); err == nil {
-			ruleset[f.Name()] = base64.StdEncoding.EncodeToString(d)
-		} else {
-			fmt.Print(err)
-			os.Exit(1)
-		}
-	}
-
-	tpl.Execute(fout, ruleset)
-}
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf
deleted file mode 100644
index 518300aa6b..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf
+++ /dev/null
@@ -1,423 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-# These exclusions remedy false positives in a default Drupal install.
-# The exclusions are only active if crs_exclusions_drupal=1 is set.
-# See rule 900130 in crs-setup.conf.example for instructions.
-
-#
-# [ POLICY ]
-#
-# Drupal is a complex application that is hard to secure with the CRS. This set
-# of exclusion rules aims to sanitise the CRS in a way that allows a default
-# Drupal setup to be installed and configured without much hassle as far as
-# ModSecurity and the CRS are concerned.
-#
-# The exclusion rules are fairly straight forward in the sense that they
-# disable CRS on a set of well-known parameter fields that are often the source
-# of false positives / false alarms of the CRS. This includes namely the
-# session cookie, the password fields and article/node bodies.
-#
-# This is based on two assumptions: - You have a basic trust in your
-# authenticated users who are allowed to edit nodes.  - Drupal allows html
-# content in nodes and it protects your users from attacks via these fields.
-#
-# If you think these assumptions are wrong or if you would prefer a more
-# careful/secure approach, you can disable the exclusion rules handling of said
-# node body false positives. Do this by placing the following directive in
-# RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.
-#
-# SecRuleRemoveById 9001200-9001299
-#
-# This will mean the CRS remain intact for the editing of node bodies.
-#
-# The exclusion rules in this file work without the need to define a Drupal
-# installation path prefix. Instead they look at the URI from the end - or
-# they use regular expressions when targeting dynamic URL. This is all not
-# totally foolproof. In some cases, an advanced attacker might be able to
-# doctor a request in a way that one of these exclusion rules is triggered
-# and the request will bypass all further inspection despite not being a
-# Drupal request at all. These exclusion rules could thus be leveraged to
-# disable the CRS completely. This is why these rules are off by default.
-#
-# The CRS rules covered by this ruleset are the rules with Paranoia Level 1 and
-# 2. If you chose to run Paranoia Level 3 or 4, you will be facing additional
-# false positives which you need to handle yourself.
-#
-# This set of exclusion rules does not cover any additional Drupal modules
-# outside of core.
-#
-# The exclusion rules are based on Drupal 8.1.10.
-#
-# And finally: This set of exclusion rules is in an experimental state. If you
-# encounter false positives with the basic Drupal functionality and they are
-# not covered by this rule file, then please report them. The aim is to be able
-# to install and run Drupal core in a seamless manner protected by
-# ModSecurity / CRS up to the paranoia level 2.
-
-
-SecRule &TX:crs_exclusions_drupal|TX:crs_exclusions_drupal "@eq 0" \
-    "id:9001000,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-DRUPAL-RULE-EXCLUSIONS"
-
-SecRule &TX:crs_exclusions_drupal|TX:crs_exclusions_drupal "@eq 0" \
-    "id:9001001,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-DRUPAL-RULE-EXCLUSIONS"
-
-
-# [ Table of Contents ]
-#
-# 9001100 Session Cookie
-# 9001110 Password
-# 9001120 FREE for use
-# 9001130 FREE for use
-# 9001140 Content and Descriptions
-# 9001150 FREE for use
-# 9001160 Form Token
-# 9001170 Text Formats and Editors
-# 9001180 WYSIWYG/CKEditor Assets and Upload
-# 9001190 FREE for use
-# 9001200 Content and Descriptions
-#
-# The rule id range from 9001200 to 9001999 is reserved for future
-# use (Drupal plugins / modules).
-
-
-# [ Session Cookie ]
-#
-# Giving the session cookie a dynamic name is most unfortunate
-# from a ModSecurity perspective. The rule language does not allow
-# us to disable rules in a granular way for individual cookies with
-# dynamic names. So we need to disable rule causing false positives
-# for all cookies and their names.
-#
-# Rule Exclusion Session Cookie: 942450 SQL Hex Encoding Identified
-#
-SecAction "id:9001100,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetById=942450;REQUEST_COOKIES_NAMES,\
-    ctl:ruleRemoveTargetById=942450;REQUEST_COOKIES,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ Password ]
-#
-# Disable the CRS completely for all occurrences of passwords.
-#
-SecRule REQUEST_FILENAME "@endsWith /core/install.php" \
-    "id:9001110,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:account[pass][pass1],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:account[pass][pass2],\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /user/login" \
-    "id:9001112,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /admin/people/create" \
-    "id:9001114,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass[pass1],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass[pass2],\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@rx /user/[0-9]+/edit$" \
-    "id:9001116,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:current_pass,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass[pass1],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass[pass2],\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ Admin Settings (general) ]
-#
-# Disable known false positives for various fields used on admin pages.
-#
-# Rule Exclusion: 920271 Invalid character in request on multiple fields/paths
-# Rule Exclusion: 942430 Restricted SQL Character Anomaly Detection (args)
-#                        Disabled completely for admin/config pages
-# For the people/accounts page, we disable the CRS completely for a number of
-# freeform text fields.
-#
-SecRule REQUEST_FILENAME "@contains /admin/config/" \
-    "id:9001122,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveById=942430,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /admin/config/people/accounts" \
-    "id:9001124,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveById=920271,\
-    ctl:ruleRemoveById=942440,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:user_mail_cancel_confirm_body,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:user_mail_password_reset_body,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:user_mail_register_admin_created_body,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:user_mail_register_no_approval_required_body,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:user_mail_register_pending_approval_body,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:user_mail_status_activated_body,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:user_mail_status_blocked_body,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:user_mail_status_canceled_body,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /admin/config/development/configuration/single/import" \
-    "id:9001126,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveById=920271,\
-    ctl:ruleRemoveById=942440,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /admin/config/development/maintenance" \
-    "id:9001128,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveById=942440,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-#
-# [ Content and Descriptions ]
-#
-# Disable known false positives for field "ids[]".
-#
-# Rule Exclusion: 942130 SQL Injection Attack: SQL Tautology Detected
-#
-SecRule REQUEST_FILENAME "@endsWith /contextual/render" \
-    "id:9001140,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetById=942130;ARGS:ids[],\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ Form Token / Build ID ]
-#
-# Rule Exclusion for form_build_id: 942440 SQL Comment Sequence Detected on ...
-# Rule Exclusion for form_token:    942450 SQL Hex Encoding
-# Rule Exclusion for form_build_id: 942450 SQL Hex Encoding
-#
-# This is applied site-wide.
-#
-SecAction "id:9001160,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetById=942440;ARGS:form_build_id,\
-    ctl:ruleRemoveTargetById=942450;ARGS:form_token,\
-    ctl:ruleRemoveTargetById=942450;ARGS:form_build_id,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ Text Formats and Editors ]
-#
-# Disable the CRS completely for two fields triggering many, many rules
-#
-# Rule Exclusion for two fields: 942440 SQL Comment Sequence Detected
-#
-SecRule REQUEST_FILENAME "@endsWith /admin/config/content/formats/manage/full_html" \
-    "id:9001170,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:editor[settings][toolbar][button_groups],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:filters[filter_html][settings][allowed_html],\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ WYSIWYG/CKEditor Assets and Upload ]
-#
-# Disable the unnecessary requestBodyAccess and for binary uploads
-# bigger than an arbitrary limit of 31486341 bytes.
-#
-# Extensive checks make sure these uploads are really legitimate.
-#
-# Rule 9001180 was commented out in 2021 in order to fight CVE-2021-35368.
-#
-#SecRule REQUEST_METHOD "@streq POST" \
-#    "id:9001180,\
-#    phase:1,\
-#    pass,\
-#    t:none,\
-#    nolog,\
-#    noauditlog,\
-#    ver:'OWASP_CRS/3.3.0',\
-#    chain"
-#    SecRule REQUEST_FILENAME "@rx /admin/content/assets/add/[a-z]+$" \
-#        "chain"
-#        SecRule REQUEST_COOKIES:/S?SESS[a-f0-9]+/ "@rx ^[a-zA-Z0-9_-]+" \
-#            "ctl:requestBodyAccess=Off"
-
-# Rule 9001182 was commented out in 2021 in order to fight CVE-2021-35368.
-#
-#SecRule REQUEST_METHOD "@streq POST" \
-#    "id:9001182,\
-#    phase:1,\
-#    pass,\
-#    t:none,\
-#    nolog,\
-#    noauditlog,\
-#    ver:'OWASP_CRS/3.3.0',\
-#    chain"
-#    SecRule REQUEST_FILENAME "@rx /admin/content/assets/manage/[0-9]+$" \
-#        "chain"
-#        SecRule ARGS:destination "@streq admin/content/assets" \
-#            "chain"
-#            SecRule REQUEST_HEADERS:Content-Length "@gt 31486341" \
-#                "chain"
-#                SecRule REQUEST_COOKIES:/S?SESS[a-f0-9]+/ "@rx ^[a-zA-Z0-9_-]+" \
-#                    "ctl:requestBodyAccess=Off"
-
-# Rule 9001184 was commented out in 2021 in order to fight CVE-2021-35368.
-#
-#SecRule REQUEST_METHOD "@streq POST" \
-#    "id:9001184,\
-#    phase:1,\
-#    pass,\
-#    t:none,\
-#    nolog,\
-#    noauditlog,\
-#    ver:'OWASP_CRS/3.3.0',\
-#    chain"
-#    SecRule REQUEST_FILENAME "@rx /file/ajax/field_asset_[a-z0-9_]+/[ua]nd/0/form-[a-z0-9A-Z_-]+$" \
-#        "chain"
-#        SecRule REQUEST_HEADERS:Content-Length "@gt 31486341" \
-#            "chain"
-#            SecRule REQUEST_HEADERS:Content-Type "@rx ^(?i)multipart/form-data" \
-#                "chain"
-#                SecRule REQUEST_COOKIES:/S?SESS[a-f0-9]+/ "@rx ^[a-zA-Z0-9_-]+" \
-#                    "ctl:requestBodyAccess=Off"
-
-
-#
-# [ Content and Descriptions ]
-#
-# Disable the CRS completely for node bodies and other free text fields.
-# Other rules are disabled individually.
-#
-# Rule Exclusion for ARGS:uid[0][target_id]: 942410 SQL Injection Attack
-# Rule Exclusion for ARGS:destination:       932110 RCE: Windows Command Inj.
-#
-SecRule REQUEST_FILENAME "@endsWith /node/add/article" \
-    "id:9001200,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:body[0][value],\
-    ctl:ruleRemoveTargetById=942410;ARGS:uid[0][target_id],\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /node/add/page" \
-    "id:9001202,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:body[0][value],\
-    ctl:ruleRemoveTargetById=942410;ARGS:uid[0][target_id],\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@rx /node/[0-9]+/edit$" \
-    "id:9001204,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:body[0][value],\
-    ctl:ruleRemoveTargetById=942410;ARGS:uid[0][target_id],\
-    ctl:ruleRemoveTargetById=932110;ARGS:destination,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /block/add" \
-    "id:9001206,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:body[0][value],\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /admin/structure/block/block-content/manage/basic" \
-    "id:9001208,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:description,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@rx /editor/filter_xss/(?:full|basic)_html$" \
-    "id:9001210,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:value,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@rx /user/[0-9]+/contact$" \
-    "id:9001212,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message[0][value],\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /admin/config/development/maintenance" \
-    "id:9001214,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:maintenance_mode_message,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@endsWith /admin/config/services/rss-publishing" \
-    "id:9001216,\
-    phase:2,\
-    pass,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:feed_description,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-SecMarker "END-DRUPAL-RULE-EXCLUSIONS"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
deleted file mode 100644
index b4e75fa223..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
+++ /dev/null
@@ -1,760 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-# These exclusions remedy false positives in a default WordPress install.
-# The exclusions are only active if crs_exclusions_wordpress=1 is set.
-# See rule 900130 in crs-setup.conf.example for instructions.
-#
-# Note that the WordPress comment field itself is currently NOT excluded
-# from checking. The reason is that malicious content is regularly being
-# posted to WordPress comment forms, and there have been various cases
-# of XSS and even RCE vulnerabilities exploited by WordPress comments.
-
-SecRule &TX:crs_exclusions_wordpress|TX:crs_exclusions_wordpress "@eq 0" \
-    "id:9002000,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-WORDPRESS"
-
-SecRule &TX:crs_exclusions_wordpress|TX:crs_exclusions_wordpress "@eq 0" \
-    "id:9002001,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-WORDPRESS"
-
-
-#
-# -=[ WordPress Front-End ]=-
-#
-
-
-#
-# [ Login form ]
-#
-
-# User login password
-SecRule REQUEST_FILENAME "@endsWith /wp-login.php" \
-    "id:9002100,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pwd,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Reset password
-SecRule REQUEST_FILENAME "@endsWith /wp-login.php" \
-    "id:9002120,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq resetpass" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1-text,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass2"
-
-
-#
-# [ Comments ]
-#
-
-# Post comment
-SecRule REQUEST_FILENAME "@endsWith /wp-comments-post.php" \
-    "id:9002130,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=931130;ARGS:url,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ Gutenberg Editor ]
-# Used when a user (auto)saves a post/page with Gutenberg.
-#
-
-# Gutenberg
-SecRule REQUEST_FILENAME "@rx /wp-json/wp/v[0-9]+/(?:posts|pages)" \
-    "id:9002140,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:content,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:json.content,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Gutenberg via rest_route for sites without pretty permalinks
-SecRule REQUEST_FILENAME "@endsWith /index.php" \
-    "id:9002141,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule &ARGS:rest_route "@eq 1" \
-        "t:none,\
-        nolog,\
-        chain"
-        SecRule ARGS:rest_route "@rx ^/wp/v[0-9]+/(?:posts|pages)" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:content,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:json.content"
-
-# Gutenberg upload image/media
-SecRule REQUEST_FILENAME "@rx /wp-json/wp/v[0-9]+/media" \
-    "id:9002142,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveById=200002,\
-    ctl:ruleRemoveById=200003,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Gutenberg upload image/media via rest_route for sites without pretty permalinks
-SecRule REQUEST_FILENAME "@endsWith /index.php" \
-    "id:9002143,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule &ARGS:rest_route "@eq 1" \
-        "t:none,\
-        nolog,\
-        chain"
-        SecRule ARGS:rest_route "@rx ^/wp/v[0-9]+/media" \
-            "t:none,\
-            ctl:ruleRemoveById=200002,\
-            ctl:ruleRemoveById=200003"
-
-#
-# [ Live preview ]
-# Used when an administrator customizes the site and previews the result
-# as a normal user.
-#
-
-# Theme select
-# Example: wp_customize=on&theme=twentyfifteen&customized=
-# {"old_sidebars_widgets_data":{"wp_inactive_widgets":[],
-# "sidebar-1":["search-2","recent-posts-2","recent-comments-2",
-# "archives-2","categories-2","meta-2"]}}&nonce=XXX&
-# customize_messenger_channel=preview-0
-SecRule ARGS:wp_customize "@streq on" \
-    "id:9002150,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule &ARGS:action "@eq 0" \
-        "t:none,\
-        ctl:ruleRemoveTargetById=942200;ARGS:customized,\
-        ctl:ruleRemoveTargetById=942260;ARGS:customized,\
-        ctl:ruleRemoveTargetById=942300;ARGS:customized,\
-        ctl:ruleRemoveTargetById=942330;ARGS:customized,\
-        ctl:ruleRemoveTargetById=942340;ARGS:customized,\
-        ctl:ruleRemoveTargetById=942370;ARGS:customized,\
-        ctl:ruleRemoveTargetById=942430;ARGS:customized,\
-        ctl:ruleRemoveTargetById=942431;ARGS:customized,\
-        ctl:ruleRemoveTargetById=942460;ARGS:customized"
-
-# Appearance -> Widgets -> Live Preview
-SecRule ARGS:wp_customize "@streq on" \
-    "id:9002160,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@rx ^(?:|customize_save|update-widget)$" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetById=942200;ARGS:customized,\
-            ctl:ruleRemoveTargetById=942260;ARGS:customized,\
-            ctl:ruleRemoveTargetById=942300;ARGS:customized,\
-            ctl:ruleRemoveTargetById=942330;ARGS:customized,\
-            ctl:ruleRemoveTargetById=942340;ARGS:customized,\
-            ctl:ruleRemoveTargetById=942370;ARGS:customized,\
-            ctl:ruleRemoveTargetById=942430;ARGS:customized,\
-            ctl:ruleRemoveTargetById=942431;ARGS:customized,\
-            ctl:ruleRemoveTargetById=942460;ARGS:customized,\
-            ctl:ruleRemoveTargetById=920230;ARGS:partials,\
-            ctl:ruleRemoveTargetById=941320;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942180;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942200;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942260;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942330;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942340;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942370;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942430;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942431;ARGS:partials,\
-            ctl:ruleRemoveTargetById=942460;ARGS:partials"
-
-
-
-# Self calls to wp-cron.php?doing_wp_cron=[timestamp]
-# These requests may be missing Accept, Content-Length headers.
-# This rule must run in phase:1.
-SecRule REQUEST_FILENAME "@endsWith /wp-cron.php" \
-    "id:9002200,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveById=920180,\
-    ctl:ruleRemoveById=920300,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ Cookies ]
-
-# WP Session Manager
-# Cookie: _wp_session=[hex]||[timestamp]||[timestamp]
-# detected SQLi using libinjection with fingerprint 'n&1'
-SecRule REQUEST_COOKIES:_wp_session "@rx ^[0-9a-f]+\|\|\d+\|\|\d+$" \
-    "id:9002300,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule &REQUEST_COOKIES:_wp_session "@eq 1" \
-        "t:none,\
-        ctl:ruleRemoveTargetById=942100;REQUEST_COOKIES:_wp_session"
-
-
-#
-# -=[ WordPress Administration Back-End (wp-admin) ]=-
-#
-
-# Skip this section for performance unless /wp-admin/ is in filename
-
-SecRule REQUEST_FILENAME "!@contains /wp-admin/" \
-    "id:9002400,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-WORDPRESS-ADMIN"
-
-SecRule REQUEST_FILENAME "!@contains /wp-admin/" \
-    "id:9002401,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-WORDPRESS-ADMIN"
-
-
-#
-# [ Installation ]
-#
-
-# WordPress installation: exclude database password
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/setup-config.php" \
-    "id:9002410,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:step "@streq 2" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:step "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pwd"
-
-# WordPress installation: exclude admin password
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/install.php" \
-    "id:9002420,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:step "@streq 2" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:step "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:admin_password,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:admin_password2,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1-text"
-
-
-#
-# [ User management ]
-#
-
-# Edit logged-in user
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/profile.php" \
-    "id:9002520,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq update" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetById=931130;ARGS:url,\
-            ctl:ruleRemoveTargetById=931130;ARGS:facebook,\
-            ctl:ruleRemoveTargetById=931130;ARGS:instagram,\
-            ctl:ruleRemoveTargetById=931130;ARGS:linkedin,\
-            ctl:ruleRemoveTargetById=931130;ARGS:myspace,\
-            ctl:ruleRemoveTargetById=931130;ARGS:pinterest,\
-            ctl:ruleRemoveTargetById=931130;ARGS:soundcloud,\
-            ctl:ruleRemoveTargetById=931130;ARGS:tumblr,\
-            ctl:ruleRemoveTargetById=931130;ARGS:youtube,\
-            ctl:ruleRemoveTargetById=931130;ARGS:wikipedia,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1-text,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass2"
-
-# Edit user
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/user-edit.php" \
-    "id:9002530,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq update" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetById=931130;ARGS:url,\
-            ctl:ruleRemoveTargetById=931130;ARGS:url,\
-            ctl:ruleRemoveTargetById=931130;ARGS:facebook,\
-            ctl:ruleRemoveTargetById=931130;ARGS:instagram,\
-            ctl:ruleRemoveTargetById=931130;ARGS:linkedin,\
-            ctl:ruleRemoveTargetById=931130;ARGS:myspace,\
-            ctl:ruleRemoveTargetById=931130;ARGS:pinterest,\
-            ctl:ruleRemoveTargetById=931130;ARGS:soundcloud,\
-            ctl:ruleRemoveTargetById=931130;ARGS:tumblr,\
-            ctl:ruleRemoveTargetById=931130;ARGS:youtube,\
-            ctl:ruleRemoveTargetById=931130;ARGS:wikipedia,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1-text,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass2"
-
-# Create user
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/user-new.php" \
-    "id:9002540,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq createuser" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetById=931130;ARGS:url,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1-text,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass2"
-
-
-#
-# [ General exclusions ]
-#
-
-# _wp_http_referer and wp_http_referer are passed on a lot of wp-admin pages
-SecAction \
-    "id:9002600,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=920230;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=931130;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=932150;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=941100;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=942130;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=942200;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=942260;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=942431;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=942440;ARGS:_wp_http_referer,\
-    ctl:ruleRemoveTargetById=920230;ARGS:wp_http_referer,\
-    ctl:ruleRemoveTargetById=931130;ARGS:wp_http_referer,\
-    ctl:ruleRemoveTargetById=932150;ARGS:wp_http_referer,\
-    ctl:ruleRemoveTargetById=941100;ARGS:wp_http_referer,\
-    ctl:ruleRemoveTargetById=942130;ARGS:wp_http_referer,\
-    ctl:ruleRemoveTargetById=942200;ARGS:wp_http_referer,\
-    ctl:ruleRemoveTargetById=942260;ARGS:wp_http_referer,\
-    ctl:ruleRemoveTargetById=942431;ARGS:wp_http_referer,\
-    ver:'OWASP_CRS/3.3.5'"
-
-#
-# [ Content editing ]
-#
-
-# Edit posts and pages
-# /wp-admin/post.php, /wp-admin/post.php?t=[timestamp]
-# - Themes do not properly escape post_title in HTML, so beware of XSS
-#   and be conservative in excluding this parameter.
-# - Parameter _wp_http_referer can appear multiple times.
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/post.php" \
-    "id:9002700,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@rx ^(?:edit|editpost)$" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=attack-sqli;ARGS:post_title,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:content,\
-            ctl:ruleRemoveById=920272,\
-            ctl:ruleRemoveById=921180"
-
-# Autosave posts and pages
-# ARGS_NAMES:data[wp-check-locked-posts][] can appear multiple times
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/admin-ajax.php" \
-    "id:9002710,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq heartbeat" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=attack-sqli;ARGS:data[wp_autosave][post_title],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:data[wp_autosave][content],\
-            ctl:ruleRemoveTargetById=942431;ARGS_NAMES:data[wp-refresh-post-lock][post_id],\
-            ctl:ruleRemoveTargetById=942431;ARGS_NAMES:data[wp-refresh-post-lock][lock],\
-            ctl:ruleRemoveTargetById=942431;ARGS_NAMES:data[wp-check-locked-posts][],\
-            ctl:ruleRemoveById=921180,\
-            ctl:ruleRemoveById=920272"
-
-# Edit menus
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/nav-menus.php" \
-    "id:9002720,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq update" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetById=942460;ARGS:menu-name,\
-            ctl:ruleRemoveTargetById=941330;ARGS:nav-menu-data,\
-            ctl:ruleRemoveTargetById=941340;ARGS:nav-menu-data,\
-            ctl:ruleRemoveTargetById=942200;ARGS:nav-menu-data,\
-            ctl:ruleRemoveTargetById=942260;ARGS:nav-menu-data,\
-            ctl:ruleRemoveTargetById=942330;ARGS:nav-menu-data,\
-            ctl:ruleRemoveTargetById=942340;ARGS:nav-menu-data,\
-            ctl:ruleRemoveTargetById=942430;ARGS:nav-menu-data,\
-            ctl:ruleRemoveTargetById=942431;ARGS:nav-menu-data,\
-            ctl:ruleRemoveTargetById=942460;ARGS:nav-menu-data"
-
-# Edit text widgets (can contain custom HTML)
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/admin-ajax.php" \
-    "id:9002730,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@rx ^(?:save-widget|update-widget)$" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[0][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[1][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[2][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[3][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[4][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[5][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[6][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[7][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[8][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[9][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[10][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[11][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[12][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[13][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[14][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[15][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[16][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[17][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[18][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[19][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[20][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[21][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[22][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[23][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[24][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[25][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[26][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[27][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[28][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[29][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[30][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[31][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[32][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[33][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[34][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[35][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[36][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[37][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[38][text],\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:widget-text[39][text]"
-
-# Reorder widgets
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/admin-ajax.php" \
-    "id:9002740,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq widgets-order" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetById=942430;ARGS:sidebars[sidebar-1],\
-            ctl:ruleRemoveTargetById=942431;ARGS:sidebars[sidebar-1],\
-            ctl:ruleRemoveTargetById=942430;ARGS:sidebars[sidebar-2],\
-            ctl:ruleRemoveTargetById=942431;ARGS:sidebars[sidebar-2],\
-            ctl:ruleRemoveTargetById=942430;ARGS:sidebars[sidebar-3],\
-            ctl:ruleRemoveTargetById=942431;ARGS:sidebars[sidebar-3],\
-            ctl:ruleRemoveTargetById=942430;ARGS:sidebars[sidebar-4],\
-            ctl:ruleRemoveTargetById=942431;ARGS:sidebars[sidebar-4],\
-            ctl:ruleRemoveTargetById=942430;ARGS:sidebars[sidebar-5],\
-            ctl:ruleRemoveTargetById=942431;ARGS:sidebars[sidebar-5],\
-            ctl:ruleRemoveTargetById=942430;ARGS:sidebars[sidebar-6],\
-            ctl:ruleRemoveTargetById=942431;ARGS:sidebars[sidebar-6],\
-            ctl:ruleRemoveTargetById=942430;ARGS:sidebars[sidebar-7],\
-            ctl:ruleRemoveTargetById=942431;ARGS:sidebars[sidebar-7]"
-
-# Create permalink sample for new post
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/admin-ajax.php" \
-    "id:9002750,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq sample-permalink" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=attack-sqli;ARGS:new_title"
-
-# Add external link to menu
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/admin-ajax.php" \
-    "id:9002760,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq add-menu-item" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetById=931130;ARGS:menu-item[-1][menu-item-url]"
-
-# Editor: Add Media, Insert Media, Insert into page
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/admin-ajax.php" \
-    "id:9002770,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq send-attachment-to-editor" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:html"
-
-
-#
-# [ Options and Settings ]
-#
-
-# Change site URL
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/options.php" \
-    "id:9002800,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:option_page "@streq general" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:option_page "@eq 1" \
-            "t:none,\
-            chain"
-            SecRule ARGS:action "@streq update" \
-                "t:none,\
-                chain"
-                SecRule &ARGS:action "@eq 1" \
-                    "t:none,\
-                    ctl:ruleRemoveTargetById=931130;ARGS:home,\
-                    ctl:ruleRemoveTargetById=931130;ARGS:siteurl"
-
-# Permalink settings
-# permalink_structure=/index.php/%year%/%monthnum%/%day%/%postname%/
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/options-permalink.php" \
-    "id:9002810,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=920230;ARGS:selection,\
-    ctl:ruleRemoveTargetById=920272;ARGS:selection,\
-    ctl:ruleRemoveTargetById=942431;ARGS:selection,\
-    ctl:ruleRemoveTargetById=920230;ARGS:permalink_structure,\
-    ctl:ruleRemoveTargetById=920272;ARGS:permalink_structure,\
-    ctl:ruleRemoveTargetById=942431;ARGS:permalink_structure,\
-    ctl:ruleRemoveTargetById=920272;REQUEST_BODY,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Comments blacklist and moderation list
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/options.php" \
-    "id:9002820,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:option_page "@streq discussion" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:option_page "@eq 1" \
-            "t:none,\
-            chain"
-            SecRule ARGS:action "@streq update" \
-                "t:none,\
-                chain"
-                SecRule &ARGS:action "@eq 1" \
-                    "t:none,\
-                    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:blacklist_keys,\
-                    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:moderation_keys"
-
-# Posts/pages overview search
-SecRule REQUEST_FILENAME "@endsWith /wp-admin/edit.php" \
-    "id:9002830,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:s,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ Helpers ]
-#
-
-# /wp-admin/load-scripts.php?c=0&load%5B%5D=hoverIntent,common,
-# admin-bar,wp-ajax-response,jquery-color,wp-lists,quicktags,
-# jquery-query,admin-comments,svg-painter,heartbeat,&load%5B%5D=
-# wp-auth-check,wp-a11y,wplink,jquery-ui-core,jquery-ui-widget,
-# jquery-ui-position,jquery-ui-menu,jquery-ui-autocomplete&ver=4.6.1
-#
-# /wp-admin/load-styles.php?c=0&dir=ltr&load%5B%5D=dashicons,
-# admin-bar,buttons,media-views,common,forms,admin-menu,dashboard,
-# list-tables,edit,revisions,media,themes,about,nav-menu&load%5B%5D=
-# s,widgets,site-icon,l10n,wp-auth-check&ver=4.6.1
-#
-# /wp-admin/load-scripts.php?c=0&load%5B%5D=hoverIntent,common,
-# admin-bar,jquery-ui-widget,jquery-ui-position,wp-pointer,
-# wp-ajax-response,jquery-color,wp-lists,quicktags,
-# jqu&load%5B%5D=ery-query,admin-comments,jquery-ui-core,
-# jquery-ui-mouse,jquery-ui-sortable,postbox,dashboard,underscore,
-# customize-base,customize&load%5B%5D=-loader,thickbox,plugin-install,
-# wp-util,wp-a11y,updates,shortcode,media-upload,svg-painter,
-# jquery-ui-accordion&ver=3f9999390861a0133beda3ee8acf152e
-SecRule REQUEST_FILENAME "@rx /wp-admin/load-(?:scripts|styles)\.php$" \
-    "id:9002900,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveById=921180,\
-    ctl:ruleRemoveTargetById=920273;ARGS_NAMES:load[],\
-    ctl:ruleRemoveTargetById=942432;ARGS_NAMES:load[],\
-    ctl:ruleRemoveTargetById=942360;ARGS:load[],\
-    ctl:ruleRemoveTargetById=942430;ARGS:load[],\
-    ctl:ruleRemoveTargetById=942431;ARGS:load[],\
-    ctl:ruleRemoveTargetById=942432;ARGS:load[],\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-SecMarker "END-WORDPRESS-ADMIN"
-
-
-SecMarker "END-WORDPRESS"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf
deleted file mode 100644
index 3b63b47e21..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf
+++ /dev/null
@@ -1,416 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-#
-# ------------------------------------------------------------------------
-
-# These exclusions remedy false positives in a default NextCloud install.
-# They will likely work with OwnCloud too, but you may have to modify them.
-# The exclusions are only active if crs_exclusions_nextcloud=1 is set.
-# See rule 900130 in crs-setup.conf.example for instructions.
-#
-# To relax upload restrictions for only the php files that need it,
-# you put something like this in crs-setup.conf:
-#
-# SecRule REQUEST_FILENAME "@rx /(?:remote.php|index.php)/" \
-#   "id:9003330,\
-#   phase:1,\
-#   t:none,\
-#   nolog,\
-#   pass,\
-#   tx.restricted_extensions='.bak/ .config/ .conf/'"
-#
-# Large uploads can be modified with SecRequestBodyLimit. Or they
-# can be more controlled by using the following:
-#
-# SecRule REQUEST_URI "@endsWith /index.php/apps/files/ajax/upload.php" \
-#    "id:9003610,\
-#    phase:1,\
-#    t:none,\
-#    nolog,\
-#    ctl:requestBodyLimit=1073741824"
-#
-# ---------------------
-
-
-SecRule &TX:crs_exclusions_nextcloud|TX:crs_exclusions_nextcloud "@eq 0" \
-    "id:9003000,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-NEXTCLOUD"
-
-SecRule &TX:crs_exclusions_nextcloud|TX:crs_exclusions_nextcloud "@eq 0" \
-    "id:9003001,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-NEXTCLOUD"
-
-
-#
-# [ File Manager ]
-#
-#
-# The web interface uploads files, and interacts with the user.
-
-SecRule REQUEST_FILENAME "@contains /remote.php/webdav" \
-    "id:9003100,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveByTag=attack-injection-php,\
-    ctl:ruleRemoveById=941000-942999,\
-    ctl:ruleRemoveById=951000-951999,\
-    ctl:ruleRemoveById=953100-953130,\
-    ctl:ruleRemoveById=920420,\
-    ctl:ruleRemoveById=920440,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Skip PUT parsing for invalid encoding / protocol violations in binary files.
-
-SecRule REQUEST_METHOD "@streq PUT" \
-    "id:9003105,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule REQUEST_FILENAME "@contains /remote.php/webdav" \
-        "t:none,\
-        ctl:ruleRemoveById=920000-920999,\
-        ctl:ruleRemoveById=932000-932999,\
-        ctl:ruleRemoveById=921150,\
-        ctl:ruleRemoveById=930110,\
-        ctl:ruleRemoveById=930120"
-
-# Allow the data type 'text/vcard'
-
-SecRule REQUEST_FILENAME "@contains /remote.php/dav/files/" \
-    "id:9003110,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.allowed_request_content_type=%{tx.allowed_request_content_type} |text/vcard|'"
-
-# Allow the data type 'application/octet-stream'
-
-SecRule REQUEST_METHOD "@rx ^(?:PUT|MOVE)$" \
-    "id:9003115,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule REQUEST_FILENAME "@rx /remote\.php/dav/(?:files|uploads)/" \
-        "setvar:'tx.allowed_request_content_type=%{tx.allowed_request_content_type} |application/octet-stream|'"
-
-# Allow data types like video/mp4
-
-SecRule REQUEST_METHOD "@streq PUT" \
-    "id:9003116,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule REQUEST_FILENAME "@rx (?:/public\.php/webdav/|/remote\.php/dav/uploads/)" \
-        "ctl:ruleRemoveById=920340,\
-        ctl:ruleRemoveById=920420"
-
-
-# Allow characters like /../ in files.
-# Allow all kind of filetypes.
-# Allow source code.
-
-SecRule REQUEST_FILENAME "@contains /remote.php/dav/files/" \
-    "id:9003120,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveById=930100-930110,\
-    ctl:ruleRemoveById=951000-951999,\
-    ctl:ruleRemoveById=953100-953130,\
-    ctl:ruleRemoveById=920440,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Allow REPORT requests without Content-Type header (at least the iOS app does this)
-
-SecRule REQUEST_METHOD "@streq REPORT" \
-    "id:9003121,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    chain"
-    SecRule REQUEST_FILENAME "@contains /remote.php/dav/files/" \
-        "t:none,\
-        ctl:ruleRemoveById=920340"
-
-
-# [ Searchengine ]
-#
-# NexCloud uses a search field for filename or content queries.
-
-SecRule REQUEST_FILENAME "@contains /index.php/core/search" \
-    "id:9003125,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=attack-injection-php;ARGS:query,\
-    ctl:ruleRemoveTargetById=941000-942999;ARGS:query,\
-    ctl:ruleRemoveTargetById=932000-932999;ARGS:query,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-# [ DAV ]
-#
-# NextCloud uses DAV methods with index.php and remote.php to do many things
-# The default ones in ModSecurity are: GET HEAD POST OPTIONS
-#
-# Looking through the code, and via testing, I found these:
-#
-# File manager: PUT DELETE MOVE PROPFIND PROPPATCH
-# Calendars: REPORT
-# Others in the code or js files: PATCH MKCOL MOVE TRACE
-# Others that I added just in case, and they seem related:
-#   CHECKOUT COPY LOCK MERGE MKACTIVITY UNLOCK.
-
-SecRule REQUEST_FILENAME "@rx /(?:remote|index|public)\.php/" \
-    "id:9003130,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.allowed_methods=%{tx.allowed_methods} PUT PATCH CHECKOUT COPY DELETE LOCK MERGE MKACTIVITY MKCOL MOVE PROPFIND PROPPATCH UNLOCK REPORT TRACE jsonp'"
-
-
-# We need to allow DAV methods for sharing files, and removing shares
-# DELETE - when the share is removed
-# PUT - when setting a password / expiration time
-
-SecRule REQUEST_FILENAME "@rx /ocs/v[0-9]+\.php/apps/files_sharing/" \
-    "id:9003140,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.allowed_methods=%{tx.allowed_methods} PUT DELETE'"
-
-
-# [ Preview and Thumbnails ]
-
-SecRule REQUEST_FILENAME "@contains /index.php/core/preview.png" \
-    "id:9003150,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=932150;ARGS:file,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Filepreview for trashbin
-
-SecRule REQUEST_FILENAME "@contains /index.php/apps/files_trashbin/ajax/preview.php" \
-    "id:9003155,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=932150;ARGS:file,\
-    ctl:ruleRemoveTargetById=942190;ARGS:file,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule REQUEST_FILENAME "@rx /index\.php/(?:apps/gallery/thumbnails|logout$)" \
-    "id:9003160,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=941120;ARGS:requesttoken,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-# [ Ownnote ]
-
-SecRule REQUEST_FILENAME "@contains /index.php/apps/ownnote/" \
-    "id:9003300,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveById=941150,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-# [ Text Editor ]
-#
-# This file can save anything, and it's name could be lots of things.
-
-SecRule REQUEST_FILENAME "@contains /index.php/apps/files_texteditor/" \
-    "id:9003310,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:filecontents,\
-    ctl:ruleRemoveTargetById=921110-921160;ARGS:filecontents,\
-    ctl:ruleRemoveTargetById=932150;ARGS:filename,\
-    ctl:ruleRemoveTargetById=920370-920390;ARGS:filecontents,\
-    ctl:ruleRemoveTargetById=920370-920390;ARGS_COMBINED_SIZE,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-# [ Address Book ]
-#
-# Allow the data type 'text/vcard'
-
-SecRule REQUEST_FILENAME "@contains /remote.php/dav/addressbooks/" \
-    "id:9003320,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.allowed_request_content_type=%{tx.allowed_request_content_type} |text/vcard|'"
-
-# Allow modifying contacts via the web interface
-SecRule REQUEST_METHOD "@streq PUT" \
-    "id:9003321,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    chain"
-    SecRule REQUEST_FILENAME "@contains /remote.php/dav/addressbooks/" \
-        "t:none,\
-        ctl:ruleRemoveById=200002"
-
-
-# [ Calendar ]
-#
-# Allow the data type 'text/calendar'
-
-SecRule REQUEST_FILENAME "@contains /remote.php/dav/calendars/" \
-    "id:9003330,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.allowed_request_content_type=%{tx.allowed_request_content_type} |text/calendar|'"
-
-# Allow modifying calendar events via the web interface
-SecRule REQUEST_METHOD "@streq PUT" \
-    "id:9003331,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    chain"
-    SecRule REQUEST_FILENAME "@contains /remote.php/dav/calendars/" \
-        "t:none,\
-        ctl:ruleRemoveById=200002"
-
-
-# [ Notes ]
-#
-# We want to allow a lot of things as the user is
-# allowed to note on anything.
-
-SecRule REQUEST_FILENAME "@contains /index.php/apps/notes/" \
-    "id:9003340,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveByTag=attack-injection-php,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-# [ Bookmarks ]
-#
-# Allow urls in data.
-
-SecRule REQUEST_FILENAME "@contains /index.php/apps/bookmarks/" \
-    "id:9003350,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveById=931130,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-#
-# [ Login forms ]
-#
-
-# This removes checks on the 'password' and related fields:
-
-# User login password.
-
-SecRule REQUEST_FILENAME "@contains /index.php/login" \
-    "id:9003400,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=941100;ARGS:requesttoken,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:password,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Reset password.
-
-SecRule REQUEST_FILENAME "@endsWith /index.php/login" \
-    "id:9003410,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:action "@streq resetpass" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:action "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1-text,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass2"
-
-# Change Password and Setting up a new user/password
-
-SecRule REQUEST_FILENAME "@endsWith /index.php/settings/users" \
-    "id:9003500,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:newuserpassword,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:password,\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-SecMarker "END-NEXTCLOUD-ADMIN"
-
-SecMarker "END-NEXTCLOUD"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9004-DOKUWIKI-EXCLUSION-RULES.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9004-DOKUWIKI-EXCLUSION-RULES.conf
deleted file mode 100644
index 048d421f3a..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9004-DOKUWIKI-EXCLUSION-RULES.conf
+++ /dev/null
@@ -1,273 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-#
-# ------------------------------------------------------------------------
-
-# These exclusions remedy false positives in a default Dokuwiki install.
-# The exclusions are only active if crs_exclusions_dokuwiki=1 is set.
-# See rule 900130 in crs-setup.conf.example for instructions.
-#
-# Note, if you want to relax the upload restrictions,
-# see rule 900240. For Dokuwiki you can limit the exception
-# to the ajax.php file:
-#
-# SecRule REQUEST_FILENAME "@endsWith /lib/exe/ajax.php" ...
-#
-
-
-SecRule &TX:crs_exclusions_dokuwiki|TX:crs_exclusions_dokuwiki "@eq 0" \
-    "id:9004000,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-DOKUWIKI"
-
-SecRule &TX:crs_exclusions_dokuwiki|TX:crs_exclusions_dokuwiki "@eq 0" \
-    "id:9004001,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-DOKUWIKI"
-
-
-#
-# -=[ Dokuwiki Front-End ]=-
-#
-# Note on files specified:
-# /doku.php: shows pages, saves, edits, admin
-# /lib/exe/ajax.php: autosave, uploads
-#
-# Allow pages to be edited, and ajax to save drafts.
-#
-# ARGS 'wikitext', 'suffix', and 'prefix' must allow the same things,
-# as the page (in part or whole) is passed via 'suffix/prefix' at times.
-#  attack-protocol (921110-921160/920230): Allows odd characters on the page.
-#  CRS: (still need attack-protocol specified.)
-#  attack-injection-php (930000-933999): Allows code on page.
-#  attack-sqli (940000-942999): Allows SQL expressions on page.
-#
-# Others:
-#  930100-930110;REQUEST_BODY: if there's  a /../ in the text.
-#
-# ARGS:summary (the text in the 'summary' box on page edits.):
-#  Allowing 930120-930130 lets user save summaries with
-#  system file names. This should not be needed in normal
-#  use. But leaving a note here of how to allow in rule below:
-#    ctl:ruleRemoveTargetById=930120;ARGS:summary
-#    ctl:ruleRemoveTargetById=930130;ARGS:summary
-#
-# Also, can't specify:
-#   SecRule ARGS:do "@streq edit" \
-#   SecRule REQUEST_FILENAME "@endsWith /lib/exe/ajax.php"\
-# because at times the do=edit can get dropped, so if we use
-# above the edit will get blocked when the page is saved.
-
-# Hint: those using .htaccess rewrites can remove/replace
-# this first 'SecRule...' line with 'SecAction \' (unsupported).
-
-SecRule REQUEST_FILENAME "@rx (?:/doku.php|/lib/exe/ajax.php)$" \
-    "id:9004100,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule REQUEST_METHOD "@streq POST" \
-        "t:none,\
-        chain"
-        SecRule REQUEST_COOKIES:/S?DW[a-f0-9]+/ "@rx ^[%a-zA-Z0-9_-]+" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=attack-protocol;ARGS:wikitext,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:wikitext,\
-            ctl:ruleRemoveTargetByTag=attack-protocol;ARGS:suffix,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:suffix,\
-            ctl:ruleRemoveTargetByTag=attack-protocol;ARGS:prefix,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:prefix,\
-            ctl:ruleRemoveTargetById=930100-930110;REQUEST_BODY"
-
-
-# Allow it to upload files. But check for cookies just to make sure.
-
-SecRule REQUEST_FILENAME "@endsWith /lib/exe/ajax.php" \
-    "id:9004110,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    noauditlog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule REQUEST_METHOD "@streq POST" \
-        "t:none,\
-        chain"
-        SecRule REQUEST_COOKIES:/S?DW[a-f0-9]+/ "@rx ^[%a-zA-Z0-9_-]+" \
-            "t:none,\
-            setvar:'tx.allowed_request_content_type=%{tx.allowed_request_content_type}|application/octet-stream'"
-
-
-# Show the index, even if things like "postgresql" or other things show up.
-
-SecRule REQUEST_FILENAME "@endsWith /doku.php" \
-    "id:9004130,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    noauditlog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:do "@streq index" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:do "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveById=951240,\
-            ctl:ruleRemoveById=953110"
-
-
-#
-# [ Login form ]
-#
-
-# Turn off checks for password.
-
-SecRule REQUEST_FILENAME "@endsWith /doku.php" \
-    "id:9004200,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    noauditlog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:do "@streq login" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:do "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:p"
-
-
-#
-# [ Admin Area ]
-#
-# Skip this section for performance unless do=admin is in request
-
-SecRule ARGS:do "!@streq admin" \
-    "id:9004300,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-DOKUWIKI-ADMIN"
-
-SecRule ARGS:do "!@streq admin" \
-    "id:9004310,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-DOKUWIKI-ADMIN"
-
-
-# [ Reset password ]
-#
-# Turn off checks for pass1, pass1-text, pass2
-
-SecRule REQUEST_FILENAME "@endsWith /doku.php" \
-    "id:9004320,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    noauditlog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:do "@streq login" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:do "@eq 1" \
-            "t:none,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass1-text,\
-            ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:pass2"
-
-
-# [ Save config ]
-#
-# Allow the config to be saved:
-# 942200:  If the user adds "..." to tagline: ARGS:config[tagline]
-# 942430:  if ARGS:config[hidepages] has pages looking like sql statements
-# 942430,942440:  "--- //[[@MAIL@|@NAME@]] @DATE@//"]" in ARGS:config[signature]
-
-SecRule REQUEST_FILENAME "@endsWith /doku.php" \
-    "id:9004370,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    noauditlog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:page "@streq config" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:page "@eq 1" \
-            "t:none,\
-            chain"
-            SecRule REQUEST_METHOD "@streq POST" \
-                "t:none,\
-                chain"
-                SecRule REQUEST_COOKIES:/S?DW[a-f0-9]+/ "@rx ^[%a-zA-Z0-9_-]+" \
-                    "t:none,\
-                    ctl:ruleRemoveTargetById=920230;ARGS:config[dformat],\
-                    ctl:ruleRemoveTargetById=942200;ARGS:config[tagline],\
-                    ctl:ruleRemoveTargetById=942430;ARGS:config[hidepages],\
-                    ctl:ruleRemoveTargetById=942430-942440;ARGS:config[signature]"
-
-
-# When the config loads after a save, it gets blocked because
-#   it has 'readdir' and lines that look like sql
-# 942430,942440:  "--- //[[@MAIL@|@NAME@]] @DATE@//"]" in ARGS:config[signature]
-# 951240,953110:  When the page reloads, it triggers
-#   postgres and php code disclosure rules.
-
-SecRule REQUEST_FILENAME "@endsWith /doku.php" \
-    "id:9004380,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    noauditlog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule ARGS:page "@streq config" \
-        "t:none,\
-        chain"
-        SecRule &ARGS:page "@eq 1" \
-            "t:none,\
-            chain"
-            SecRule REQUEST_COOKIES:/S?DW[a-f0-9]+/ "@rx ^[%a-zA-Z0-9_-]+" \
-                "t:none,\
-                ctl:ruleRemoveById=951240,\
-                ctl:ruleRemoveById=953110"
-
-
-# End [ Admin Area ]
-
-SecMarker "END-DOKUWIKI-ADMIN"
-
-SecMarker "END-DOKUWIKI"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9005-CPANEL-EXCLUSION-RULES.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9005-CPANEL-EXCLUSION-RULES.conf
deleted file mode 100644
index 5bc2803273..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9005-CPANEL-EXCLUSION-RULES.conf
+++ /dev/null
@@ -1,64 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-# These exclusions remedy false positives in a default cPanel environment.
-# The exclusions are only active if crs_exclusions_cpanel=1 is set.
-# See rule 900130 in crs-setup.conf.example for instructions.
-
-
-SecRule &TX:crs_exclusions_cpanel|TX:crs_exclusions_cpanel "@eq 0" \
-    "id:9005000,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-CPANEL"
-
-SecRule &TX:crs_exclusions_cpanel|TX:crs_exclusions_cpanel "@eq 0" \
-    "id:9005001,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-CPANEL"
-
-
-#
-# [ cPanel whm-server-status ]
-#
-# Cpanel's WHM auto generates requests to /whm-server-status from
-# 127.0.0.1 (triggers rule 920280, non-blocking, log only) Once every 5 minutes.
-# These false positives have a low impact (logged, non-blocking) to a large number of users (all cPanel admins).
-#
-
-#
-# Rule to allow cPanel whm-server-status requests from localhost without log entry.
-#
-SecRule REQUEST_LINE "@rx ^GET /whm-server-status(?:/|/\?auto)? HTTP/[12]\.[01]$" \
-    "id:9005100,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-apache',\
-    tag:'attack-generic',\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule REMOTE_ADDR "@ipMatch 127.0.0.1,::1" \
-        "t:none,\
-        ctl:ruleRemoveById=920280,\
-        ctl:ruleRemoveById=920350"
-
-
-SecMarker "END-CPANEL"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9006-XENFORO-EXCLUSION-RULES.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9006-XENFORO-EXCLUSION-RULES.conf
deleted file mode 100644
index 969caaaf3e..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-903.9006-XENFORO-EXCLUSION-RULES.conf
+++ /dev/null
@@ -1,587 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-# These exclusions remedy false positives in a default XenForo install.
-# The exclusions are only active if crs_exclusions_xenforo=1 is set.
-# See rule 900130 in crs-setup.conf.example for instructions.
-
-SecRule &TX:crs_exclusions_xenforo|TX:crs_exclusions_xenforo "@eq 0" \
-    "id:9006000,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-XENFORO"
-
-SecRule &TX:crs_exclusions_xenforo|TX:crs_exclusions_xenforo "@eq 0" \
-    "id:9006001,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-XENFORO"
-
-
-#
-# -=[ XenForo Front-End ]=-
-#
-
-# Proxy for images and remote content embedded in forum posts
-# GET /xf/proxy.php?image=https://example.com/some.jpg&hash=foo
-# GET /xf/proxy.php?link=https://example.com&hash=foo
-# POST /xf/proxy.php, body: referrer=...
-SecRule REQUEST_FILENAME "@endsWith /proxy.php" \
-    "id:9006100,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:image,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:link,\
-    ctl:ruleRemoveTargetById=931130;ARGS:referrer,\
-    ctl:ruleRemoveTargetById=942230;ARGS:referrer,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Store drafts for private message, forum post, thread reply
-# POST /xf/conversations/draft
-# POST /xf/conversations/convo-title.12345/draft
-# POST /xf/forums/forum-title.12345/draft
-# POST /xf/threads/thread-title-%E2%98%85.12345/draft
-#
-# attachment_hash_combined example:
-# {"type":"post","context":{"post_id":12345},"hash":"0123456789abcdef..."}
-SecRule REQUEST_FILENAME "@rx /(?:conversations|(?:conversations|forums|threads)/.*)/draft$" \
-    "id:9006110,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=931130;ARGS:href,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:title,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message_html,\
-    ctl:ruleRemoveTargetById=942200;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942260;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942340;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942370;ARGS:attachment_hash_combined,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Send PM, edit post, create thread, reply to thread
-# POST /xf/conversations/add
-# POST /xf/conversations/add-preview
-# POST /xf/conversations/messages/1463947/edit
-# POST /xf/posts/12345/edit
-# POST /xf/posts/12345/preview
-# POST /xf/conversations/convo-title.12345/add-reply
-# POST /xf/threads/thread-title.12345/add-reply
-# POST /xf/threads/thread-title.12345/reply-preview
-# POST /xf/forums/forum-title.12345/post-thread
-# POST /xf/forums/blogs/post-thread
-# POST /xf/forums/forum-title.12345/thread-preview
-SecRule REQUEST_FILENAME "@rx /(?:conversations/add(?:-preview)?|conversations/messages/\d+/edit|posts/\d+/(?:edit|preview)|(?:conversations|threads)/.*\.\d+/(?:add-reply|reply-preview)|forums/.*/(?:post-thread|thread-preview))$" \
-    "id:9006120,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:title,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message_html,\
-    ctl:ruleRemoveTargetById=942200;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942260;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942340;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942370;ARGS:attachment_hash_combined,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Quote
-# POST /xf/posts/12345/quote
-SecRule REQUEST_FILENAME "@rx /posts/\d+/quote$" \
-    "id:9006130,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:quoteHtml,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Multi quote
-# POST /xf/conversations/convo-title.12345/multi-quote
-# POST /xf/threads/thread-title.12345/multi-quote
-# quotes={"12345":["quote-html"]}
-SecRule REQUEST_FILENAME "@rx /(?:conversations|threads)/.*\.\d+/multi-quote$" \
-    "id:9006140,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:quotes,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[0][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[1][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[2][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[3][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[4][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[5][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[6][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[7][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[8][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:insert[9][value],\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Delete thread
-# POST /xf/threads/thread-title.12345/delete
-SecRule REQUEST_FILENAME "@rx /threads/.*\.\d+/delete$" \
-    "id:9006150,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=942130;ARGS:starter_alert_reason,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Feature thread
-# POST /xf/threads/thread-title.12345/feature-edit
-SecRule REQUEST_FILENAME "@rx /threads/.*\.\d+/feature-edit$" \
-    "id:9006155,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:feature[feature_excerpt]"
-
-# Inline moderate thread
-# POST /xf/inline-mod/
-SecRule REQUEST_FILENAME "@endsWith /inline-mod/" \
-    "id:9006160,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:author_alert_reason,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Warn member
-# POST /xf/members/name.12345/warn
-# POST /xf/posts/12345/warn
-SecRule REQUEST_FILENAME "@rx /(?:members/.*\.\d+|posts/\d+)/warn$" \
-    "id:9006170,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:conversation_message,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:notes,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Editor
-SecRule REQUEST_URI "@endsWith /index.php?editor/to-html" \
-    "id:9006200,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:bb_code,\
-    ctl:ruleRemoveTargetById=942200;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942260;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942340;ARGS:attachment_hash_combined,\
-    ctl:ruleRemoveTargetById=942370;ARGS:attachment_hash_combined,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Editor
-SecRule REQUEST_URI "@endsWith /index.php?editor/to-bb-code" \
-    "id:9006210,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:html,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Post attachment
-# POST /xf/account/avatar
-# POST /xf/attachments/upload?type=post&context[thread_id]=12345&hash=foo
-SecRule REQUEST_FILENAME "@rx /(?:account/avatar|attachments/upload)$" \
-    "id:9006220,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveById=200003,\
-    ctl:ruleRemoveTargetById=942220;ARGS:flowChunkSize,\
-    ctl:ruleRemoveTargetById=942440;ARGS:flowIdentifier,\
-    ctl:ruleRemoveTargetById=942440;ARGS:flowFilename,\
-    ctl:ruleRemoveTargetById=942440;ARGS:flowRelativePath,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Media
-# POST /xf/index.php?editor/media
-SecRule REQUEST_URI "@endsWith /index.php?editor/media" \
-    "id:9006230,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=931130;ARGS:url,\
-    ctl:ruleRemoveTargetById=942130;ARGS:url,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Emoji
-# GET /xf/index.php?misc/find-emoji&q=(%0A%0A
-SecRule REQUEST_URI "@rx /index\.php\?misc/find-emoji&q=" \
-    "id:9006240,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=921151;ARGS:q,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Login
-# POST /xf/login/login
-SecRule REQUEST_FILENAME "@endsWith /login/login" \
-    "id:9006300,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:password,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Register account
-# POST /xf/register/register
-# The password is passed in a variable-name form parameter. We don't
-# want to exclude all parameters completely as this would cause an
-# unacceptable bypass. So, we exclude only commonly hit rules.
-SecRule REQUEST_FILENAME "@endsWith /register/register" \
-    "id:9006310,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=942130;ARGS,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:reg_key,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Confirm account
-# GET /xf/account-confirmation/name.12345/email?c=foo
-SecRule REQUEST_FILENAME "@rx /account-confirmation/.*\.\d+/email$" \
-    "id:9006315,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:c"
-
-# Edit account
-# POST /xf/account/account-details
-SecRule REQUEST_FILENAME "@endsWith /account/account-details" \
-    "id:9006320,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=931130;ARGS:custom_fields[picture],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:about_html,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Lost password
-# POST /xf/lost-password/user-name.12345/confirm?c=foo
-SecRule REQUEST_FILENAME "@rx /lost-password/.*\.\d+/confirm$" \
-    "id:9006330,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:c,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Set forum signature
-# POST /xf/account/signature
-SecRule REQUEST_FILENAME "@endsWith /account/signature" \
-    "id:9006340,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:signature_html,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Search
-# POST /xf/search/search
-SecRule REQUEST_FILENAME "@endsWith /search/search" \
-    "id:9006400,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:keywords,\
-    ctl:ruleRemoveTargetById=942200;ARGS:constraints,\
-    ctl:ruleRemoveTargetById=942260;ARGS:constraints,\
-    ctl:ruleRemoveTargetById=942340;ARGS:constraints,\
-    ctl:ruleRemoveTargetById=942370;ARGS:constraints,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Search within thread
-# GET /xf/threads/foo.12345/page12?highlight=foo
-SecRule REQUEST_FILENAME "@rx /threads/.*\.\d+/(?:page\d+)?$" \
-    "id:9006410,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:highlight,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Search within search result
-# GET /xf/search/12345/?q=foo
-SecRule REQUEST_FILENAME "@rx /search/\d+/$" \
-    "id:9006420,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:q,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Contact form
-# POST /xf/misc/contact
-SecRule REQUEST_FILENAME "@endsWith /misc/contact" \
-    "id:9006500,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:subject,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Report post
-# POST /xf/posts/12345/report
-SecRule REQUEST_FILENAME "@rx /posts/\d+/report$" \
-    "id:9006510,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Alternate thread view route
-# /xf/index.php?threads/title-having-some-sql.12345/
-#
-# Especially threads with the HAVING sql keyword are FP prone.
-# This rule has some chains to narrow down the exclusion,
-# making it harder for an attacker to abuse the ARGS_NAMES
-# exclusion on other endpoints.
-SecRule REQUEST_FILENAME "@endsWith /index.php" \
-    "id:9006600,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule REQUEST_METHOD "@streq GET" \
-        "t:none,\
-        chain"
-        SecRule &ARGS "@eq 1" \
-            "t:none,\
-            chain"
-            SecRule REQUEST_URI "@rx /index\.php\?threads/.*\.\d+/$" \
-                "t:none,\
-                ctl:ruleRemoveTargetById=942100;ARGS_NAMES,\
-                ctl:ruleRemoveTargetById=942230;ARGS_NAMES"
-
-# Browser fingerprint (DBTech security extension)
-# May Contain various javascript/XSS false positives
-SecRule REQUEST_URI "@endsWith /index.php?dbtech-security/fingerprint" \
-    "id:9006700,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:components[14][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:components[15][value],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:components[16][value],\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Get location info
-SecRule REQUEST_FILENAME "@endsWith /misc/location-info" \
-    "id:9006710,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:location,\
-    ver:'OWASP_CRS/3.3.5'"
-
-#
-# -=[ XenForo Global Exclusions ]=-
-#
-
-# _xfRedirect, _xfRequestUri can appear on various endpoints.
-# Cookies can appear on all endpoints.
-
-SecAction \
-    "id:9006800,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=931120;ARGS:_xfRedirect,\
-    ctl:ruleRemoveTargetById=941150;ARGS:_xfRedirect,\
-    ctl:ruleRemoveTargetById=942230;ARGS:_xfRedirect,\
-    ctl:ruleRemoveTargetById=942260;ARGS:_xfRedirect,\
-    ctl:ruleRemoveTargetById=931120;ARGS:_xfRequestUri,\
-    ctl:ruleRemoveTargetById=941150;ARGS:_xfRequestUri,\
-    ctl:ruleRemoveTargetById=942130;ARGS:_xfRequestUri,\
-    ctl:ruleRemoveTargetById=942230;ARGS:_xfRequestUri,\
-    ctl:ruleRemoveTargetById=942260;ARGS:_xfRequestUri,\
-    ctl:ruleRemoveTargetById=942100;REQUEST_COOKIES:xf_csrf,\
-    ctl:ruleRemoveTargetById=942210;REQUEST_COOKIES:xf_csrf,\
-    ctl:ruleRemoveTargetById=942440;REQUEST_COOKIES:xf_csrf,\
-    ctl:ruleRemoveTargetById=942100;REQUEST_COOKIES:xf_emoji_usage,\
-    ctl:ruleRemoveTargetById=942150;REQUEST_COOKIES:xf_emoji_usage,\
-    ctl:ruleRemoveTargetById=942410;REQUEST_COOKIES:xf_emoji_usage,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;REQUEST_COOKIES:xf_ls,\
-    ctl:ruleRemoveTargetById=942100;REQUEST_COOKIES:xf_session,\
-    ctl:ruleRemoveTargetById=942100;REQUEST_COOKIES:xf_user,\
-    ver:'OWASP_CRS/3.3.5'"
-
-#
-# -=[ XenForo Administration Back-End ]=-
-#
-
-# Skip this section for performance unless requested file is admin.php
-
-SecRule REQUEST_FILENAME "!@endsWith /admin.php" \
-    "id:9006900,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-XENFORO-ADMIN"
-
-SecRule REQUEST_FILENAME "!@endsWith /admin.php" \
-    "id:9006901,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-XENFORO-ADMIN"
-
-# Admin edit user
-# POST /xf/admin.php?users/the-user-name.12345/edit
-SecRule REQUEST_URI "@rx /admin\.php\?users/.*\.\d+/edit$" \
-    "id:9006910,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:profile[about],\
-    ctl:ruleRemoveTargetById=931130;ARGS:profile[website],\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Admin save user
-# POST /xf/admin.php?users/the-user-name.12345/save
-# Runs in phase 1 to be able to remove rule 200003.
-SecRule REQUEST_URI "@rx /admin\.php\?users/.*\.\d+/save$" \
-    "id:9006920,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveById=200003,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:custom_fields[occupation],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:custom_fields[personal_quote],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:profile[about],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:profile[signature],\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:custom_fields[sexuality],\
-    ctl:ruleRemoveTargetById=931130;ARGS:custom_fields[picture],\
-    ctl:ruleRemoveTargetById=931130;ARGS:profile[website],\
-    ver:'OWASP_CRS/3.3.5'"
-
-
-# Admin edit forum notice
-# POST /xf/admin.php?notices/0/save
-# POST /xf/admin.php?notices/forum-name.12345/save
-SecRule REQUEST_URI "@rx /admin\.php\?notices/(?:.*\.)?\d+/save$" \
-    "id:9006930,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:message,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:title,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Admin batch thread update
-# POST /xf/admin.php?threads/batch-update/action
-SecRule REQUEST_URI "@rx /admin\.php\?(?:threads|users)/batch-update/action$" \
-    "id:9006940,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=942200;ARGS:criteria,\
-    ctl:ruleRemoveTargetById=942260;ARGS:criteria,\
-    ctl:ruleRemoveTargetById=942330;ARGS:criteria,\
-    ctl:ruleRemoveTargetById=942340;ARGS:criteria,\
-    ctl:ruleRemoveTargetById=942370;ARGS:criteria,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Edit forum theme
-# POST /xf/admin.php?styles/title.1234/style-properties/group&group=basic
-SecRule REQUEST_URI "@rx /admin\.php\?styles/" \
-    "id:9006950,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetById=942200;ARGS:json,\
-    ctl:ruleRemoveTargetById=942260;ARGS:json,\
-    ctl:ruleRemoveTargetById=942300;ARGS:json,\
-    ctl:ruleRemoveTargetById=942330;ARGS:json,\
-    ctl:ruleRemoveTargetById=942340;ARGS:json,\
-    ctl:ruleRemoveTargetById=942370;ARGS:json,\
-    ctl:ruleRemoveTargetById=942440;ARGS:json,\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Set forum options
-# POST /xf/admin.php?options/update
-SecRule REQUEST_URI "@rx /admin\.php\?options/update" \
-    "id:9006960,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:options[boardInactiveMessage],\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Edit pages/templates
-# POST /xf/admin.php?pages/0/save
-# POST /xf/admin.php?pages/foo.12345/save
-# POST /xf/admin.php?templates/foo.1234/save
-SecRule REQUEST_URI "@rx /admin\.php\?(?:pages|templates)/.*/save" \
-    "id:9006970,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:template,\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecMarker "END-XENFORO-ADMIN"
-
-SecMarker "END-XENFORO"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-910-IP-REPUTATION.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-910-IP-REPUTATION.conf
deleted file mode 100644
index 8f22689fb6..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-910-IP-REPUTATION.conf
+++ /dev/null
@@ -1,323 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:910011,phase:1,pass,nolog,skipAfter:END-REQUEST-910-IP-REPUTATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:910012,phase:2,pass,nolog,skipAfter:END-REQUEST-910-IP-REPUTATION"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-#
-# -=[ IP Reputation Block Flag Check ]=-
-#
-# The first check we do is to see if the client IP address has already
-# been blacklisted by rules from previous requests.
-#
-# If the rule matches, it will do a skipAfter and pick up processing
-# at the end of the request phase for actual blocking.
-#
-SecRule TX:DO_REPUT_BLOCK "@eq 1" \
-    "id:910000,\
-    phase:2,\
-    block,\
-    t:none,\
-    msg:'Request from Known Malicious Client (Based on previous traffic violations)',\
-    logdata:'Previous Block Reason: %{ip.reput_block_reason}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain,\
-    skipAfter:BEGIN-REQUEST-BLOCKING-EVAL"
-    SecRule IP:REPUT_BLOCK_FLAG "@eq 1" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ GeoIP Checks ]=-
-#
-# This rule requires activating the SecGeoLookupDB directive
-# in the crs-setup.conf file and specifying
-# the list of blocked countries (tx.high_risk_country_codes).
-#
-# This rule does a GeoIP resolution on the client IP address.
-#
-SecRule TX:HIGH_RISK_COUNTRY_CODES "!@rx ^$" \
-    "id:910100,\
-    phase:2,\
-    block,\
-    t:none,\
-    msg:'Client IP is from a HIGH Risk Country Location',\
-    logdata:'%{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule TX:REAL_IP "@geoLookup" \
-        "chain"
-        SecRule GEO:COUNTRY_CODE "@within %{tx.high_risk_country_codes}" \
-            "setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-            setvar:'ip.reput_block_flag=1',\
-            setvar:'ip.reput_block_reason=%{rule.msg}',\
-            expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
-
-
-#
-# -=[ IP Reputation Checks ]=-
-#
-# ModSecurity Rules from Trustwave SpiderLabs: IP Blacklist Alert
-# Ref: http://www.modsecurity.org/projects/commercial/rules/
-#
-# This rule checks the client IP address against a list of recent IPs captured
-# from the SpiderLabs web honeypot systems (last 48 hours).
-#
-#SecRule TX:REAL_IP "@ipMatchFromFile ip_blacklist.data" \
-#    "id:910110,\
-#    phase:2,\
-#    block,\
-#    t:none,\
-#    msg:'Client IP in Trustwave SpiderLabs IP Reputation Blacklist',\
-#    tag:'application-multi',\
-#    tag:'language-multi',\
-#    tag:'platform-multi',\
-#    tag:'attack-reputation-ip',\
-#    tag:'paranoia-level/1',\
-#    severity:'CRITICAL',\
-#    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-#    setvar:'ip.reput_block_flag=1',\
-#    setvar:'ip.reput_block_reason=%{rule.msg}',\
-#    expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
-
-
-#
-# First check if we have already run an @rbl check for this IP by checking in IP collection.
-# If we have, then skip doing another check.
-#
-SecRule IP:PREVIOUS_RBL_CHECK "@eq 1" \
-    "id:910120,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-RBL-LOOKUP"
-
-#
-# Check Client IP against ProjectHoneypot's HTTP Blacklist
-# Ref: http://www.projecthoneypot.org/httpbl_api.php
-#
-# To use the blacklist, you must register for an HttpBL API Key
-# and choose the traffic types to block. See section
-# "Project Honey Pot HTTP Blacklist" in crs-setup.conf.
-#
-# Ref: https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#wiki-SecHttpBlKey
-#
-
-# Skip HttpBL checks if user has not defined one of the TX:block_* variables.
-# This prevents error "Operator error: RBL httpBl called but no key defined: set SecHttpBlKey"
-SecRule &TX:block_suspicious_ip "@eq 0" \
-    "id:910130,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    chain,\
-    skipAfter:END-RBL-CHECK"
-    SecRule &TX:block_harvester_ip "@eq 0" \
-        "chain"
-        SecRule &TX:block_spammer_ip "@eq 0" \
-            "chain"
-            SecRule &TX:block_search_ip "@eq 0"
-
-SecRule TX:REAL_IP "@rbl dnsbl.httpbl.org" \
-    "id:910140,\
-    phase:2,\
-    pass,\
-    capture,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.httpbl_msg=%{tx.0}',\
-    chain"
-    SecRule TX:httpbl_msg "@rx RBL lookup of .*?.dnsbl.httpbl.org succeeded at TX:checkip. (.*?): .*" \
-        "capture,\
-        t:none,\
-        setvar:'tx.httpbl_msg=%{tx.1}'"
-
-# The following regexs are generated based off re_operators.c
-SecRule TX:block_search_ip "@eq 1" \
-    "id:910150,\
-    phase:2,\
-    block,\
-    t:none,\
-    msg:'HTTP Blacklist match for search engine IP',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain,\
-    skipAfter:END-RBL-CHECK"
-    SecRule TX:httpbl_msg "@rx Search Engine" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'ip.reput_block_flag=1',\
-        setvar:'ip.reput_block_reason=%{rule.msg}',\
-        setvar:'ip.previous_rbl_check=1',\
-        expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}',\
-        expirevar:'ip.previous_rbl_check=86400'"
-
-SecRule TX:block_spammer_ip "@eq 1" \
-    "id:910160,\
-    phase:2,\
-    block,\
-    t:none,\
-    msg:'HTTP Blacklist match for spammer IP',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain,\
-    skipAfter:END-RBL-CHECK"
-    SecRule TX:httpbl_msg "@rx (?i)^.*? spammer .*?$" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'ip.reput_block_flag=1',\
-        setvar:'ip.reput_block_reason=%{rule.msg}',\
-        setvar:'ip.previous_rbl_check=1',\
-        expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}',\
-        expirevar:'ip.previous_rbl_check=86400'"
-
-SecRule TX:block_suspicious_ip "@eq 1" \
-    "id:910170,\
-    phase:2,\
-    block,\
-    t:none,\
-    msg:'HTTP Blacklist match for suspicious IP',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain,\
-    skipAfter:END-RBL-CHECK"
-    SecRule TX:httpbl_msg "@rx (?i)^.*? suspicious .*?$" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'ip.reput_block_flag=1',\
-        setvar:'ip.reput_block_reason=%{rule.msg}',\
-        setvar:'ip.previous_rbl_check=1',\
-        expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}',\
-        expirevar:'ip.previous_rbl_check=86400'"
-
-SecRule TX:block_harvester_ip "@eq 1" \
-    "id:910180,\
-    phase:2,\
-    block,\
-    t:none,\
-    msg:'HTTP Blacklist match for harvester IP',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain,\
-    skipAfter:END-RBL-CHECK"
-    SecRule TX:httpbl_msg "@rx (?i)^.*? harvester .*?$" \
-        "setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'ip.reput_block_flag=1',\
-        setvar:'ip.reput_block_reason=%{rule.msg}',\
-        setvar:'ip.previous_rbl_check=1',\
-        expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}',\
-        expirevar:'ip.previous_rbl_check=86400'"
-
-SecAction \
-    "id:910190,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'ip.previous_rbl_check=1',\
-    expirevar:'ip.previous_rbl_check=86400'"
-
-SecMarker "END-RBL-LOOKUP"
-
-SecMarker "END-RBL-CHECK"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:910013,phase:1,pass,nolog,skipAfter:END-REQUEST-910-IP-REPUTATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:910014,phase:2,pass,nolog,skipAfter:END-REQUEST-910-IP-REPUTATION"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:910015,phase:1,pass,nolog,skipAfter:END-REQUEST-910-IP-REPUTATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:910016,phase:2,pass,nolog,skipAfter:END-REQUEST-910-IP-REPUTATION"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:910017,phase:1,pass,nolog,skipAfter:END-REQUEST-910-IP-REPUTATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:910018,phase:2,pass,nolog,skipAfter:END-REQUEST-910-IP-REPUTATION"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-910-IP-REPUTATION"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-912-DOS-PROTECTION.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-912-DOS-PROTECTION.conf
deleted file mode 100644
index 46767c1636..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-912-DOS-PROTECTION.conf
+++ /dev/null
@@ -1,324 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# Anti-Automation rules to detect Denial of Service attacks.
-#
-# Description of mechanics:
-# When a request hits a non-static resource (TX:STATIC_EXTENSIONS), then a counter for the IP
-# address is being raised (IP:DOS_COUNTER). If the counter (IP:DOS_COUNTER) hits a limit
-# (TX:DOS_COUNTER_THRESHOLD), then a burst is identified (IP:DOS_BURST_COUNTER) and the
-# counter (IP:DOS_COUNTER) is reset. The burst counter expires within a timeout period
-# (TX:DOS_BURST_TIME_SLICE).
-# If the burst counter (IP:DOS_BURST_COUNTER) is greater equal 2, then the blocking flag
-# is being set (IP:DOS_BLOCK). The blocking flag (IP:DOS_BLOCK) expires within a timeout
-# period (TX:DOS_BLOCK_TIMEOUT). All this counting happens in phase 5.
-# There is a stricter sibling to this rule (912170) in paranoia level 2, where the
-# burst counter check (IP:DOS_BURST_COUNTER) hits at greater equal 1.
-#
-# The blocking is done in phase 1: When the blocking flag is encountered (IP:DOS_BLOCK),
-# then the request is dropped without sending a response. If this happens, then a
-# counter is # raised (IP:DOS_BLOCK_COUNTER).
-# When an IP address is blocked for the first time, then the blocking is reported in a
-# message and a flag (IP:DOS_BLOCK_FLAG) is set. This flag expires in 60 seconds.
-# When an IP address is blocked and the flag (IP:DOS_BLOCK_FLAG) is set, then the
-# blocking is not being reported (to prevent a flood of alerts). When the flag
-# (IP:DOS_BLOCK_FLAG) has expired and a new request is being blocked, then the
-# counter (IP:DOS_BLOCK_COUNTER) is being reset to 0 and the block is being treated
-# as the first block (-> alert).
-# In order to be able to display the counter (IP:DOS_BLOCK_COUNTER) and resetting
-# it at the same time, we copy the counter (IP:DOS_BLOCK_COUNTER) into a different
-# variable (TX:DOS_BLOCK_COUNTER), which is then displayed in turn.
-#
-# Variables:
-# IP:DOS_BLOCK              Flag if an IP address should be blocked
-# IP:DOS_BLOCK_COUNTER      Counter of blocked requests
-# IP:DOS_BLOCK_FLAG         Flag keeping track of alert. Flag expires after 60 seconds.
-# IP:DOS_BURST_COUNTER      Burst counter
-# IP:DOS_COUNTER            Request counter (static resources are ignored)
-# TX:DOS_BLOCK_COUNTER      Copy of IP:DOS_BLOCK_COUNTER (needed for display reasons)
-# TX:DOS_BLOCK_TIMEOUT      Period in seconds a blocked IP will be blocked
-# TX:DOS_COUNTER_THRESHOLD  Limit of requests, where a burst is identified
-# TX:DOS_BURST_TIME_SLICE   Period in seconds when we will forget a burst
-# TX:STATIC_EXTENSIONS      Paths which can be ignored with regards to DoS
-#
-# As a precondition for these rules, please set the following three variables:
-#  - TX:DOS_BLOCK_TIMEOUT
-#  - TX:DOS_COUNTER_THRESHOLD
-#  - TX:DOS_BURST_TIME_SLICE
-#
-# And make sure that TX:STATIC_EXTENSIONS is also set.
-#
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-#
-# Skip if variables defining DoS protection are not set
-#
-SecRule &TX:dos_burst_time_slice "@eq 0" \
-    "id:912100,\
-    phase:1,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain,\
-    skipAfter:END-DOS-PROTECTION-CHECKS"
-    SecRule &TX:dos_counter_threshold "@eq 0" \
-        "chain"
-        SecRule &TX:dos_block_timeout "@eq 0"
-
-SecRule &TX:dos_burst_time_slice "@eq 0" \
-    "id:912110,\
-    phase:5,\
-    pass,\
-    t:none,\
-    nolog,\
-    ver:'OWASP_CRS/3.3.5',\
-    chain,\
-    skipAfter:END-DOS-PROTECTION-CHECKS"
-    SecRule &TX:dos_counter_threshold "@eq 0" \
-        "chain"
-        SecRule &TX:dos_block_timeout "@eq 0"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:912011,phase:1,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:912012,phase:2,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-#
-# -=[ Anti-Automation / DoS Protection : Block ]=-
-#
-
-#
-# Block and track # of requests and log
-#
-SecRule IP:DOS_BLOCK "@eq 1" \
-    "id:912120,\
-    phase:1,\
-    drop,\
-    msg:'Denial of Service (DoS) attack identified from %{tx.real_ip} (%{tx.dos_block_counter} hits since last alert)',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'paranoia-level/1',\
-    tag:'attack-dos',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/210/227/469',\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule &IP:DOS_BLOCK_FLAG "@eq 0" \
-        "setvar:'ip.dos_block_counter=+1',\
-        setvar:'ip.dos_block_flag=1',\
-        setvar:'tx.dos_block_counter=%{ip.dos_block_counter}',\
-        setvar:'ip.dos_block_counter=0',\
-        expirevar:'ip.dos_block_flag=60'"
-
-
-#
-# Block and track # of requests but don't log
-#
-SecRule IP:DOS_BLOCK "@eq 1" \
-    "id:912130,\
-    phase:1,\
-    drop,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-dos',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/210/227/469',\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'ip.dos_block_counter=+1'"
-
-
-#
-# -=[ Anti-Automation / DoS Protection: Count requests ]=-
-#
-
-#
-# Skip if we have blocked the request
-#
-SecRule IP:DOS_BLOCK "@eq 1" \
-    "id:912140,\
-    phase:5,\
-    pass,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-dos',\
-    ver:'OWASP_CRS/3.3.5',\
-    skipAfter:END-DOS-PROTECTION-CHECKS"
-
-
-#
-# DOS Counter: Count the number of requests to non-static resources
-#
-SecRule REQUEST_BASENAME "@rx .*?(\.[a-z0-9]{1,10})?$" \
-    "id:912150,\
-    phase:5,\
-    pass,\
-    capture,\
-    t:none,t:lowercase,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-dos',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/210/227/469',\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.extension=/%{TX.1}/',\
-    chain"
-    SecRule TX:EXTENSION "!@within %{tx.static_extensions}" \
-        "setvar:'ip.dos_counter=+1'"
-
-
-#
-# Check DOS Counter
-# If the request count is greater than or equal to user settings,
-# we raise the burst counter. This happens via two separate rules:
-# - 912160: raise from 0 to 1
-# - 912161: raise from 1 to 2
-#
-# This approach with two rules avoids raising the burst counter
-# from 0 to 2 via two concurrent requests. We do not raise the
-# burst counter beyond 2.
-#
-#
-SecRule IP:DOS_COUNTER "@ge %{tx.dos_counter_threshold}" \
-    "id:912160,\
-    phase:5,\
-    pass,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-dos',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/210/227/469',\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule &IP:DOS_BURST_COUNTER "@eq 0" \
-        "setvar:'ip.dos_burst_counter=1',\
-        setvar:'!ip.dos_counter',\
-        expirevar:'ip.dos_burst_counter=%{tx.dos_burst_time_slice}'"
-
-
-SecRule IP:DOS_COUNTER "@ge %{tx.dos_counter_threshold}" \
-    "id:912161,\
-    phase:5,\
-    pass,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-dos',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/210/227/469',\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule &IP:DOS_BURST_COUNTER "@ge 1" \
-        "setvar:'ip.dos_burst_counter=2',\
-        setvar:'!ip.dos_counter',\
-        expirevar:'ip.dos_burst_counter=%{tx.dos_burst_time_slice}'"
-
-
-#
-# Check DOS Burst Counter and set Block
-# Check the burst counter - if greater than or equal to 2, then we set the IP
-# block variable for a given expiry and issue an alert.
-#
-SecRule IP:DOS_BURST_COUNTER "@ge 2" \
-    "id:912170,\
-    phase:5,\
-    pass,\
-    t:none,\
-    log,\
-    msg:'Potential Denial of Service (DoS) Attack from %{tx.real_ip} - # of Request Bursts: %{ip.dos_burst_counter}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'paranoia-level/1',\
-    tag:'attack-dos',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/210/227/469',\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'ip.dos_block=1',\
-    expirevar:'ip.dos_block=%{tx.dos_block_timeout}'"
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:912013,phase:1,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:912014,phase:2,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:912019,phase:5,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-#
-# Check DOS Burst Counter and set Block
-# Check the burst counter - if greater than or equal to 1, then we set the IP
-# block variable for a given expiry and issue an alert.
-#
-# This is a stricter sibling of rule 912170.
-#
-SecRule IP:DOS_BURST_COUNTER "@ge 1" \
-    "id:912171,\
-    phase:5,\
-    pass,\
-    t:none,\
-    log,\
-    msg:'Potential Denial of Service (DoS) Attack from %{tx.real_ip} - # of Request Bursts: %{ip.dos_burst_counter}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-dos',\
-    tag:'paranoia-level/2',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/210/227/469',\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'ip.dos_block=1',\
-    expirevar:'ip.dos_block=%{tx.dos_block_timeout}'"
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:912015,phase:1,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:912016,phase:2,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:912017,phase:1,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:912018,phase:2,pass,nolog,skipAfter:END-REQUEST-912-DOS-PROTECTION"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-912-DOS-PROTECTION"
-
-SecMarker "END-DOS-PROTECTION-CHECKS"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-913-SCANNER-DETECTION.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-913-SCANNER-DETECTION.conf
deleted file mode 100644
index 6e12d0866a..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-913-SCANNER-DETECTION.conf
+++ /dev/null
@@ -1,199 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:913011,phase:1,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:913012,phase:2,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-#
-# -=[ Vulnerability Scanner Checks ]=-
-#
-# These rules inspect the default User-Agent and Header values sent by
-# various commercial and open source vuln scanners.
-#
-# The following rules contain User-Agent lists:
-# 913100 - security scanners (data file scanners-user-agents.data)
-# 913101 - scripting/generic HTTP clients (data file scripting-user-agents.data)
-# 913102 - web crawlers/bots (data file crawlers-user-agents.data)
-#
-SecRule REQUEST_HEADERS:User-Agent "@pmFromFile scanners-user-agents.data" \
-    "id:913100,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:lowercase,\
-    msg:'Found User-Agent associated with security scanner',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-scanner',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/224/541/310',\
-    tag:'PCI/6.5.10',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-    setvar:'ip.reput_block_flag=1',\
-    setvar:'ip.reput_block_reason=%{rule.msg}',\
-    expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
-
-SecRule REQUEST_HEADERS_NAMES|REQUEST_HEADERS "@pmFromFile scanners-headers.data" \
-    "id:913110,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:lowercase,\
-    msg:'Found request header associated with security scanner',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-scanner',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/224/541/310',\
-    tag:'PCI/6.5.10',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-    setvar:'ip.reput_block_flag=1',\
-    setvar:'ip.reput_block_reason=%{rule.msg}',\
-    expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
-
-
-
-SecRule REQUEST_FILENAME|ARGS "@pmFromFile scanners-urls.data" \
-    "id:913120,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:lowercase,\
-    msg:'Found request filename/argument associated with security scanner',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-scanner',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/224/541/310',\
-    tag:'PCI/6.5.10',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-    setvar:'ip.reput_block_flag=1',\
-    setvar:'ip.reput_block_reason=%{rule.msg}',\
-    expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:913013,phase:1,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:913014,phase:2,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-#
-# -=[ Scripting/Generic User-Agents ]=-
-#
-# This rule detects user-agents associated with various HTTP client libraries
-# and scripting languages. Detection suggests attempted access by some
-# automated tool.
-#
-# This rule is a sibling of rule 913100.
-#
-SecRule REQUEST_HEADERS:User-Agent "@pmFromFile scripting-user-agents.data" \
-    "id:913101,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:lowercase,\
-    msg:'Found User-Agent associated with scripting/generic HTTP client',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-scripting',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/224/541/310',\
-    tag:'PCI/6.5.10',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}',\
-    setvar:'ip.reput_block_flag=1',\
-    setvar:'ip.reput_block_reason=%{rule.msg}',\
-    expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
-
-
-
-#
-# -=[ Crawler User-Agents ]=-
-#
-# This rule detects user-agents associated with various crawlers, SEO tools,
-# and bots, which have been reported to potentially misbehave.
-# These crawlers can have legitimate uses when used with authorization.
-#
-# This rule is a sibling of rule 913100.
-#
-SecRule REQUEST_HEADERS:User-Agent "@pmFromFile crawlers-user-agents.data" \
-    "id:913102,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:lowercase,\
-    msg:'Found User-Agent associated with web crawler/bot',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-crawler',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/224/541/310',\
-    tag:'PCI/6.5.10',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}',\
-    setvar:'ip.reput_block_flag=1',\
-    setvar:'ip.reput_block_reason=%{rule.msg}',\
-    expirevar:'ip.reput_block_flag=%{tx.reput_block_duration}'"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:913015,phase:1,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:913016,phase:2,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:913017,phase:1,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:913018,phase:2,pass,nolog,skipAfter:END-REQUEST-913-SCANNER-DETECTION"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-913-SCANNER-DETECTION"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-930-APPLICATION-ATTACK-LFI.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-930-APPLICATION-ATTACK-LFI.conf
deleted file mode 100644
index 986657ce96..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-930-APPLICATION-ATTACK-LFI.conf
+++ /dev/null
@@ -1,156 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:930011,phase:1,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:930012,phase:2,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-#
-# -=[ Directory Traversal Attacks ]=-
-#
-# Ref: https://github.com/wireghoul/dotdotpwn
-#
-# [ Encoded /../ Payloads ]
-#
-SecRule REQUEST_URI_RAW|ARGS|REQUEST_HEADERS|!REQUEST_HEADERS:Referer|XML:/* "@rx (?i)(?:\x5c|(?:%(?:c(?:0%(?:[2aq]f|5c|9v)|1%(?:[19p]c|8s|af))|2(?:5(?:c(?:0%25af|1%259c)|2f|5c)|%46|f)|(?:(?:f(?:8%8)?0%8|e)0%80%a|bg%q)f|%3(?:2(?:%(?:%6|4)6|F)|5%%63)|u(?:221[56]|002f|EFC8|F025)|1u|5c)|0x(?:2f|5c)|\/))(?:%(?:(?:f(?:(?:c%80|8)%8)?0%8|e)0%80%ae|2(?:(?:5(?:c0%25a|2))?e|%45)|u(?:(?:002|ff0)e|2024)|%32(?:%(?:%6|4)5|E)|c0(?:%[256aef]e|\.))|\.(?:%0[01]|\?)?|\?\.?|0x2e){2}(?:\x5c|(?:%(?:c(?:0%(?:[2aq]f|5c|9v)|1%(?:[19p]c|8s|af))|2(?:5(?:c(?:0%25af|1%259c)|2f|5c)|%46|f)|(?:(?:f(?:8%8)?0%8|e)0%80%a|bg%q)f|%3(?:2(?:%(?:%6|4)6|F)|5%%63)|u(?:221[56]|002f|EFC8|F025)|1u|5c)|0x(?:2f|5c)|\/))" \
-    "id:930100,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Path Traversal Attack (/../)',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-lfi',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/255/153/126',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}'"
-
-#
-# [ Decoded /../ Payloads ]
-#
-SecRule REQUEST_URI|ARGS|REQUEST_HEADERS|!REQUEST_HEADERS:Referer|XML:/* "@rx (?:^|[\\/])\.\.(?:[\\/]|$)" \
-    "id:930110,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,t:removeNulls,t:cmdLine,\
-    msg:'Path Traversal Attack (/../)',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-lfi',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/255/153/126',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    multiMatch,\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}'"
-
-#
-# -=[ OS File Access ]=-
-#
-# Ref: https://github.com/lightos/Panoptic/blob/master/cases.xml
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@pmFromFile lfi-os-files.data" \
-    "id:930120,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,t:normalizePathWin,t:lowercase,\
-    msg:'OS File Access Attempt',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-lfi',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/255/153/126',\
-    tag:'PCI/6.5.4',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-#
-# -=[ Restricted File Access ]=-
-#
-# Detects attempts to retrieve application source code, metadata,
-# credentials and version control history possibly reachable in a web root.
-#
-SecRule REQUEST_FILENAME "@pmFromFile restricted-files.data" \
-    "id:930130,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,t:normalizePathWin,t:lowercase,\
-    msg:'Restricted File Access Attempt',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-lfi',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/255/153/126',\
-    tag:'PCI/6.5.4',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:930013,phase:1,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:930014,phase:2,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:930015,phase:1,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:930016,phase:2,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:930017,phase:1,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:930018,phase:2,pass,nolog,skipAfter:END-REQUEST-930-APPLICATION-ATTACK-LFI"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-930-APPLICATION-ATTACK-LFI"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-931-APPLICATION-ATTACK-RFI.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-931-APPLICATION-ATTACK-RFI.conf
deleted file mode 100644
index 888c8e4c39..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-931-APPLICATION-ATTACK-RFI.conf
+++ /dev/null
@@ -1,153 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-#
-# RFI Attacks
-#
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:931011,phase:1,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:931012,phase:2,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-# -=[ Rule Logic ]=-
-# These rules look for common types of Remote File Inclusion (RFI) attack methods.
-#	- URL Contains an IP Address
-#	- The PHP "include()" Function
-#	- RFI Data Ends with Question Mark(s) (?)
-#	- RFI Host Doesn't Match Local Host
-#
-# -=[ References ]=-
-# http://projects.webappsec.org/Remote-File-Inclusion
-# http://tacticalwebappsec.blogspot.com/2009/06/generic-remote-file-inclusion-attack.html
-#
-SecRule ARGS "@rx ^(?i:file|ftps?|https?):\/\/(?:\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})" \
-    "id:931100,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Possible Remote File Inclusion (RFI) Attack: URL Parameter using IP Address',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-rfi',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/175/253',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule QUERY_STRING|REQUEST_BODY "@rx (?i)(?:\binclude\s*\([^)]*|mosConfig_absolute_path|_CONF\[path\]|_SERVER\[DOCUMENT_ROOT\]|GALLERY_BASEDIR|path\[docroot\]|appserv_root|config\[root_dir\])=(?:file|ftps?|https?):\/\/" \
-    "id:931110,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Possible Remote File Inclusion (RFI) Attack: Common RFI Vulnerable Parameter Name used w/URL Payload',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-rfi',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/175/253',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule ARGS "@rx ^(?i:file|ftps?|https?).*?\?+$" \
-    "id:931120,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Possible Remote File Inclusion (RFI) Attack: URL Payload Used w/Trailing Question Mark Character (?)',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-rfi',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/175/253',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:931013,phase:1,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:931014,phase:2,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-SecRule ARGS "@rx ^(?i:file|ftps?|https?)://([^/]*).*$" \
-    "id:931130,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-rfi',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/175/253',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rfi_parameter_%{MATCHED_VAR_NAME}=.%{tx.1}',\
-    chain"
-    SecRule TX:/rfi_parameter_.*/ "!@endsWith .%{request_headers.host}" \
-        "ctl:auditLogParts=+E,\
-        setvar:'tx.rfi_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:931015,phase:1,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:931016,phase:2,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:931017,phase:1,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:931018,phase:2,pass,nolog,skipAfter:END-REQUEST-931-APPLICATION-ATTACK-RFI"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-931-APPLICATION-ATTACK-RFI"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-932-APPLICATION-ATTACK-RCE.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-932-APPLICATION-ATTACK-RCE.conf
deleted file mode 100644
index b586045bc4..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-932-APPLICATION-ATTACK-RCE.conf
+++ /dev/null
@@ -1,730 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:932011,phase:1,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:932012,phase:2,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-
-# [ Unix command injection ]
-#
-# This rule detects Unix command injections.
-# A command injection takes a form such as:
-#
-#   foo.jpg;uname -a
-#   foo.jpg||uname -a
-#
-# The vulnerability exists when an application executes a shell command
-# without proper input escaping/validation.
-#
-# This rule is also triggered by an Oracle WebLogic Remote Command Execution exploit:
-# [ Oracle WebLogic vulnerability CVE-2017-10271 - Exploit tested: https://www.exploit-db.com/exploits/43458 ]
-#
-# To prevent false positives, we look for a 'starting sequence' that
-# precedes a command in shell syntax, such as: ; | & $( ` <( >(
-# Anatomy of the regexp with examples of patterns caught:
-#
-# 1. Starting tokens
-#
-# ;        ;ifconfig
-# \{       {ifconfig}
-# \|       |ifconfig
-# \|\|     ||ifconfig
-# &        &ifconfig
-# &&       &&ifconfig
-# \n       ;\nifconfig
-# \r       ;\rifconfig
-# \$\(     $(ifconfig)
-# $\(\(    $((ifconfig))
-# `        `ifconfig`
-# \${      ${ifconfig}
-# <\(      <( ifconfig )
-# >\(      >( ifconfig )
-# \(\s*\)  a() ( ifconfig; ); a
-#
-# 2. Command prefixes
-#
-# {        { ifconfig }
-# \s*\(\s* ( ifconfig )
-# \w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+   VARNAME=xyz ifconfig
-# !\s*     ! ifconfig
-# \$       $ifconfig
-#
-# 3. Quoting
-#
-# '        'ifconfig'
-# \"       "ifconfig"
-#
-# 4. Paths
-#
-# [\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/   /sbin/ifconfig, /s?in/./ifconfig, /s[a-b]in/ifconfig etc.
-#
-# This rule is case-sensitive to prevent FP ("Cat" vs. "cat").
-#
-# An effort was made to combat evasions by shell quoting (e.g. 'ls',
-# 'l'"s", \l\s are all valid). ModSecurity has a t:cmdLine
-# transformation built-in to deal with this, but unfortunately, it
-# replaces ';' characters and lowercases the payload, which is less
-# useful for this case. However, emulating the transformation makes
-# the regexp more complex.
-#
-# To rebuild the word list regexp:
-#   cd util/regexp-assemble
-#   cat regexp-932100.txt | ./regexp-cmdline.py unix | ./regexp-assemble.pl
-#
-# Then insert the assembled regexp into this template:
-#
-# SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:;|\{|\||\|\||&|&&|\n|\r|\$\(|\$\(\(|`|\${|<\(|>\(|\(\s*\))\s*(?:{|\s*\(\s*|\w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+|!\s*|\$)*\s*(?:'|\")*(?:[\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/)?[\\\\'\"]*
-# [regexp assembled from util/regexp-assemble/regexp-932100.txt]
-# \b" \
-#
-# This is the base Rule to prevent Unix Command Injection
-# Please refer other rules 932105,932106 to know more.
-#
-#  .932100
-#  ├── 932105
-#  ├── 932106
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:;|\{|\||\|\||&|&&|\n|\r|\$\(|\$\(\(|`|\${|<\(|>\(|\(\s*\))\s*(?:{|\s*\(\s*|\w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+|!\s*|\$)*\s*(?:'|\")*(?:[\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/)?[\\\\'\"]*(?:l[\\\\'\"]*(?:w[\\\\'\"]*p[\\\\'\"]*-[\\\\'\"]*(?:d[\\\\'\"]*(?:o[\\\\'\"]*w[\\\\'\"]*n[\\\\'\"]*l[\\\\'\"]*o[\\\\'\"]*a[\\\\'\"]*d|u[\\\\'\"]*m[\\\\'\"]*p)|r[\\\\'\"]*e[\\\\'\"]*q[\\\\'\"]*u[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*t|m[\\\\'\"]*i[\\\\'\"]*r[\\\\'\"]*r[\\\\'\"]*o[\\\\'\"]*r)|s(?:[\\\\'\"]*(?:b[\\\\'\"]*_[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*l[\\\\'\"]*e[\\\\'\"]*a[\\\\'\"]*s[\\\\'\"]*e|c[\\\\'\"]*p[\\\\'\"]*u|m[\\\\'\"]*o[\\\\'\"]*d|p[\\\\'\"]*c[\\\\'\"]*i|u[\\\\'\"]*s[\\\\'\"]*b|-[\\\\'\"]*F|h[\\\\'\"]*w|o[\\\\'\"]*f))?|z[\\\\'\"]*(?:(?:[ef][\\\\'\"]*)?g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|c[\\\\'\"]*(?:a[\\\\'\"]*t|m[\\\\'\"]*p)|m[\\\\'\"]*(?:o[\\\\'\"]*r[\\\\'\"]*e|a)|d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|l[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s)|e[\\\\'\"]*s[\\\\'\"]*s[\\\\'\"]*(?:(?:f[\\\\'\"]*i[\\\\'\"]*l|p[\\\\'\"]*i[\\\\'\"]*p)[\\\\'\"]*e|e[\\\\'\"]*c[\\\\'\"]*h[\\\\'\"]*o|(?:\s|<|>).*)|a[\\\\'\"]*s[\\\\'\"]*t[\\\\'\"]*(?:l[\\\\'\"]*o[\\\\'\"]*g(?:[\\\\'\"]*i[\\\\'\"]*n)?|c[\\\\'\"]*o[\\\\'\"]*m[\\\\'\"]*m|(?:\s|<|>).*)|o[\\\\'\"]*(?:c[\\\\'\"]*a[\\\\'\"]*(?:t[\\\\'\"]*e|l)[\\\\'\"]*(?:\s|<|>).*|g[\\\\'\"]*n[\\\\'\"]*a[\\\\'\"]*m[\\\\'\"]*e)|d[\\\\'\"]*(?:c[\\\\'\"]*o[\\\\'\"]*n[\\\\'\"]*f[\\\\'\"]*i[\\\\'\"]*g|d[\\\\'\"]*(?:\s|<|>).*)|f[\\\\'\"]*t[\\\\'\"]*p(?:[\\\\'\"]*g[\\\\'\"]*e[\\\\'\"]*t)?|(?:[np]|y[\\\\'\"]*n[\\\\'\"]*x)[\\\\'\"]*(?:\s|<|>).*)|b[\\\\'\"]*(?:z[\\\\'\"]*(?:(?:[ef][\\\\'\"]*)?g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|l[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|m[\\\\'\"]*o[\\\\'\"]*r[\\\\'\"]*e|c[\\\\'\"]*a[\\\\'\"]*t|i[\\\\'\"]*p[\\\\'\"]*2)|s[\\\\'\"]*d[\\\\'\"]*(?:c[\\\\'\"]*a[\\\\'\"]*t|i[\\\\'\"]*f[\\\\'\"]*f|t[\\\\'\"]*a[\\\\'\"]*r)|a[\\\\'\"]*(?:t[\\\\'\"]*c[\\\\'\"]*h[\\\\'\"]*(?:\s|<|>).*|s[\\\\'\"]*h)|r[\\\\'\"]*e[\\\\'\"]*a[\\\\'\"]*k[\\\\'\"]*s[\\\\'\"]*w|u[\\\\'\"]*i[\\\\'\"]*l[\\\\'\"]*t[\\\\'\"]*i[\\\\'\"]*n)|c[\\\\'\"]*(?:o[\\\\'\"]*(?:m[\\\\'\"]*(?:p[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|m[\\\\'\"]*a[\\\\'\"]*n[\\\\'\"]*d)[\\\\'\"]*(?:\s|<|>).*|p[\\\\'\"]*r[\\\\'\"]*o[\\\\'\"]*c)|h[\\\\'\"]*(?:d[\\\\'\"]*i[\\\\'\"]*r[\\\\'\"]*(?:\s|<|>).*|f[\\\\'\"]*l[\\\\'\"]*a[\\\\'\"]*g[\\\\'\"]*s|a[\\\\'\"]*t[\\\\'\"]*t[\\\\'\"]*r|m[\\\\'\"]*o[\\\\'\"]*d)|r[\\\\'\"]*o[\\\\'\"]*n[\\\\'\"]*t[\\\\'\"]*a[\\\\'\"]*b|(?:[cp]|a[\\\\'\"]*t)[\\\\'\"]*(?:\s|<|>).*|u[\\\\'\"]*r[\\\\'\"]*l|s[\\\\'\"]*h)|f[\\\\'\"]*(?:i(?:[\\\\'\"]*(?:l[\\\\'\"]*e[\\\\'\"]*(?:t[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*t|(?:\s|<|>).*)|n[\\\\'\"]*d[\\\\'\"]*(?:\s|<|>).*))?|t[\\\\'\"]*p[\\\\'\"]*(?:s[\\\\'\"]*t[\\\\'\"]*a[\\\\'\"]*t[\\\\'\"]*s|w[\\\\'\"]*h[\\\\'\"]*o|(?:\s|<|>).*)|u[\\\\'\"]*n[\\\\'\"]*c[\\\\'\"]*t[\\\\'\"]*i[\\\\'\"]*o[\\\\'\"]*n|(?:e[\\\\'\"]*t[\\\\'\"]*c[\\\\'\"]*h|c)[\\\\'\"]*(?:\s|<|>).*|o[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*h|g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p)|e[\\\\'\"]*(?:n[\\\\'\"]*(?:v(?:[\\\\'\"]*-[\\\\'\"]*u[\\\\'\"]*p[\\\\'\"]*d[\\\\'\"]*a[\\\\'\"]*t[\\\\'\"]*e)?|d[\\\\'\"]*(?:i[\\\\'\"]*f|s[\\\\'\"]*w))|x[\\\\'\"]*(?:p[\\\\'\"]*(?:a[\\\\'\"]*n[\\\\'\"]*d|o[\\\\'\"]*r[\\\\'\"]*t|r)|e[\\\\'\"]*c[\\\\'\"]*(?:\s|<|>).*)|c[\\\\'\"]*h[\\\\'\"]*o[\\\\'\"]*(?:\s|<|>).*|g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|s[\\\\'\"]*a[\\\\'\"]*c|v[\\\\'\"]*a[\\\\'\"]*l)|h[\\\\'\"]*(?:t[\\\\'\"]*(?:d[\\\\'\"]*i[\\\\'\"]*g[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*t|p[\\\\'\"]*a[\\\\'\"]*s[\\\\'\"]*s[\\\\'\"]*w[\\\\'\"]*d)|o[\\\\'\"]*s[\\\\'\"]*t[\\\\'\"]*(?:n[\\\\'\"]*a[\\\\'\"]*m[\\\\'\"]*e|i[\\\\'\"]*d)|(?:e[\\\\'\"]*a[\\\\'\"]*d|u[\\\\'\"]*p)[\\\\'\"]*(?:\s|<|>).*|i[\\\\'\"]*s[\\\\'\"]*t[\\\\'\"]*o[\\\\'\"]*r[\\\\'\"]*y)|i[\\\\'\"]*(?:p[\\\\'\"]*(?:(?:6[\\\\'\"]*)?t[\\\\'\"]*a[\\\\'\"]*b[\\\\'\"]*l[\\\\'\"]*e[\\\\'\"]*s|c[\\\\'\"]*o[\\\\'\"]*n[\\\\'\"]*f[\\\\'\"]*i[\\\\'\"]*g)|r[\\\\'\"]*b(?:[\\\\'\"]*(?:1(?:[\\\\'\"]*[89])?|2[\\\\'\"]*[012]))?|f[\\\\'\"]*c[\\\\'\"]*o[\\\\'\"]*n[\\\\'\"]*f[\\\\'\"]*i[\\\\'\"]*g|d[\\\\'\"]*(?:\s|<|>).*)|g[\\\\'\"]*(?:(?:e[\\\\'\"]*t[\\\\'\"]*f[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*l|r[\\\\'\"]*e[\\\\'\"]*p|c[\\\\'\"]*c|i[\\\\'\"]*t)[\\\\'\"]*(?:\s|<|>).*|z[\\\\'\"]*(?:c[\\\\'\"]*a[\\\\'\"]*t|i[\\\\'\"]*p)|u[\\\\'\"]*n[\\\\'\"]*z[\\\\'\"]*i[\\\\'\"]*p|d[\\\\'\"]*b)|a[\\\\'\"]*(?:(?:l[\\\\'\"]*i[\\\\'\"]*a[\\\\'\"]*s|w[\\\\'\"]*k)[\\\\'\"]*(?:\s|<|>).*|d[\\\\'\"]*d[\\\\'\"]*u[\\\\'\"]*s[\\\\'\"]*e[\\\\'\"]*r|p[\\\\'\"]*t[\\\\'\"]*-[\\\\'\"]*g[\\\\'\"]*e[\\\\'\"]*t|r[\\\\'\"]*(?:c[\\\\'\"]*h[\\\\'\"]*(?:\s|<|>).*|p))|d[\\\\'\"]*(?:h[\\\\'\"]*c[\\\\'\"]*l[\\\\'\"]*i[\\\\'\"]*e[\\\\'\"]*n[\\\\'\"]*t|(?:i[\\\\'\"]*f[\\\\'\"]*f|u)[\\\\'\"]*(?:\s|<|>).*|(?:m[\\\\'\"]*e[\\\\'\"]*s|p[\\\\'\"]*k)[\\\\'\"]*g|o[\\\\'\"]*(?:a[\\\\'\"]*s|n[\\\\'\"]*e)|a[\\\\'\"]*s[\\\\'\"]*h)|m[\\\\'\"]*(?:(?:k[\\\\'\"]*d[\\\\'\"]*i[\\\\'\"]*r|o[\\\\'\"]*r[\\\\'\"]*e)[\\\\'\"]*(?:\s|<|>).*|a[\\\\'\"]*i[\\\\'\"]*l[\\\\'\"]*(?:x[\\\\'\"]*(?:\s|<|>).*|q)|l[\\\\'\"]*o[\\\\'\"]*c[\\\\'\"]*a[\\\\'\"]*t[\\\\'\"]*e)|j[\\\\'\"]*(?:(?:a[\\\\'\"]*v[\\\\'\"]*a|o[\\\\'\"]*b[\\\\'\"]*s)[\\\\'\"]*(?:\s|<|>).*|e[\\\\'\"]*x[\\\\'\"]*e[\\\\'\"]*c)|k[\\\\'\"]*i[\\\\'\"]*l[\\\\'\"]*l[\\\\'\"]*(?:a[\\\\'\"]*l[\\\\'\"]*l|(?:\s|<|>).*)|(?:G[\\\\'\"]*E[\\\\'\"]*T[\\\\'\"]*(?:\s|<|>)|\.\s).*|7[\\\\'\"]*z(?:[\\\\'\"]*[ar])?)\b" \
-    "id:932100,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Remote Command Execution: Unix Command Injection',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# Apache 2.2 requires configuration file lines to be under 8kB.
-# Therefore, some remaining commands have been split off to a separate rule.
-# For explanation of this rule, see rule 932100.
-#
-# To rebuild the word list regexp:
-#   cd util/regexp-assemble
-#   cat regexp-932105.txt | ./regexp-cmdline.py unix | ./regexp-assemble.pl
-#
-# Then insert the assembled regexp into this template:
-#
-# SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:;|\{|\||\|\||&|&&|\n|\r|\$\(|\$\(\(|`|\${|<\(|>\(|\(\s*\))\s*(?:{|\s*\(\s*|\w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+|!\s*|\$)*\s*(?:'|\")*(?:[\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/)?[\\\\'\"]*
-# [regexp assembled from util/regexp-assemble/regexp-932105.txt]
-# \b" \
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:;|\{|\||\|\||&|&&|\n|\r|\$\(|\$\(\(|`|\${|<\(|>\(|\(\s*\))\s*(?:{|\s*\(\s*|\w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+|!\s*|\$)*\s*(?:'|\")*(?:[\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/)?[\\\\'\"]*(?:s[\\\\'\"]*(?:e[\\\\'\"]*(?:t[\\\\'\"]*(?:(?:f[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*l[\\\\'\"]*)?(?:\s|<|>).*|e[\\\\'\"]*n[\\\\'\"]*v|s[\\\\'\"]*i[\\\\'\"]*d)|n[\\\\'\"]*d[\\\\'\"]*m[\\\\'\"]*a[\\\\'\"]*i[\\\\'\"]*l|d[\\\\'\"]*(?:\s|<|>).*)|h[\\\\'\"]*(?:\.[\\\\'\"]*d[\\\\'\"]*i[\\\\'\"]*s[\\\\'\"]*t[\\\\'\"]*r[\\\\'\"]*i[\\\\'\"]*b|u[\\\\'\"]*t[\\\\'\"]*d[\\\\'\"]*o[\\\\'\"]*w[\\\\'\"]*n|(?:\s|<|>).*)|o[\\\\'\"]*(?:(?:u[\\\\'\"]*r[\\\\'\"]*c[\\\\'\"]*e|r[\\\\'\"]*t)[\\\\'\"]*(?:\s|<|>).*|c[\\\\'\"]*a[\\\\'\"]*t)|c[\\\\'\"]*(?:h[\\\\'\"]*e[\\\\'\"]*d|p[\\\\'\"]*(?:\s|<|>).*)|t[\\\\'\"]*r[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*g[\\\\'\"]*s|(?:l[\\\\'\"]*e[\\\\'\"]*e|f[\\\\'\"]*t)[\\\\'\"]*p|y[\\\\'\"]*s[\\\\'\"]*c[\\\\'\"]*t[\\\\'\"]*l|u[\\\\'\"]*(?:(?:\s|<|>).*|d[\\\\'\"]*o)|d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|s[\\\\'\"]*h|v[\\\\'\"]*n)|p[\\\\'\"]*(?:k[\\\\'\"]*(?:g(?:(?:[\\\\'\"]*_)?[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*f[\\\\'\"]*o)?|e[\\\\'\"]*x[\\\\'\"]*e[\\\\'\"]*c|i[\\\\'\"]*l[\\\\'\"]*l)|t[\\\\'\"]*a[\\\\'\"]*r(?:[\\\\'\"]*(?:d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p))?|a[\\\\'\"]*(?:t[\\\\'\"]*c[\\\\'\"]*h[\\\\'\"]*(?:\s|<|>).*|s[\\\\'\"]*s[\\\\'\"]*w[\\\\'\"]*d)|r[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*t[\\\\'\"]*(?:e[\\\\'\"]*n[\\\\'\"]*v|f[\\\\'\"]*(?:\s|<|>).*)|y[\\\\'\"]*t[\\\\'\"]*h[\\\\'\"]*o[\\\\'\"]*n(?:[\\\\'\"]*(?:3(?:[\\\\'\"]*m)?|2))?|e[\\\\'\"]*r[\\\\'\"]*(?:l(?:[\\\\'\"]*(?:s[\\\\'\"]*h|5))?|m[\\\\'\"]*s)|(?:g[\\\\'\"]*r[\\\\'\"]*e|f[\\\\'\"]*t)[\\\\'\"]*p|(?:u[\\\\'\"]*s[\\\\'\"]*h|o[\\\\'\"]*p)[\\\\'\"]*d|h[\\\\'\"]*p(?:[\\\\'\"]*[57])?|i[\\\\'\"]*n[\\\\'\"]*g|s[\\\\'\"]*(?:\s|<|>).*)|n[\\\\'\"]*(?:c[\\\\'\"]*(?:\.[\\\\'\"]*(?:t[\\\\'\"]*r[\\\\'\"]*a[\\\\'\"]*d[\\\\'\"]*i[\\\\'\"]*t[\\\\'\"]*i[\\\\'\"]*o[\\\\'\"]*n[\\\\'\"]*a[\\\\'\"]*l|o[\\\\'\"]*p[\\\\'\"]*e[\\\\'\"]*n[\\\\'\"]*b[\\\\'\"]*s[\\\\'\"]*d)|(?:\s|<|>).*|a[\\\\'\"]*t)|e[\\\\'\"]*t[\\\\'\"]*(?:k[\\\\'\"]*i[\\\\'\"]*t[\\\\'\"]*-[\\\\'\"]*f[\\\\'\"]*t[\\\\'\"]*p|(?:s[\\\\'\"]*t|c)[\\\\'\"]*a[\\\\'\"]*t|(?:\s|<|>).*)|s[\\\\'\"]*(?:l[\\\\'\"]*o[\\\\'\"]*o[\\\\'\"]*k[\\\\'\"]*u[\\\\'\"]*p|t[\\\\'\"]*a[\\\\'\"]*t)|(?:a[\\\\'\"]*n[\\\\'\"]*o|i[\\\\'\"]*c[\\\\'\"]*e)[\\\\'\"]*(?:\s|<|>).*|(?:o[\\\\'\"]*h[\\\\'\"]*u|m[\\\\'\"]*a)[\\\\'\"]*p|p[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*g)|r[\\\\'\"]*(?:e[\\\\'\"]*(?:(?:p[\\\\'\"]*(?:l[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*e|e[\\\\'\"]*a[\\\\'\"]*t)|n[\\\\'\"]*a[\\\\'\"]*m[\\\\'\"]*e)[\\\\'\"]*(?:\s|<|>).*|a[\\\\'\"]*l[\\\\'\"]*p[\\\\'\"]*a[\\\\'\"]*t[\\\\'\"]*h)|m[\\\\'\"]*(?:(?:d[\\\\'\"]*i[\\\\'\"]*r[\\\\'\"]*)?(?:\s|<|>).*|u[\\\\'\"]*s[\\\\'\"]*e[\\\\'\"]*r)|u[\\\\'\"]*b[\\\\'\"]*y(?:[\\\\'\"]*(?:1(?:[\\\\'\"]*[89])?|2[\\\\'\"]*[012]))?|(?:a[\\\\'\"]*r|c[\\\\'\"]*p|p[\\\\'\"]*m)[\\\\'\"]*(?:\s|<|>).*|n[\\\\'\"]*a[\\\\'\"]*n[\\\\'\"]*o|o[\\\\'\"]*u[\\\\'\"]*t[\\\\'\"]*e|s[\\\\'\"]*y[\\\\'\"]*n[\\\\'\"]*c)|t[\\\\'\"]*(?:c[\\\\'\"]*(?:p[\\\\'\"]*(?:t[\\\\'\"]*r[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*e[\\\\'\"]*r[\\\\'\"]*o[\\\\'\"]*u[\\\\'\"]*t[\\\\'\"]*e|i[\\\\'\"]*n[\\\\'\"]*g)|s[\\\\'\"]*h)|r[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*e[\\\\'\"]*r[\\\\'\"]*o[\\\\'\"]*u[\\\\'\"]*t[\\\\'\"]*e(?:[\\\\'\"]*6)?|e[\\\\'\"]*(?:l[\\\\'\"]*n[\\\\'\"]*e[\\\\'\"]*t|e[\\\\'\"]*(?:\s|<|>).*)|i[\\\\'\"]*m[\\\\'\"]*e[\\\\'\"]*(?:o[\\\\'\"]*u[\\\\'\"]*t|(?:\s|<|>).*)|a[\\\\'\"]*(?:i[\\\\'\"]*l(?:[\\\\'\"]*f)?|r[\\\\'\"]*(?:\s|<|>).*)|o[\\\\'\"]*(?:u[\\\\'\"]*c[\\\\'\"]*h[\\\\'\"]*(?:\s|<|>).*|p))|u[\\\\'\"]*(?:n[\\\\'\"]*(?:l[\\\\'\"]*(?:i[\\\\'\"]*n[\\\\'\"]*k[\\\\'\"]*(?:\s|<|>).*|z[\\\\'\"]*m[\\\\'\"]*a)|c[\\\\'\"]*o[\\\\'\"]*m[\\\\'\"]*p[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|a[\\\\'\"]*m[\\\\'\"]*e|r[\\\\'\"]*a[\\\\'\"]*r|s[\\\\'\"]*e[\\\\'\"]*t|z[\\\\'\"]*i[\\\\'\"]*p|x[\\\\'\"]*z)|s[\\\\'\"]*e[\\\\'\"]*r[\\\\'\"]*(?:(?:a[\\\\'\"]*d|m[\\\\'\"]*o)[\\\\'\"]*d|d[\\\\'\"]*e[\\\\'\"]*l)|l[\\\\'\"]*i[\\\\'\"]*m[\\\\'\"]*i[\\\\'\"]*t[\\\\'\"]*(?:\s|<|>).*)|m[\\\\'\"]*(?:y[\\\\'\"]*s[\\\\'\"]*q[\\\\'\"]*l(?:[\\\\'\"]*(?:d[\\\\'\"]*u[\\\\'\"]*m[\\\\'\"]*p(?:[\\\\'\"]*s[\\\\'\"]*l[\\\\'\"]*o[\\\\'\"]*w)?|h[\\\\'\"]*o[\\\\'\"]*t[\\\\'\"]*c[\\\\'\"]*o[\\\\'\"]*p[\\\\'\"]*y|a[\\\\'\"]*d[\\\\'\"]*m[\\\\'\"]*i[\\\\'\"]*n|s[\\\\'\"]*h[\\\\'\"]*o[\\\\'\"]*w))?|(?:(?:o[\\\\'\"]*u[\\\\'\"]*n|u[\\\\'\"]*t)[\\\\'\"]*t|v)[\\\\'\"]*(?:\s|<|>).*)|x[\\\\'\"]*(?:z[\\\\'\"]*(?:(?:[ef][\\\\'\"]*)?g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|d[\\\\'\"]*(?:i[\\\\'\"]*f[\\\\'\"]*f|e[\\\\'\"]*c)|c[\\\\'\"]*(?:a[\\\\'\"]*t|m[\\\\'\"]*p)|l[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|m[\\\\'\"]*o[\\\\'\"]*r[\\\\'\"]*e|(?:\s|<|>).*)|a[\\\\'\"]*r[\\\\'\"]*g[\\\\'\"]*s|t[\\\\'\"]*e[\\\\'\"]*r[\\\\'\"]*m|x[\\\\'\"]*d[\\\\'\"]*(?:\s|<|>).*)|z[\\\\'\"]*(?:(?:[ef][\\\\'\"]*)?g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|c[\\\\'\"]*(?:a[\\\\'\"]*t|m[\\\\'\"]*p)|d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|i[\\\\'\"]*p[\\\\'\"]*(?:\s|<|>).*|l[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|m[\\\\'\"]*o[\\\\'\"]*r[\\\\'\"]*e|r[\\\\'\"]*u[\\\\'\"]*n|s[\\\\'\"]*h)|o[\\\\'\"]*(?:p[\\\\'\"]*e[\\\\'\"]*n[\\\\'\"]*s[\\\\'\"]*s[\\\\'\"]*l|n[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*t[\\\\'\"]*r)|w[\\\\'\"]*(?:h[\\\\'\"]*o[\\\\'\"]*(?:a[\\\\'\"]*m[\\\\'\"]*i|(?:\s|<|>).*)|g[\\\\'\"]*e[\\\\'\"]*t|3[\\\\'\"]*m)|v[\\\\'\"]*i[\\\\'\"]*(?:m[\\\\'\"]*(?:\s|<|>).*|g[\\\\'\"]*r|p[\\\\'\"]*w)|y[\\\\'\"]*u[\\\\'\"]*m)\b" \
-    "id:932105,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Remote Command Execution: Unix Command Injection',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-# [ Windows command injection ]
-#
-# This rule detects Windows shell command injections.
-# If you are not running Windows, it is safe to disable this rule.
-#
-# A command injection takes a form such as:
-#
-#   foo.jpg&ver /r
-#   foo.jpg|ver /r
-#
-# The vulnerability exists when an application executes a shell command
-# without proper input escaping/validation.
-#
-# To prevent false positives, we look for a 'starting sequence' that
-# precedes a command in CMD syntax, such as: ; | & `
-#
-# Anatomy of the regexp:
-#
-# 1. Starting tokens
-#
-# ;        ;cmd
-# \{       {cmd
-# \|       |cmd
-# \|\|     ||cmd
-# &        &cmd
-# &&       &&cmd
-# \n       \ncmd
-# \r       \rcmd
-# `        `cmd
-#
-# 2. Command prefixes
-#
-# (        (cmd)
-# ,        ,cmd
-# @        @cmd
-# '        'cmd'
-# "        "cmd"
-# \s       spacing+cmd
-#
-# 3. Paths
-#
-# [\w'\"\./]+/                          /path/cmd
-# [\\\\'\"\^]*\w[\\\\'\"\^]*:.*\\\\     C:\Program Files\cmd
-# [\^\.\w '\"/\\\\]*\\\\)?[\"\^]*       \\net\share\dir\cmd
-#
-# 4. Quoting
-#
-# \"       "cmd"
-# \^       ^cmd
-#
-# 5. Extension/switches
-#
-# \.[\"\^]*\w+      cmd.com, cmd.exe, etc.
-# /b                cmd/h
-#
-# An effort is made to combat evasions by CMD syntax; for example,
-# the following strings are valid: c^md, @cmd, "c"md. ModSecurity
-# has a t:cmdLine transformation built-in to deal with some of these,
-# but unfortunately, that transformation replaces ';' characters (so
-# we cannot match on the start of a command) and '\' characters (so we
-# have trouble matching paths). This makes the regexp more complex.
-#
-# This rule is case-insensitive.
-#
-# To rebuild the word list regexp:
-#   cd util/regexp-assemble
-#   cat regexp-932110.txt | ./regexp-cmdline.py windows | ./regexp-assemble.pl
-#
-# Then insert the assembled regexp into this template:
-#
-# SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:;|\{|\||\|\||&|&&|\n|\r|`)\s*[\(,@\'\"\s]*(?:[\w'\"\./]+/|[\\\\'\"\^]*\w[\\\\'\"\^]*:.*\\\\|[\^\.\w '\"/\\\\]*\\\\)?[\"\^]*
-# [regexp assembled from util/regexp-assemble/regexp-932110.txt]
-# (?:\.[\"\^]*\w+)?\b" \
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:;|\{|\||\|\||&|&&|\n|\r|`)\s*[\(,@\'\"\s]*(?:[\w'\"\./]+/|[\\\\'\"\^]*\w[\\\\'\"\^]*:.*\\\\|[\^\.\w '\"/\\\\]*\\\\)?[\"\^]*(?:m[\"\^]*(?:y[\"\^]*s[\"\^]*q[\"\^]*l(?:[\"\^]*(?:d[\"\^]*u[\"\^]*m[\"\^]*p(?:[\"\^]*s[\"\^]*l[\"\^]*o[\"\^]*w)?|h[\"\^]*o[\"\^]*t[\"\^]*c[\"\^]*o[\"\^]*p[\"\^]*y|a[\"\^]*d[\"\^]*m[\"\^]*i[\"\^]*n|s[\"\^]*h[\"\^]*o[\"\^]*w))?|s[\"\^]*(?:i[\"\^]*(?:n[\"\^]*f[\"\^]*o[\"\^]*3[\"\^]*2|e[\"\^]*x[\"\^]*e[\"\^]*c)|c[\"\^]*o[\"\^]*n[\"\^]*f[\"\^]*i[\"\^]*g|g[\"\^]*(?:[\s,;]|\.|/|<|>).*|t[\"\^]*s[\"\^]*c)|o[\"\^]*(?:u[\"\^]*n[\"\^]*t[\"\^]*(?:(?:[\s,;]|\.|/|<|>).*|v[\"\^]*o[\"\^]*l)|v[\"\^]*e[\"\^]*u[\"\^]*s[\"\^]*e[\"\^]*r|[dr][\"\^]*e[\"\^]*(?:[\s,;]|\.|/|<|>).*)|k[\"\^]*(?:d[\"\^]*i[\"\^]*r[\"\^]*(?:[\s,;]|\.|/|<|>).*|l[\"\^]*i[\"\^]*n[\"\^]*k)|d[\"\^]*(?:s[\"\^]*c[\"\^]*h[\"\^]*e[\"\^]*d|(?:[\s,;]|\.|/|<|>).*)|a[\"\^]*p[\"\^]*i[\"\^]*s[\"\^]*e[\"\^]*n[\"\^]*d|b[\"\^]*s[\"\^]*a[\"\^]*c[\"\^]*l[\"\^]*i|e[\"\^]*a[\"\^]*s[\"\^]*u[\"\^]*r[\"\^]*e|m[\"\^]*s[\"\^]*y[\"\^]*s)|d[\"\^]*(?:i[\"\^]*(?:s[\"\^]*k[\"\^]*(?:(?:m[\"\^]*g[\"\^]*m|p[\"\^]*a[\"\^]*r)[\"\^]*t|s[\"\^]*h[\"\^]*a[\"\^]*d[\"\^]*o[\"\^]*w)|r[\"\^]*(?:(?:[\s,;]|\.|/|<|>).*|u[\"\^]*s[\"\^]*e)|f[\"\^]*f[\"\^]*(?:[\s,;]|\.|/|<|>).*)|e[\"\^]*(?:l[\"\^]*(?:p[\"\^]*r[\"\^]*o[\"\^]*f|t[\"\^]*r[\"\^]*e[\"\^]*e|(?:[\s,;]|\.|/|<|>).*)|v[\"\^]*(?:m[\"\^]*g[\"\^]*m[\"\^]*t|c[\"\^]*o[\"\^]*n)|(?:f[\"\^]*r[\"\^]*a|b[\"\^]*u)[\"\^]*g)|s[\"\^]*(?:a[\"\^]*(?:c[\"\^]*l[\"\^]*s|d[\"\^]*d)|q[\"\^]*u[\"\^]*e[\"\^]*r[\"\^]*y|m[\"\^]*o[\"\^]*(?:v[\"\^]*e|d)|g[\"\^]*e[\"\^]*t|r[\"\^]*m)|(?:r[\"\^]*i[\"\^]*v[\"\^]*e[\"\^]*r[\"\^]*q[\"\^]*u[\"\^]*e[\"\^]*r|o[\"\^]*s[\"\^]*k[\"\^]*e)[\"\^]*y|(?:c[\"\^]*o[\"\^]*m[\"\^]*c[\"\^]*n[\"\^]*f|x[\"\^]*d[\"\^]*i[\"\^]*a)[\"\^]*g|a[\"\^]*t[\"\^]*e[\"\^]*(?:[\s,;]|\.|/|<|>).*|n[\"\^]*s[\"\^]*s[\"\^]*t[\"\^]*a[\"\^]*t)|c[\"\^]*(?:o[\"\^]*(?:m[\"\^]*(?:p[\"\^]*(?:(?:a[\"\^]*c[\"\^]*t[\"\^]*)?(?:[\s,;]|\.|/|<|>).*|m[\"\^]*g[\"\^]*m[\"\^]*t)|e[\"\^]*x[\"\^]*p)|n[\"\^]*(?:2[\"\^]*p|v[\"\^]*e)[\"\^]*r[\"\^]*t|p[\"\^]*y)|l[\"\^]*(?:e[\"\^]*a[\"\^]*(?:n[\"\^]*m[\"\^]*g[\"\^]*r|r[\"\^]*m[\"\^]*e[\"\^]*m)|u[\"\^]*s[\"\^]*t[\"\^]*e[\"\^]*r)|h[\"\^]*(?:k[\"\^]*(?:n[\"\^]*t[\"\^]*f[\"\^]*s|d[\"\^]*s[\"\^]*k)|d[\"\^]*i[\"\^]*r[\"\^]*(?:[\s,;]|\.|/|<|>).*)|s[\"\^]*(?:c[\"\^]*(?:r[\"\^]*i[\"\^]*p[\"\^]*t|c[\"\^]*m[\"\^]*d)|v[\"\^]*d[\"\^]*e)|e[\"\^]*r[\"\^]*t[\"\^]*(?:u[\"\^]*t[\"\^]*i[\"\^]*l|r[\"\^]*e[\"\^]*q)|a[\"\^]*(?:l[\"\^]*l[\"\^]*(?:[\s,;]|\.|/|<|>).*|c[\"\^]*l[\"\^]*s)|m[\"\^]*d(?:[\"\^]*k[\"\^]*e[\"\^]*y)?|i[\"\^]*p[\"\^]*h[\"\^]*e[\"\^]*r|u[\"\^]*r[\"\^]*l)|f[\"\^]*(?:o[\"\^]*r[\"\^]*(?:m[\"\^]*a[\"\^]*t[\"\^]*(?:[\s,;]|\.|/|<|>).*|f[\"\^]*i[\"\^]*l[\"\^]*e[\"\^]*s|e[\"\^]*a[\"\^]*c[\"\^]*h)|i[\"\^]*n[\"\^]*d[\"\^]*(?:(?:[\s,;]|\.|/|<|>).*|s[\"\^]*t[\"\^]*r)|s[\"\^]*(?:m[\"\^]*g[\"\^]*m[\"\^]*t|u[\"\^]*t[\"\^]*i[\"\^]*l)|t[\"\^]*(?:p[\"\^]*(?:[\s,;]|\.|/|<|>).*|y[\"\^]*p[\"\^]*e)|r[\"\^]*e[\"\^]*e[\"\^]*d[\"\^]*i[\"\^]*s[\"\^]*k|c[\"\^]*(?:[\s,;]|\.|/|<|>).*|g[\"\^]*r[\"\^]*e[\"\^]*p)|n[\"\^]*(?:e[\"\^]*t[\"\^]*(?:s[\"\^]*(?:t[\"\^]*a[\"\^]*t|v[\"\^]*c|h)|(?:[\s,;]|\.|/|<|>).*|c[\"\^]*a[\"\^]*t|d[\"\^]*o[\"\^]*m)|t[\"\^]*(?:b[\"\^]*a[\"\^]*c[\"\^]*k[\"\^]*u[\"\^]*p|r[\"\^]*i[\"\^]*g[\"\^]*h[\"\^]*t[\"\^]*s)|(?:s[\"\^]*l[\"\^]*o[\"\^]*o[\"\^]*k[\"\^]*u|m[\"\^]*a)[\"\^]*p|c[\"\^]*(?:(?:[\s,;]|\.|/|<|>).*|a[\"\^]*t)|b[\"\^]*t[\"\^]*s[\"\^]*t[\"\^]*a[\"\^]*t)|e[\"\^]*(?:x[\"\^]*p[\"\^]*(?:a[\"\^]*n[\"\^]*d[\"\^]*(?:[\s,;]|\.|/|<|>).*|l[\"\^]*o[\"\^]*r[\"\^]*e[\"\^]*r)|v[\"\^]*e[\"\^]*n[\"\^]*t[\"\^]*(?:c[\"\^]*r[\"\^]*e[\"\^]*a[\"\^]*t[\"\^]*e|v[\"\^]*w[\"\^]*r)|n[\"\^]*d[\"\^]*l[\"\^]*o[\"\^]*c[\"\^]*a[\"\^]*l|g[\"\^]*r[\"\^]*e[\"\^]*p|r[\"\^]*a[\"\^]*s[\"\^]*e|c[\"\^]*h[\"\^]*o)|g[\"\^]*(?:a[\"\^]*t[\"\^]*h[\"\^]*e[\"\^]*r[\"\^]*n[\"\^]*e[\"\^]*t[\"\^]*w[\"\^]*o[\"\^]*r[\"\^]*k[\"\^]*i[\"\^]*n[\"\^]*f[\"\^]*o|p[\"\^]*(?:(?:r[\"\^]*e[\"\^]*s[\"\^]*u[\"\^]*l|e[\"\^]*d[\"\^]*i)[\"\^]*t|u[\"\^]*p[\"\^]*d[\"\^]*a[\"\^]*t[\"\^]*e)|i[\"\^]*t[\"\^]*(?:[\s,;]|\.|/|<|>).*|e[\"\^]*t[\"\^]*m[\"\^]*a[\"\^]*c)|i[\"\^]*(?:r[\"\^]*b(?:[\"\^]*(?:1(?:[\"\^]*[89])?|2[\"\^]*[012]))?|f[\"\^]*m[\"\^]*e[\"\^]*m[\"\^]*b[\"\^]*e[\"\^]*r|p[\"\^]*c[\"\^]*o[\"\^]*n[\"\^]*f[\"\^]*i[\"\^]*g|n[\"\^]*e[\"\^]*t[\"\^]*c[\"\^]*p[\"\^]*l|c[\"\^]*a[\"\^]*c[\"\^]*l[\"\^]*s)|a[\"\^]*(?:d[\"\^]*(?:d[\"\^]*u[\"\^]*s[\"\^]*e[\"\^]*r[\"\^]*s|m[\"\^]*o[\"\^]*d[\"\^]*c[\"\^]*m[\"\^]*d)|r[\"\^]*p[\"\^]*(?:[\s,;]|\.|/|<|>).*|t[\"\^]*t[\"\^]*r[\"\^]*i[\"\^]*b|s[\"\^]*s[\"\^]*o[\"\^]*c|z[\"\^]*m[\"\^]*a[\"\^]*n)|l[\"\^]*(?:o[\"\^]*g[\"\^]*(?:e[\"\^]*v[\"\^]*e[\"\^]*n[\"\^]*t|t[\"\^]*i[\"\^]*m[\"\^]*e|m[\"\^]*a[\"\^]*n|o[\"\^]*f[\"\^]*f)|a[\"\^]*b[\"\^]*e[\"\^]*l[\"\^]*(?:[\s,;]|\.|/|<|>).*|u[\"\^]*s[\"\^]*r[\"\^]*m[\"\^]*g[\"\^]*r)|b[\"\^]*(?:(?:c[\"\^]*d[\"\^]*(?:b[\"\^]*o[\"\^]*o|e[\"\^]*d[\"\^]*i)|r[\"\^]*o[\"\^]*w[\"\^]*s[\"\^]*t[\"\^]*a)[\"\^]*t|i[\"\^]*t[\"\^]*s[\"\^]*a[\"\^]*d[\"\^]*m[\"\^]*i[\"\^]*n|o[\"\^]*o[\"\^]*t[\"\^]*c[\"\^]*f[\"\^]*g)|h[\"\^]*(?:o[\"\^]*s[\"\^]*t[\"\^]*n[\"\^]*a[\"\^]*m[\"\^]*e|d[\"\^]*w[\"\^]*w[\"\^]*i[\"\^]*z)|j[\"\^]*a[\"\^]*v[\"\^]*a[\"\^]*(?:[\s,;]|\.|/|<|>).*|7[\"\^]*z(?:[\"\^]*[ar])?)(?:\.[\"\^]*\w+)?\b" \
-    "id:932110,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Remote Command Execution: Windows Command Injection',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-windows',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# Apache 2.2 requires configuration file lines to be under 8kB.
-# Therefore, some remaining commands have been split off to a separate rule.
-# For explanation of this rule, see rule 932110.
-#
-# This rule is also triggered by an Oracle WebLogic Remote Command Execution exploit:
-# [ Oracle WebLogic vulnerability CVE-2017-10271 - Exploit tested: https://www.exploit-db.com/exploits/43458 ]
-#
-# To rebuild the word list regexp:
-#   cd util/regexp-assemble
-#   cat regexp-932115.txt | ./regexp-cmdline.py windows | ./regexp-assemble.pl
-#
-# Then insert the assembled regexp into this template:
-#
-# SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:;|\{|\||\|\||&|&&|\n|\r|`)\s*[\(,@\'\"\s]*(?:[\w'\"\./]+/|[\\\\'\"\^]*\w[\\\\'\"\^]*:.*\\\\|[\^\.\w '\"/\\\\]*\\\\)?[\"\^]*
-# [regexp assembled from util/regexp-assemble/regexp-932110.txt]
-# (?:\.[\"\^]*\w+)?\b" \
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)(?:;|\{|\||\|\||&|&&|\n|\r|`)\s*[\(,@\'\"\s]*(?:[\w'\"\./]+/|[\\\\'\"\^]*\w[\\\\'\"\^]*:.*\\\\|[\^\.\w '\"/\\\\]*\\\\)?[\"\^]*(?:s[\"\^]*(?:y[\"\^]*s[\"\^]*(?:t[\"\^]*e[\"\^]*m[\"\^]*(?:p[\"\^]*r[\"\^]*o[\"\^]*p[\"\^]*e[\"\^]*r[\"\^]*t[\"\^]*i[\"\^]*e[\"\^]*s[\"\^]*(?:d[\"\^]*a[\"\^]*t[\"\^]*a[\"\^]*e[\"\^]*x[\"\^]*e[\"\^]*c[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*o[\"\^]*n[\"\^]*p[\"\^]*r[\"\^]*e[\"\^]*v[\"\^]*e[\"\^]*n[\"\^]*t[\"\^]*i[\"\^]*o[\"\^]*n|(?:p[\"\^]*e[\"\^]*r[\"\^]*f[\"\^]*o[\"\^]*r[\"\^]*m[\"\^]*a[\"\^]*n[\"\^]*c|h[\"\^]*a[\"\^]*r[\"\^]*d[\"\^]*w[\"\^]*a[\"\^]*r)[\"\^]*e|a[\"\^]*d[\"\^]*v[\"\^]*a[\"\^]*n[\"\^]*c[\"\^]*e[\"\^]*d)|i[\"\^]*n[\"\^]*f[\"\^]*o)|k[\"\^]*e[\"\^]*y|d[\"\^]*m)|h[\"\^]*(?:o[\"\^]*(?:w[\"\^]*(?:g[\"\^]*r[\"\^]*p|m[\"\^]*b[\"\^]*r)[\"\^]*s|r[\"\^]*t[\"\^]*c[\"\^]*u[\"\^]*t)|e[\"\^]*l[\"\^]*l[\"\^]*r[\"\^]*u[\"\^]*n[\"\^]*a[\"\^]*s|u[\"\^]*t[\"\^]*d[\"\^]*o[\"\^]*w[\"\^]*n|r[\"\^]*p[\"\^]*u[\"\^]*b[\"\^]*w|a[\"\^]*r[\"\^]*e|i[\"\^]*f[\"\^]*t)|e[\"\^]*(?:t[\"\^]*(?:(?:x[\"\^]*)?(?:[\s,;]|\.|/|<|>).*|l[\"\^]*o[\"\^]*c[\"\^]*a[\"\^]*l)|c[\"\^]*p[\"\^]*o[\"\^]*l|l[\"\^]*e[\"\^]*c[\"\^]*t)|c[\"\^]*(?:h[\"\^]*t[\"\^]*a[\"\^]*s[\"\^]*k[\"\^]*s|l[\"\^]*i[\"\^]*s[\"\^]*t)|u[\"\^]*b[\"\^]*(?:i[\"\^]*n[\"\^]*a[\"\^]*c[\"\^]*l|s[\"\^]*t)|t[\"\^]*a[\"\^]*r[\"\^]*t[\"\^]*(?:[\s,;]|\.|/|<|>).*|i[\"\^]*g[\"\^]*v[\"\^]*e[\"\^]*r[\"\^]*i[\"\^]*f|l[\"\^]*(?:e[\"\^]*e[\"\^]*p|m[\"\^]*g[\"\^]*r)|o[\"\^]*r[\"\^]*t|f[\"\^]*c|v[\"\^]*n)|p[\"\^]*(?:s[\"\^]*(?:s[\"\^]*(?:h[\"\^]*u[\"\^]*t[\"\^]*d[\"\^]*o[\"\^]*w[\"\^]*n|e[\"\^]*r[\"\^]*v[\"\^]*i[\"\^]*c[\"\^]*e|u[\"\^]*s[\"\^]*p[\"\^]*e[\"\^]*n[\"\^]*d)|l[\"\^]*(?:o[\"\^]*g[\"\^]*(?:g[\"\^]*e[\"\^]*d[\"\^]*o[\"\^]*n|l[\"\^]*i[\"\^]*s[\"\^]*t)|i[\"\^]*s[\"\^]*t)|p[\"\^]*(?:a[\"\^]*s[\"\^]*s[\"\^]*w[\"\^]*d|i[\"\^]*n[\"\^]*g)|g[\"\^]*e[\"\^]*t[\"\^]*s[\"\^]*i[\"\^]*d|e[\"\^]*x[\"\^]*e[\"\^]*c|f[\"\^]*i[\"\^]*l[\"\^]*e|i[\"\^]*n[\"\^]*f[\"\^]*o|k[\"\^]*i[\"\^]*l[\"\^]*l)|o[\"\^]*(?:w[\"\^]*e[\"\^]*r[\"\^]*(?:s[\"\^]*h[\"\^]*e[\"\^]*l[\"\^]*l(?:[\"\^]*_[\"\^]*i[\"\^]*s[\"\^]*e)?|c[\"\^]*f[\"\^]*g)|r[\"\^]*t[\"\^]*q[\"\^]*r[\"\^]*y|p[\"\^]*d)|r[\"\^]*(?:i[\"\^]*n[\"\^]*t[\"\^]*(?:(?:[\s,;]|\.|/|<|>).*|b[\"\^]*r[\"\^]*m)|n[\"\^]*(?:c[\"\^]*n[\"\^]*f[\"\^]*g|m[\"\^]*n[\"\^]*g[\"\^]*r)|o[\"\^]*m[\"\^]*p[\"\^]*t)|a[\"\^]*t[\"\^]*h[\"\^]*(?:p[\"\^]*i[\"\^]*n[\"\^]*g|(?:[\s,;]|\.|/|<|>).*)|e[\"\^]*r[\"\^]*(?:l(?:[\"\^]*(?:s[\"\^]*h|5))?|f[\"\^]*m[\"\^]*o[\"\^]*n)|y[\"\^]*t[\"\^]*h[\"\^]*o[\"\^]*n(?:[\"\^]*(?:3(?:[\"\^]*m)?|2))?|k[\"\^]*g[\"\^]*m[\"\^]*g[\"\^]*r|h[\"\^]*p(?:[\"\^]*[57])?|u[\"\^]*s[\"\^]*h[\"\^]*d|i[\"\^]*n[\"\^]*g)|r[\"\^]*(?:e[\"\^]*(?:(?:p[\"\^]*l[\"\^]*a[\"\^]*c[\"\^]*e|n(?:[\"\^]*a[\"\^]*m[\"\^]*e)?|s[\"\^]*e[\"\^]*t)[\"\^]*(?:[\s,;]|\.|/|<|>).*|g[\"\^]*(?:s[\"\^]*v[\"\^]*r[\"\^]*3[\"\^]*2|e[\"\^]*d[\"\^]*i[\"\^]*t|(?:[\s,;]|\.|/|<|>).*|i[\"\^]*n[\"\^]*i)|c[\"\^]*(?:d[\"\^]*i[\"\^]*s[\"\^]*c|o[\"\^]*v[\"\^]*e[\"\^]*r)|k[\"\^]*e[\"\^]*y[\"\^]*w[\"\^]*i[\"\^]*z)|u[\"\^]*(?:n[\"\^]*(?:d[\"\^]*l[\"\^]*l[\"\^]*3[\"\^]*2|a[\"\^]*s)|b[\"\^]*y[\"\^]*(?:1(?:[\"\^]*[89])?|2[\"\^]*[012]))|a[\"\^]*(?:s[\"\^]*(?:p[\"\^]*h[\"\^]*o[\"\^]*n[\"\^]*e|d[\"\^]*i[\"\^]*a[\"\^]*l)|r[\"\^]*(?:[\s,;]|\.|/|<|>).*)|m[\"\^]*(?:(?:d[\"\^]*i[\"\^]*r[\"\^]*)?(?:[\s,;]|\.|/|<|>).*|t[\"\^]*s[\"\^]*h[\"\^]*a[\"\^]*r[\"\^]*e)|o[\"\^]*(?:u[\"\^]*t[\"\^]*e[\"\^]*(?:[\s,;]|\.|/|<|>).*|b[\"\^]*o[\"\^]*c[\"\^]*o[\"\^]*p[\"\^]*y)|s[\"\^]*(?:t[\"\^]*r[\"\^]*u[\"\^]*i|y[\"\^]*n[\"\^]*c)|d[\"\^]*(?:[\s,;]|\.|/|<|>).*)|t[\"\^]*(?:a[\"\^]*(?:s[\"\^]*k[\"\^]*(?:k[\"\^]*i[\"\^]*l[\"\^]*l|l[\"\^]*i[\"\^]*s[\"\^]*t|s[\"\^]*c[\"\^]*h[\"\^]*d|m[\"\^]*g[\"\^]*r)|k[\"\^]*e[\"\^]*o[\"\^]*w[\"\^]*n)|(?:i[\"\^]*m[\"\^]*e[\"\^]*o[\"\^]*u|p[\"\^]*m[\"\^]*i[\"\^]*n[\"\^]*i|e[\"\^]*l[\"\^]*n[\"\^]*e|l[\"\^]*i[\"\^]*s)[\"\^]*t|s[\"\^]*(?:d[\"\^]*i[\"\^]*s[\"\^]*c[\"\^]*o|s[\"\^]*h[\"\^]*u[\"\^]*t[\"\^]*d)[\"\^]*n|y[\"\^]*p[\"\^]*e[\"\^]*(?:p[\"\^]*e[\"\^]*r[\"\^]*f|(?:[\s,;]|\.|/|<|>).*)|r[\"\^]*(?:a[\"\^]*c[\"\^]*e[\"\^]*r[\"\^]*t|e[\"\^]*e))|w[\"\^]*(?:i[\"\^]*n[\"\^]*(?:d[\"\^]*i[\"\^]*f[\"\^]*f|m[\"\^]*s[\"\^]*d[\"\^]*p|v[\"\^]*a[\"\^]*r|r[\"\^]*[ms])|u[\"\^]*(?:a[\"\^]*(?:u[\"\^]*c[\"\^]*l[\"\^]*t|p[\"\^]*p)|s[\"\^]*a)|s[\"\^]*c[\"\^]*(?:r[\"\^]*i[\"\^]*p[\"\^]*t|u[\"\^]*i)|e[\"\^]*v[\"\^]*t[\"\^]*u[\"\^]*t[\"\^]*i[\"\^]*l|m[\"\^]*i[\"\^]*(?:m[\"\^]*g[\"\^]*m[\"\^]*t|c)|a[\"\^]*i[\"\^]*t[\"\^]*f[\"\^]*o[\"\^]*r|h[\"\^]*o[\"\^]*a[\"\^]*m[\"\^]*i|g[\"\^]*e[\"\^]*t)|u[\"\^]*(?:s[\"\^]*(?:e[\"\^]*r[\"\^]*a[\"\^]*c[\"\^]*c[\"\^]*o[\"\^]*u[\"\^]*n[\"\^]*t[\"\^]*c[\"\^]*o[\"\^]*n[\"\^]*t[\"\^]*r[\"\^]*o[\"\^]*l[\"\^]*s[\"\^]*e[\"\^]*t[\"\^]*t[\"\^]*i[\"\^]*n[\"\^]*g[\"\^]*s|r[\"\^]*s[\"\^]*t[\"\^]*a[\"\^]*t)|n[\"\^]*(?:r[\"\^]*a[\"\^]*r|z[\"\^]*i[\"\^]*p))|q[\"\^]*(?:u[\"\^]*e[\"\^]*r[\"\^]*y[\"\^]*(?:[\s,;]|\.|/|<|>).*|p[\"\^]*r[\"\^]*o[\"\^]*c[\"\^]*e[\"\^]*s[\"\^]*s|w[\"\^]*i[\"\^]*n[\"\^]*s[\"\^]*t[\"\^]*a|g[\"\^]*r[\"\^]*e[\"\^]*p)|o[\"\^]*(?:d[\"\^]*b[\"\^]*c[\"\^]*(?:a[\"\^]*d[\"\^]*3[\"\^]*2|c[\"\^]*o[\"\^]*n[\"\^]*f)|p[\"\^]*e[\"\^]*n[\"\^]*f[\"\^]*i[\"\^]*l[\"\^]*e[\"\^]*s)|v[\"\^]*(?:o[\"\^]*l[\"\^]*(?:[\s,;]|\.|/|<|>).*|e[\"\^]*r[\"\^]*i[\"\^]*f[\"\^]*y)|x[\"\^]*c[\"\^]*(?:a[\"\^]*c[\"\^]*l[\"\^]*s|o[\"\^]*p[\"\^]*y)|z[\"\^]*i[\"\^]*p[\"\^]*(?:[\s,;]|\.|/|<|>).*)(?:\.[\"\^]*\w+)?\b" \
-    "id:932115,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Remote Command Execution: Windows Command Injection',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-windows',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-# [ Windows PowerShell, cmdlets and options ]
-#
-# Detect some common PowerShell commands, cmdlets and options.
-# These commands should be relatively uncommon in normal text, but
-# potentially useful for code injection.
-#
-# If you are not running Windows, it is safe to disable this rule.
-#
-# https://technet.microsoft.com/en-us/magazine/ff714569.aspx
-# https://msdn.microsoft.com/en-us/powershell/scripting/core-powershell/console/powershell.exe-command-line-help
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@pmFromFile windows-powershell-commands.data" \
-    "id:932120,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,t:cmdLine,t:lowercase,\
-    msg:'Remote Command Execution: Windows PowerShell Command Found',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'language-powershell',\
-    tag:'platform-windows',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-# [ Unix shell expressions ]
-#
-# Detects the following patterns which are common in Unix shell scripts
-# and one-liners:
-#
-# $(foo)    Command substitution
-# ${foo}    Parameter expansion
-# <(foo)    Process substitution
-# >(foo)    Process substitution
-# $((foo))  Arithmetic expansion
-#
-# Regexp generated from util/regexp-assemble/regexp-932130.data using Regexp::Assemble.
-# See https://coreruleset.org/20190826/optimizing-regular-expressions/ for usage.
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:\$(?:\((?:\(.*\)|.*)\)|\{.*\})|[<>]\(.*\))" \
-    "id:932130,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,t:cmdLine,\
-    msg:'Remote Command Execution: Unix Shell Expression Found',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-# [ Windows FOR, IF commands ]
-#
-# This rule detects Windows command shell FOR and IF commands.
-# If you are not running Windows, it is safe to disable this rule.
-#
-# Examples:
-#
-#   FOR              %a IN (set) DO
-#   FOR /D           %a IN (dirs) DO
-#   FOR /F "options" %a IN (text|"text") DO
-#   FOR /L           %a IN (start,step,end) DO
-#   FOR /R C:\dir    %A IN (set) DO
-#
-#   IF [/I] [NOT] EXIST filename | DEFINED define | ERRORLEVEL n | CMDEXTVERSION n
-#   IF [/I] [NOT] item1   [==|EQU|NEQ|LSS|LEQ|GTR|GEQ] item2
-#   IF [/I] [NOT] (item1) [==|EQU|NEQ|LSS|LEQ|GTR|GEQ] (item2)
-#
-# http://ss64.com/nt/if.html
-# http://ss64.com/nt/for.html
-#
-# Regexp generated from util/regexp-assemble/regexp-932140.data using Regexp::Assemble.
-# See https://coreruleset.org/20190826/optimizing-regular-expressions/ for usage.
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx \b(?:if(?:/i)?(?: not)?(?: exist\b| defined\b| errorlevel\b| cmdextversion\b|(?: |\().*(?:\bgeq\b|\bequ\b|\bneq\b|\bleq\b|\bgtr\b|\blss\b|==))|for(?:/[dflr].*)? %+[^ ]+ in\(.*\)\s?do)" \
-    "id:932140,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,t:cmdLine,\
-    msg:'Remote Command Execution: Windows FOR/IF Command Found',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-windows',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-# [ Unix direct remote command execution ]
-#
-# Detects Unix commands at the start of a parameter (direct RCE).
-# Example: foo=wget%20www.example.com
-#
-# This case is different from command injection (rule 932100), where a
-# command string is appended (injected) to a regular parameter, and then
-# passed to a shell unescaped.
-#
-# This rule is also triggered by an Oracle WebLogic Remote Command Execution exploit:
-# [ Oracle WebLogic vulnerability CVE-2017-10271 - Exploit tested: https://www.exploit-db.com/exploits/43458 ]
-#
-# Due to a higher risk of false positives, the following changes have been
-# made relative to rule 932100:
-# 1) the set of commands is smaller
-# 2) we require a trailing space (denoting command parameters) or command
-#    separator character after the command
-#
-# To rebuild the word list regexp:
-#   cd util/regexp-assemble
-#   cat regexp-932150.txt | ./regexp-cmdline.py unix | ./regexp-assemble.pl
-#
-# Then insert the assembled regexp into this template:
-#
-# SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:^|=)\s*(?:{|\s*\(\s*|\w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+|!\s*|\$)*\s*(?:'|\")*(?:[\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/)?[\\\\'\"]*
-# [regexp assembled from util/regexp-assemble/regexp-932150.txt]
-# [\\\\'\"]*(?:\s|;|\||&|<|>)" \
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:^|=)\s*(?:{|\s*\(\s*|\w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+|!\s*|\$)*\s*(?:'|\")*(?:[\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/)?[\\\\'\"]*(?:l[\\\\'\"]*(?:s(?:[\\\\'\"]*(?:b[\\\\'\"]*_[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*l[\\\\'\"]*e[\\\\'\"]*a[\\\\'\"]*s[\\\\'\"]*e|c[\\\\'\"]*p[\\\\'\"]*u|m[\\\\'\"]*o[\\\\'\"]*d|p[\\\\'\"]*c[\\\\'\"]*i|u[\\\\'\"]*s[\\\\'\"]*b|-[\\\\'\"]*F|o[\\\\'\"]*f))?|z[\\\\'\"]*(?:(?:[ef][\\\\'\"]*)?g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|c[\\\\'\"]*(?:a[\\\\'\"]*t|m[\\\\'\"]*p)|m[\\\\'\"]*(?:o[\\\\'\"]*r[\\\\'\"]*e|a)|d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|l[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s)|e[\\\\'\"]*s[\\\\'\"]*s[\\\\'\"]*(?:(?:f[\\\\'\"]*i[\\\\'\"]*l|p[\\\\'\"]*i[\\\\'\"]*p)[\\\\'\"]*e|e[\\\\'\"]*c[\\\\'\"]*h[\\\\'\"]*o)|a[\\\\'\"]*s[\\\\'\"]*t[\\\\'\"]*(?:l[\\\\'\"]*o[\\\\'\"]*g(?:[\\\\'\"]*i[\\\\'\"]*n)?|c[\\\\'\"]*o[\\\\'\"]*m[\\\\'\"]*m)|w[\\\\'\"]*p(?:[\\\\'\"]*-[\\\\'\"]*d[\\\\'\"]*o[\\\\'\"]*w[\\\\'\"]*n[\\\\'\"]*l[\\\\'\"]*o[\\\\'\"]*a[\\\\'\"]*d)?|f[\\\\'\"]*t[\\\\'\"]*p(?:[\\\\'\"]*g[\\\\'\"]*e[\\\\'\"]*t)?|y[\\\\'\"]*n[\\\\'\"]*x)|s[\\\\'\"]*(?:e[\\\\'\"]*(?:t[\\\\'\"]*(?:e[\\\\'\"]*n[\\\\'\"]*v|s[\\\\'\"]*i[\\\\'\"]*d)|n[\\\\'\"]*d[\\\\'\"]*m[\\\\'\"]*a[\\\\'\"]*i[\\\\'\"]*l|d)|h(?:[\\\\'\"]*\.[\\\\'\"]*d[\\\\'\"]*i[\\\\'\"]*s[\\\\'\"]*t[\\\\'\"]*r[\\\\'\"]*i[\\\\'\"]*b)?|o[\\\\'\"]*(?:u[\\\\'\"]*r[\\\\'\"]*c[\\\\'\"]*e|c[\\\\'\"]*a[\\\\'\"]*t)|t[\\\\'\"]*r[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*g[\\\\'\"]*s|y[\\\\'\"]*s[\\\\'\"]*c[\\\\'\"]*t[\\\\'\"]*l|c[\\\\'\"]*(?:h[\\\\'\"]*e[\\\\'\"]*d|p)|d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|f[\\\\'\"]*t[\\\\'\"]*p|u[\\\\'\"]*d[\\\\'\"]*o|s[\\\\'\"]*h|v[\\\\'\"]*n)|p[\\\\'\"]*(?:t[\\\\'\"]*a[\\\\'\"]*r(?:[\\\\'\"]*(?:d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p))?|y[\\\\'\"]*t[\\\\'\"]*h[\\\\'\"]*o[\\\\'\"]*n(?:[\\\\'\"]*(?:3(?:[\\\\'\"]*m)?|2))?|k[\\\\'\"]*(?:e[\\\\'\"]*x[\\\\'\"]*e[\\\\'\"]*c|i[\\\\'\"]*l[\\\\'\"]*l)|r[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*t[\\\\'\"]*e[\\\\'\"]*n[\\\\'\"]*v|(?:g[\\\\'\"]*r[\\\\'\"]*e|f[\\\\'\"]*t)[\\\\'\"]*p|e[\\\\'\"]*r[\\\\'\"]*l(?:[\\\\'\"]*5)?|h[\\\\'\"]*p(?:[\\\\'\"]*[57])?|i[\\\\'\"]*n[\\\\'\"]*g|o[\\\\'\"]*p[\\\\'\"]*d)|n[\\\\'\"]*(?:c(?:[\\\\'\"]*(?:\.[\\\\'\"]*(?:t[\\\\'\"]*r[\\\\'\"]*a[\\\\'\"]*d[\\\\'\"]*i[\\\\'\"]*t[\\\\'\"]*i[\\\\'\"]*o[\\\\'\"]*n[\\\\'\"]*a[\\\\'\"]*l|o[\\\\'\"]*p[\\\\'\"]*e[\\\\'\"]*n[\\\\'\"]*b[\\\\'\"]*s[\\\\'\"]*d)|a[\\\\'\"]*t))?|e[\\\\'\"]*t[\\\\'\"]*(?:k[\\\\'\"]*i[\\\\'\"]*t[\\\\'\"]*-[\\\\'\"]*f[\\\\'\"]*t[\\\\'\"]*p|(?:s[\\\\'\"]*t|c)[\\\\'\"]*a[\\\\'\"]*t)|o[\\\\'\"]*h[\\\\'\"]*u[\\\\'\"]*p|p[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*g|s[\\\\'\"]*t[\\\\'\"]*a[\\\\'\"]*t)|t[\\\\'\"]*(?:c[\\\\'\"]*(?:p[\\\\'\"]*(?:t[\\\\'\"]*r[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*e[\\\\'\"]*r[\\\\'\"]*o[\\\\'\"]*u[\\\\'\"]*t[\\\\'\"]*e|i[\\\\'\"]*n[\\\\'\"]*g)|s[\\\\'\"]*h)|r[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*e[\\\\'\"]*r[\\\\'\"]*o[\\\\'\"]*u[\\\\'\"]*t[\\\\'\"]*e(?:[\\\\'\"]*6)?|i[\\\\'\"]*m[\\\\'\"]*e(?:[\\\\'\"]*o[\\\\'\"]*u[\\\\'\"]*t)?|a[\\\\'\"]*(?:i[\\\\'\"]*l(?:[\\\\'\"]*f)?|r)|e[\\\\'\"]*l[\\\\'\"]*n[\\\\'\"]*e[\\\\'\"]*t)|r[\\\\'\"]*(?:e[\\\\'\"]*(?:p[\\\\'\"]*(?:l[\\\\'\"]*a[\\\\'\"]*c[\\\\'\"]*e|e[\\\\'\"]*a[\\\\'\"]*t)|a[\\\\'\"]*l[\\\\'\"]*p[\\\\'\"]*a[\\\\'\"]*t[\\\\'\"]*h|n[\\\\'\"]*a[\\\\'\"]*m[\\\\'\"]*e)|u[\\\\'\"]*b[\\\\'\"]*y(?:[\\\\'\"]*(?:1(?:[\\\\'\"]*[89])?|2[\\\\'\"]*[012]))?|m[\\\\'\"]*(?:u[\\\\'\"]*s[\\\\'\"]*e|d[\\\\'\"]*i)[\\\\'\"]*r|n[\\\\'\"]*a[\\\\'\"]*n[\\\\'\"]*o|s[\\\\'\"]*y[\\\\'\"]*n[\\\\'\"]*c|c[\\\\'\"]*p)|b[\\\\'\"]*(?:z[\\\\'\"]*(?:(?:[ef][\\\\'\"]*)?g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|l[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|m[\\\\'\"]*o[\\\\'\"]*r[\\\\'\"]*e|c[\\\\'\"]*a[\\\\'\"]*t)|s[\\\\'\"]*d[\\\\'\"]*(?:c[\\\\'\"]*a[\\\\'\"]*t|i[\\\\'\"]*f[\\\\'\"]*f|t[\\\\'\"]*a[\\\\'\"]*r)|u[\\\\'\"]*i[\\\\'\"]*l[\\\\'\"]*t[\\\\'\"]*i[\\\\'\"]*n|a[\\\\'\"]*s[\\\\'\"]*h)|m[\\\\'\"]*(?:y[\\\\'\"]*s[\\\\'\"]*q[\\\\'\"]*l[\\\\'\"]*(?:d[\\\\'\"]*u[\\\\'\"]*m[\\\\'\"]*p(?:[\\\\'\"]*s[\\\\'\"]*l[\\\\'\"]*o[\\\\'\"]*w)?|h[\\\\'\"]*o[\\\\'\"]*t[\\\\'\"]*c[\\\\'\"]*o[\\\\'\"]*p[\\\\'\"]*y|a[\\\\'\"]*d[\\\\'\"]*m[\\\\'\"]*i[\\\\'\"]*n|s[\\\\'\"]*h[\\\\'\"]*o[\\\\'\"]*w)|l[\\\\'\"]*o[\\\\'\"]*c[\\\\'\"]*a[\\\\'\"]*t[\\\\'\"]*e|a[\\\\'\"]*i[\\\\'\"]*l[\\\\'\"]*q)|u[\\\\'\"]*(?:n[\\\\'\"]*(?:c[\\\\'\"]*o[\\\\'\"]*m[\\\\'\"]*p[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|l[\\\\'\"]*z[\\\\'\"]*m[\\\\'\"]*a|a[\\\\'\"]*m[\\\\'\"]*e|r[\\\\'\"]*a[\\\\'\"]*r|s[\\\\'\"]*e[\\\\'\"]*t|z[\\\\'\"]*i[\\\\'\"]*p|x[\\\\'\"]*z)|s[\\\\'\"]*e[\\\\'\"]*r[\\\\'\"]*(?:(?:a[\\\\'\"]*d|m[\\\\'\"]*o)[\\\\'\"]*d|d[\\\\'\"]*e[\\\\'\"]*l))|x[\\\\'\"]*(?:z(?:[\\\\'\"]*(?:(?:[ef][\\\\'\"]*)?g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|d[\\\\'\"]*(?:i[\\\\'\"]*f[\\\\'\"]*f|e[\\\\'\"]*c)|c[\\\\'\"]*(?:a[\\\\'\"]*t|m[\\\\'\"]*p)|l[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|m[\\\\'\"]*o[\\\\'\"]*r[\\\\'\"]*e))?|a[\\\\'\"]*r[\\\\'\"]*g[\\\\'\"]*s)|z[\\\\'\"]*(?:(?:(?:[ef][\\\\'\"]*)?g[\\\\'\"]*r[\\\\'\"]*e|i)[\\\\'\"]*p|c[\\\\'\"]*(?:a[\\\\'\"]*t|m[\\\\'\"]*p)|d[\\\\'\"]*i[\\\\'\"]*f[\\\\'\"]*f|l[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*s|m[\\\\'\"]*o[\\\\'\"]*r[\\\\'\"]*e|r[\\\\'\"]*u[\\\\'\"]*n|s[\\\\'\"]*h)|f[\\\\'\"]*(?:t[\\\\'\"]*p[\\\\'\"]*(?:s[\\\\'\"]*t[\\\\'\"]*a[\\\\'\"]*t[\\\\'\"]*s|w[\\\\'\"]*h[\\\\'\"]*o)|i[\\\\'\"]*l[\\\\'\"]*e[\\\\'\"]*t[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*t|e[\\\\'\"]*t[\\\\'\"]*c[\\\\'\"]*h|g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p)|c[\\\\'\"]*(?:o[\\\\'\"]*(?:m[\\\\'\"]*m[\\\\'\"]*a[\\\\'\"]*n[\\\\'\"]*d|p[\\\\'\"]*r[\\\\'\"]*o[\\\\'\"]*c)|u[\\\\'\"]*r[\\\\'\"]*l|s[\\\\'\"]*h|c)|e[\\\\'\"]*(?:g[\\\\'\"]*r[\\\\'\"]*e[\\\\'\"]*p|c[\\\\'\"]*h[\\\\'\"]*o|v[\\\\'\"]*a[\\\\'\"]*l|x[\\\\'\"]*e[\\\\'\"]*c|n[\\\\'\"]*v)|d[\\\\'\"]*(?:m[\\\\'\"]*e[\\\\'\"]*s[\\\\'\"]*g|a[\\\\'\"]*s[\\\\'\"]*h|i[\\\\'\"]*f[\\\\'\"]*f|o[\\\\'\"]*a[\\\\'\"]*s)|g[\\\\'\"]*(?:z[\\\\'\"]*(?:c[\\\\'\"]*a[\\\\'\"]*t|i[\\\\'\"]*p)|r[\\\\'\"]*e[\\\\'\"]*p|c[\\\\'\"]*c)|j[\\\\'\"]*(?:o[\\\\'\"]*b[\\\\'\"]*s[\\\\'\"]*\s+[\\\\'\"]*-[\\\\'\"]*x|a[\\\\'\"]*v[\\\\'\"]*a)|w[\\\\'\"]*(?:h[\\\\'\"]*o[\\\\'\"]*a[\\\\'\"]*m[\\\\'\"]*i|g[\\\\'\"]*e[\\\\'\"]*t|3[\\\\'\"]*m)|i[\\\\'\"]*r[\\\\'\"]*b(?:[\\\\'\"]*(?:1(?:[\\\\'\"]*[89])?|2[\\\\'\"]*[012]))?|o[\\\\'\"]*n[\\\\'\"]*i[\\\\'\"]*n[\\\\'\"]*t[\\\\'\"]*r|h[\\\\'\"]*(?:e[\\\\'\"]*a[\\\\'\"]*d|u[\\\\'\"]*p)|v[\\\\'\"]*i[\\\\'\"]*(?:g[\\\\'\"]*r|p[\\\\'\"]*w)|G[\\\\'\"]*E[\\\\'\"]*T)[\\\\'\"]*(?:\s|;|\||&|<|>)" \
-    "id:932150,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Remote Command Execution: Direct Unix Command Execution',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-# [ Unix shell snippets ]
-#
-# Detect some common sequences found in shell commands and scripts.
-#
-# Some commands which were restricted in earlier rules due to FP,
-# have been added here with their full path, in order to catch some
-# cases where the full path is sent.
-#
-# This rule is also triggered by an Apache Struts Remote Code Execution exploit:
-# [ Apache Struts vulnerability CVE-2017-9805 - Exploit tested: https://www.exploit-db.com/exploits/42627 ]
-#
-# This rule is also triggered by an Oracle WebLogic Remote Command Execution exploit:
-# [ Oracle WebLogic vulnerability CVE-2017-10271 - Exploit tested: https://www.exploit-db.com/exploits/43458 ]
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@pmFromFile unix-shell.data" \
-    "id:932160,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,t:cmdLine,t:normalizePath,t:lowercase,\
-    msg:'Remote Command Execution: Unix Shell Code Found',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-# [ Shellshock vulnerability (CVE-2014-6271 and CVE-2014-7169) ]
-#
-# Detect exploitation of "Shellshock" GNU Bash RCE vulnerability.
-#
-# Based on ModSecurity rules created by Red Hat.
-# Permission for use was granted by Martin Prpic <secalert@redhat.com>
-#
-# https://access.redhat.com/articles/1212303
-#
-SecRule REQUEST_HEADERS|REQUEST_LINE "@rx ^\(\s*\)\s+{" \
-    "id:932170,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecode,\
-    msg:'Remote Command Execution: Shellshock (CVE-2014-6271)',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule ARGS_NAMES|ARGS|FILES_NAMES "@rx ^\(\s*\)\s+{" \
-    "id:932171,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecode,t:urlDecodeUni,\
-    msg:'Remote Command Execution: Shellshock (CVE-2014-6271)',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ Restricted File Upload ]=-
-#
-# Detects attempts to upload a file with a forbidden filename.
-#
-# Many application contain Unrestricted File Upload vulnerabilities.
-# https://www.owasp.org/index.php/Unrestricted_File_Upload
-#
-# These might be abused to upload configuration files or other files
-# that affect the behavior of the web server, possibly causing remote
-# code execution.
-#
-SecRule FILES|REQUEST_HEADERS:X-Filename|REQUEST_HEADERS:X_Filename|REQUEST_HEADERS:X-File-Name \
-    "@pmFromFile restricted-upload.data" \
-    "id:932180,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:lowercase,\
-    msg:'Restricted File Upload Attempt',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:932013,phase:1,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:932014,phase:2,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-#
-# -=[ Rule 932200 ]=-
-#
-# Block RCE Bypass using different techniques:
-# - uninitialized variables (https://www.secjuice.com/web-application-firewall-waf-evasion/)
-# - string concatenations (https://medium.com/secjuice/web-application-firewall-waf-evasion-techniques-2-125995f3e7b0)
-# - globbing patterns (https://medium.com/secjuice/waf-evasion-techniques-718026d693d8)
-#
-# Examples:
-# - foo;cat$u+/etc$u/passwd
-# - bar;cd+/etc;/bin$u/ca*+passwd
-# - foo;ca\t+/et\c/pa\s\swd
-# - foo;c'at'+/etc/pa's'swd
-#
-# Regex notes: https://regex101.com/r/JgZFRi/7
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ([*?`\\'][^/\n]+/|\$[({\[#a-zA-Z0-9]|/[^/]+?[*?`\\'])" \
-    "id:932200,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:lowercase,t:urlDecodeUni,\
-    msg:'RCE Bypass Technique',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-rce',\
-    tag:'paranoia-level/2',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule MATCHED_VAR "@rx /" "t:none,t:urlDecodeUni,chain"
-        SecRule MATCHED_VAR "@rx \s" "t:none,t:urlDecodeUni,\
-            setvar:'tx.lfi_score=+%{tx.critical_anomaly_score}',\
-            setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:932015,phase:1,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:932016,phase:2,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-# Missing Unix commands have been added to a new word list i.e.
-# util/regexp-assemble/regexp-932106.txt
-# These commands may have a higher risk of false positives.
-# Therefore, they have been split off to a separate rule in PL3.
-# For explanation of this rule, see rule 932100.
-#
-# To rebuild the word list regexp:
-#   cd util/regexp-assemble
-#   cat regexp-932106.txt | ./regexp-cmdline.py unix | ./regexp-assemble.pl
-#
-# Then insert the assembled regexp into this template:
-#
-# SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:;|\{|\||\|\||&|&&|\n|\r|\$\(|\$\(\(|`|\${|<\(|>\(|\(\s*\))\s*(?:{|\s*\(\s*|\w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+|!\s*|\$)*\s*(?:'|\")*(?:[\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/)?[\\\\'\"]*
-# [regexp assembled from util/regexp-assemble/regexp-932106.txt]
-# \b" \
-#
-# This rule is a stricter sibling of rule 932100.
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:;|\{|\||\|\||&|&&|\n|\r|\$\(|\$\(\(|`|\${|<\(|>\(|\(\s*\))\s*(?:{|\s*\(\s*|\w+=(?:[^\s]*|\$.*|\$.*|<.*|>.*|\'.*\'|\".*\")\s+|!\s*|\$)*\s*(?:'|\")*(?:[\?\*\[\]\(\)\-\|+\w'\"\./\\\\]+/)?[\\\\'\"]*(?:(?:(?:a[\\\\'\"]*p[\\\\'\"]*t[\\\\'\"]*i[\\\\'\"]*t[\\\\'\"]*u[\\\\'\"]*d|u[\\\\'\"]*p[\\\\'\"]*2[\\\\'\"]*d[\\\\'\"]*a[\\\\'\"]*t)[\\\\'\"]*e|d[\\\\'\"]*n[\\\\'\"]*f|v[\\\\'\"]*i)[\\\\'\"]*(?:\s|<|>).*|p[\\\\'\"]*(?:a[\\\\'\"]*c[\\\\'\"]*m[\\\\'\"]*a[\\\\'\"]*n[\\\\'\"]*(?:\s|<|>).*|w[\\\\'\"]*d|s)|w[\\\\'\"]*(?:(?:\s|<|>).*|h[\\\\'\"]*o))\b" \
-    "id:932106,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Remote Command Execution: Unix Command Injection',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
-
-#
-# -=[ Bypass Rule 930120 (wildcard) ]=-
-#
-# When Paranoia Level is set to 1 and 2, a Remote Command Execution
-# could be exploited bypassing rule 930120 (OS File Access Attempt)
-# by using wildcard characters.
-#
-# In some other cases, it could be bypassed even if the Paranoia Level is set to 3.
-# Please, keep in mind that this rule could lead to many false positives.
-#
-SecRule ARGS "@rx (?:/|\\\\)(?:[\?\*]+[a-z/\\\\]+|[a-z/\\\\]+[\?\*]+)" \
-    "id:932190,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecode,t:urlDecodeUni,t:normalizePath,t:cmdLine,\
-    msg:'Remote Command Execution: Wildcard bypass technique attempt',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-shell',\
-    tag:'platform-unix',\
-    tag:'attack-rce',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/88',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:932017,phase:1,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:932018,phase:2,pass,nolog,skipAfter:END-REQUEST-932-APPLICATION-ATTACK-RCE"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-932-APPLICATION-ATTACK-RCE"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf
deleted file mode 100644
index 89f495a94c..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf
+++ /dev/null
@@ -1,96 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:934011,phase:1,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:934012,phase:2,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-
-# [ Insecure unserialization / generic RCE signatures ]
-#
-# Libraries performing insecure unserialization:
-# - node-serialize: _$$ND_FUNC$$_ (CVE-2017-5941)
-# - funcster: __js_function
-#
-# See:
-# https://opsecx.com/index.php/2017/02/08/exploiting-node-js-deserialization-bug-for-remote-code-execution/
-# https://www.acunetix.com/blog/web-security-zone/deserialization-vulnerabilities-attacking-deserialization-in-js/
-#
-# Some generic snippets used:
-# - function() {
-# - new Function(
-# - eval(
-# - String.fromCharCode(
-#
-# Last two are used by nodejsshell.py,
-# https://github.com/ajinabraham/Node.Js-Security-Course/blob/master/nodejsshell.py
-#
-# As base64 is sometimes (but not always) used to encode serialized values,
-# use multiMatch and t:base64decode.
-#
-# Regexp generated from util/regexp-assemble/regexp-934100.data using Regexp::Assemble.
-# See https://coreruleset.org/20190826/optimizing-regular-expressions/ for usage.
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:(?:_(?:\$\$ND_FUNC\$\$_|_js_function)|(?:new\s+Function|\beval)\s*\(|String\s*\.\s*fromCharCode|function\s*\(\s*\)\s*{|this\.constructor)|module\.exports\s*=)" \
-    "id:934100,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,t:base64Decode,\
-    msg:'Node.js Injection Attack',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-javascript',\
-    tag:'platform-multi',\
-    tag:'attack-rce',\
-    tag:'attack-injection-nodejs',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/242',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    multiMatch,\
-    setvar:'tx.rce_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:934013,phase:1,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:934014,phase:2,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:934015,phase:1,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:934016,phase:2,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:934017,phase:1,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:934018,phase:2,pass,nolog,skipAfter:END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-934-APPLICATION-ATTACK-NODEJS"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-942-APPLICATION-ATTACK-SQLI.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
deleted file mode 100644
index 53b0af6f54..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
+++ /dev/null
@@ -1,1596 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:942011,phase:1,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:942012,phase:2,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-#
-# References:
-#
-# SQL Injection Knowledgebase (via @LightOS) -
-# http://websec.ca/kb/sql_injection
-#
-# SQLi Filter Evasion Cheat Sheet -
-# http://websec.wordpress.com/2010/12/04/sqli-filter-evasion-cheat-sheet-mysql/
-#
-# SQL Injection Cheat Sheet -
-# http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/
-#
-# SQLMap's Tamper Scripts (for evasions)
-# https://svn.sqlmap.org/sqlmap/trunk/sqlmap/tamper/
-#
-
-#
-# -=[ LibInjection Check ]=-
-#
-# There is a stricter sibling of this rule at 941101. It covers REQUEST_BASENAME.
-#
-# Ref: https://libinjection.client9.com/
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|REQUEST_HEADERS:User-Agent|REQUEST_HEADERS:Referer|ARGS_NAMES|ARGS|XML:/* "@detectSQLi" \
-    "id:942100,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,t:removeNulls,\
-    msg:'SQL Injection Attack Detected via libinjection',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    multiMatch,\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ Detect DB Names ]=-
-#
-# Regexp generated from util/regexp-assemble/regexp-942140.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942140.data
-# Note that after assemble an outer bracket with an ignore case flag and a word boundary is added
-# to the Regexp::Assemble output:
-#   Add ignore case flag and word boundary: "(?i:\bASSEMBLE_OUTPUT)"
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:\b(?:(?:m(?:s(?:ys(?:ac(?:cess(?:objects|storage|xml)|es)|(?:relationship|object|querie)s|modules2?)|db)|aster\.\.sysdatabases|ysql\.db)|pg_(?:catalog|toast)|information_schema|northwind|tempdb)\b|s(?:(?:ys(?:\.database_name|aux)|qlite(?:_temp)?_master)\b|chema(?:_name\b|\W*\())|d(?:atabas|b_nam)e\W*\())" \
-    "id:942140,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Injection Attack: Common DB Names Detected',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ PHPIDS - Converted SQLI Filters ]=-
-#
-# https://raw.github.com/PHPIDS/PHPIDS/master/lib/IDS/default_filter.xml
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:sleep\(\s*?\d*?\s*?\)|benchmark\(.*?\,.*?\))" \
-    "id:942160,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects blind sqli tests using sleep() or benchmark()',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942170.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942170.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:select|;)\s+(?:benchmark|sleep|if)\s*?\(\s*?\(?\s*?\w+)" \
-    "id:942170,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects SQL benchmark and sleep injection attempts including conditional queries',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942190.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942190.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:[\"'`](?:;?\s*?(?:having|select|union)\b\s*?[^\s]|\s*?!\s*?[\"'`\w])|(?:c(?:onnection_id|urrent_user)|database)\s*?\([^\)]*?|u(?:nion(?:[\w(\s]*?select| select @)|ser\s*?\([^\)]*?)|s(?:chema\s*?\([^\)]*?|elect.*?\w?user\()|into[\s+]+(?:dump|out)file\s*?[\"'`]|\s*?exec(?:ute)?.*?\Wxp_cmdshell|from\W+information_schema\W|exec(?:ute)?\s+master\.|\wiif\s*?\())" \
-    "id:942190,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects MSSQL code execution and information gathering attempts',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx ^(?i:-0000023456|4294967295|4294967296|2147483648|2147483647|0000012345|-2147483648|-2147483649|0000023456|3.0.00738585072007e-308|1e309)$" \
-    "id:942220,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Looking for integer overflow attacks, these are taken from skipfish, except 3.0.00738585072007e-308 is the \"magic number\" crash',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:[\s()]case\s*?\(|\)\s*?like\s*?\(|having\s*?[^\s]+\s*?[^\w\s]|if\s?\([\d\w]\s*?[=<>~])" \
-    "id:942230,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects conditional SQL injection attempts',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942240.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942240.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:[\"'`](?:;*?\s*?waitfor\s+(?:delay|time)\s+[\"'`]|;.*?:\s*?goto)|alter\s*?\w+.*?cha(?:racte)?r\s+set\s+\w+))" \
-    "id:942240,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects MySQL charset switch and MSSQL DoS attempts',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:merge.*?using\s*?\(|execute\s*?immediate\s*?[\"'`]|match\s*?[\w(),+-]+\s*?against\s*?\()" \
-    "id:942250,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects MATCH AGAINST, MERGE and EXECUTE IMMEDIATE injections',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)union.*?select.*?from" \
-    "id:942270,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Looking for basic sql injection. Common attack string for mysql, oracle and others',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942280.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942280.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:;\s*?shutdown\s*?(?:[#;]|\/\*|--|\{)|waitfor\s*?delay\s?[\"'`]+\s?\d|select\s*?pg_sleep))" \
-    "id:942280,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects Postgres pg_sleep injection, waitfor delay attacks and database shutdown attempts',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:\[\$(?:ne|eq|lte?|gte?|n?in|mod|all|size|exists|type|slice|x?or|div|like|between|and)\]))" \
-    "id:942290,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Finds basic MongoDB SQL injection attempts',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942320.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942320.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:create\s+(?:procedure|function)\s*?\w+\s*?\(\s*?\)\s*?-|;\s*?(?:declare|open)\s+[\w-]+|procedure\s+analyse\s*?\(|declare[^\w]+[@#]\s*?\w+|exec\s*?\(\s*?\@))" \
-    "id:942320,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects MySQL and PostgreSQL stored procedure/function injections',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942350.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942350.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:;\s*?(?:(?:(?:trunc|cre|upd)at|renam)e|(?:inser|selec)t|de(?:lete|sc)|alter|load)\b\s*?[\[(]?\w{2,}|create\s+function\s+.+\s+returns))" \
-    "id:942350,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects MySQL UDF injection and other data/structure manipulation attempts',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-# This rule has a stricter sibling: 942361.
-# The keywords 'alter' and 'union' led to false positives.
-# Therefore they have been moved to PL2 and the keywords have been extended on PL1.
-#
-# Sources for SQL ALTER statements:
-# MySQL: https://dev.mysql.com/doc/refman/5.7/en/sql-syntax-data-definition.html
-# Oracle/PLSQL: https://docs.oracle.com/apps/search/search.jsp?q=alter&size=60&category=database
-# PostgreQSL: https://www.postgresql.org/search/?u=%2Fdocs&q=alter
-# MSSQL: https://docs.microsoft.com/en-us/sql/t-sql/statements/statements
-# DB2: https://www.ibm.com/support/knowledgecenter/en/search/alter?scope=SSEPGG_9.5.0
-#
-# Regexp generated from util/regexp-assemble/regexp-942360.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942360.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:^[\W\d]+\s*?(?:(?:alter\s*(?:a(?:(?:pplication\s*rol|ggregat)e|s(?:ymmetric\s*ke|sembl)y|u(?:thorization|dit)|vailability\s*group)|c(?:r(?:yptographic\s*provider|edential)|o(?:l(?:latio|um)|nversio)n|ertificate|luster)|s(?:e(?:rv(?:ice|er)|curity|quence|ssion|arch)|y(?:mmetric\s*key|nonym)|togroup|chema)|m(?:a(?:s(?:ter\s*key|k)|terialized)|e(?:ssage\s*type|thod)|odule)|l(?:o(?:g(?:file\s*group|in)|ckdown)|a(?:ngua|r)ge|ibrary)|t(?:(?:abl(?:espac)?|yp)e|r(?:igger|usted)|hreshold|ext)|p(?:a(?:rtition|ckage)|ro(?:cedur|fil)e|ermission)|d(?:i(?:mension|skgroup)|atabase|efault|omain)|r(?:o(?:l(?:lback|e)|ute)|e(?:sourc|mot)e)|f(?:u(?:lltext|nction)|lashback|oreign)|e(?:xte(?:nsion|rnal)|(?:ndpoi|ve)nt)|in(?:dex(?:type)?|memory|stance)|b(?:roker\s*priority|ufferpool)|x(?:ml\s*schema|srobject)|w(?:ork(?:load)?|rapper)|hi(?:erarchy|stogram)|o(?:perator|utline)|(?:nicknam|queu)e|us(?:age|er)|group|java|view)|u(?:nion\s*(?:(?:distin|sele)ct|all)|pdate)|(?:truncat|renam)e|(?:inser|selec)t|de(?:lete|sc)|load)\b|create\s+\w+)|(?:(?:(?:trunc|cre|upd)at|renam)e|(?:inser|selec)t|de(?:lete|sc)|alter|load)\s+(?:group_concat|load_file|char)\s?\(?|[\d\W]\s+as\b\s*[\"'`\w]+\s*\bfrom|[\s(]load_file\s*?\(|[\"'`]\s+regexp\W|end\s*?\);))" \
-    "id:942360,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects concatenated basic SQL injection and SQLLFI attempts',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-#
-# -=[ Detect MySQL in-line comments ]=-
-#
-# MySQL in-line comments can be used to bypass SQLi detection.
-#
-# Ref: https://dev.mysql.com/doc/refman/8.0/en/comments.html:
-# SELECT /*! STRAIGHT_JOIN */ col1 FROM table1,table2 WHERE ...
-# CREATE TABLE t1(a INT, KEY (a)) /*!50110 KEY_BLOCK_SIZE=1024 */;
-# SELECT /*+ BKA(t1) */ FROM ... ;
-#
-# http://localhost/test.php?id=9999+or+{if+length((/*!5000select+username/*!50000from*/user+where+id=1))>0}
-#
-# The minimal string that triggers this regexp is: /*!*/ or /*+*/.
-# The rule 942500 is related to 942440 which catches both /*! and */ independently.
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:/\*[!+](?:[\w\s=_\-()]+)?\*/)" \
-    "id:942500,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'MySQL in-line comment detected',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:942013,phase:1,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:942014,phase:2,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-#
-# -=[ String Termination/Statement Ending Injection Testing ]=-
-#
-# Identifies common initial SQLi probing requests where attackers insert/append
-# quote characters to the existing normal payload to see how the app/db responds.
-#
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-SecRule ARGS_NAMES|ARGS|XML:/* "@rx (?:^\s*[\"'`;]+|[\"'`]+\s*$)" \
-    "id:942110,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,\
-    msg:'SQL Injection Attack: Common Injection Testing Detected',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'WARNING',\
-    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.warning_anomaly_score}'"
-
-
-#
-# -=[ SQL Operators ]=-
-#
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-# Regexp generated from util/regexp-assemble/regexp-942120.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942120.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:(?:^|\W)in[+\s]*\([\s\d\"]+[^()]*\)|\b(?:r(?:egexp|like)|isnull|xor)\b|<(?:>(?:\s+binary)?|=>?|<)|r(?:egexp|like)\s+binary|not\s+between\s+0\s+and|(?:like|is)\s+null|>[=>]|\|\||!=|&&))" \
-    "id:942120,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,\
-    msg:'SQL Injection Attack: SQL Operator Detected',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ SQL Tautologies ]=-
-#
-# Regexp generated from util/regexp-assemble/regexp-942130.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942130.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-# Not supported by re2 (backreferences, lookaheads).
-#
-SecRule ARGS_NAMES|ARGS|XML:/* "@rx (?i:[\s'\"`()]*?\b([\d\w]+)\b[\s'\"`()]*?(?:<(?:=(?:[\s'\"`()]*?(?!\b\1\b)[\d\w]+|>[\s'\"`()]*?(?:\b\1\b))|>?[\s'\"`()]*?(?!\b\1\b)[\d\w]+)|(?:not\s+(?:regexp|like)|is\s+not|>=?|!=|\^)[\s'\"`()]*?(?!\b\1\b)[\d\w]+|(?:(?:sounds\s+)?like|r(?:egexp|like)|=)[\s'\"`()]*?(?:\b\1\b)))" \
-    "id:942130,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,t:replaceComments,\
-    msg:'SQL Injection Attack: SQL Tautology Detected',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    multiMatch,\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ SQL Function Names ]=-
-#
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-# Regexp generated from util/regexp-assemble/regexp-942150.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942150.data
-# Note that after assemble an ignore case flag and a word boundary is added
-# in front of the Regexp::Assemble output.
-# And a non-word character and an opening bracket is added behind the Regexp::Assemble output:
-#   (?i)\bASSEMBLE_OUTPUT\W*\(
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\b(?:c(?:o(?:n(?:v(?:ert(?:_tz)?)?|cat(?:_ws)?|nection_id)|(?:mpres)?s|ercibility|(?:un)?t|llation|alesce)|ur(?:rent_(?:time(?:stamp)?|date|user)|(?:dat|tim)e)|h(?:ar(?:(?:acter)?_length|set)?|r)|iel(?:ing)?|ast|r32)|s(?:u(?:b(?:str(?:ing(?:_index)?)?|(?:dat|tim)e)|m)|t(?:d(?:dev_(?:sam|po)p)?|r(?:_to_date|cmp))|e(?:c(?:_to_time|ond)|ssion_user)|ys(?:tem_user|date)|ha[12]?|oundex|chema|ig?n|leep|pace|qrt)|i(?:s(?:_(?:ipv(?:4(?:_(?:compat|mapped))?|6)|n(?:ot(?:_null)?|ull)|(?:free|used)_lock)|null)|n(?:et(?:6_(?:aton|ntoa)|_(?:aton|ntoa))|s(?:ert|tr)|terval)?|f(?:null)?)|d(?:a(?:t(?:e(?:_(?:format|add|sub)|diff)?|abase)|y(?:of(?:month|week|year)|name)?)|e(?:(?:s_(?:de|en)cryp|faul)t|grees|code)|count|ump)|l(?:o(?:ca(?:l(?:timestamp)?|te)|g(?:10|2)?|ad_file|wer)|ast(?:_(?:inser_id|day))?|e(?:(?:as|f)t|ngth)|case|trim|pad|n)|u(?:n(?:compress(?:ed_length)?|ix_timestamp|hex)|tc_(?:time(?:stamp)?|date)|p(?:datexml|per)|uid(?:_short)?|case|ser)|t(?:ime(?:_(?:format|to_sec)|stamp(?:diff|add)?|diff)?|o(?:(?:second|day)s|_base64|n?char)|r(?:uncate|im)|an)|m(?:a(?:ke(?:_set|date)|ster_pos_wait|x)|i(?:(?:crosecon)?d|n(?:ute)?)|o(?:nth(?:name)?|d)|d5)|r(?:e(?:p(?:lace|eat)|lease_lock|verse)|a(?:wtohex|dians|nd)|o(?:w_count|und)|ight|trim|pad)|f(?:i(?:eld(?:_in_set)?|nd_in_set)|rom_(?:unixtime|base64|days)|o(?:und_rows|rmat)|loor)|p(?:o(?:w(?:er)?|sition)|eriod_(?:diff|add)|rocedure_analyse|assword|g_sleep|i)|a(?:s(?:cii(?:str)?|in)|es_(?:de|en)crypt|dd(?:dat|tim)e|(?:co|b)s|tan2?|vg)|b(?:i(?:t_(?:length|count|x?or|and)|n(?:_to_num)?)|enchmark)|e(?:x(?:tract(?:value)?|p(?:ort_set)?)|nc(?:rypt|ode)|lt)|g(?:r(?:oup_conca|eates)t|et_(?:format|lock))|v(?:a(?:r(?:_(?:sam|po)p|iance)|lues)|ersion)|o(?:(?:ld_passwo)?rd|ct(?:et_length)?)|we(?:ek(?:ofyear|day)?|ight_string)|n(?:o(?:t_in|w)|ame_const|ullif)|h(?:ex(?:toraw)?|our)|qu(?:arter|ote)|year(?:week)?|xmltype)\W*\(" \
-    "id:942150,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,t:lowercase,\
-    msg:'SQL Injection Attack',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942180.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942180.data
-# Note that after assemble an ignore case flag is inserted in the
-# first non-capturing group from the Regexp::Assemble output:
-#    ASSEMBLE_OUTPUT | s/^(?:/(?i:/
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:[\"'`](?:\s*?(?:(?:between|x?or|and|div)[\w\s-]+\s*?[+<>=(),-]\s*?[\d\"'`]|like(?:[\w\s-]+\s*?[+<>=(),-]\s*?[\d\"'`]|\W+[\w\"'`(])|[!=|](?:[\d\s!=+-]+.*?[\"'`(].*?|[\d\s!=]+.*?\d+)$|[^\w\s]?=\s*?[\"'`])|(?:\W*?[+=]+\W*?|[<>~]+)[\"'`])|(?:/\*)+[\"'`]+\s?(?:\/\*|--|\{|#)?|\d[\"'`]\s+[\"'`]\s+\d|where\s[\s\w\.,-]+\s=|^admin\s*?[\"'`]|\sis\s*?0\W)" \
-    "id:942180,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects basic SQL authentication bypass attempts 1/3',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-# Regexp generated from util/regexp-assemble/regexp-942200.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942200.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:(?:(?:(?:trunc|cre|upd)at|renam)e|(?:inser|selec)t|de(?:lete|sc)|alter|load)\s*?\(\s*?space\s*?\(|,.*?[)\da-f\"'`][\"'`](?:[\"'`].*?[\"'`]|(?:\r?\n)?\z|[^\"'`]+)|\Wselect.+\W*?from))" \
-    "id:942200,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects MySQL comment-/space-obfuscated injections and backtick termination',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-# Regexp generated from util/regexp-assemble/regexp-942210.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942210.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:(?:n(?:and|ot)|(?:x?x)?or|between|\|\||like|and|div|&&)[\s(]+\w+[\s)]*?[!=+]+[\s\d]*?[\"'`=()]|\d(?:\s*?(?:between|like|x?or|and|div)\s*?\d+\s*?[\-+]|\s+group\s+by.+\()|\/\w+;?\s+(?:between|having|select|like|x?or|and|div)\W|--\s*?(?:(?:insert|update)\s*?\w{2,}|alter|drop)|#\s*?(?:(?:insert|update)\s*?\w{2,}|alter|drop)|;\s*?(?:(?:insert|update)\s*?\w{2,}|alter|drop)|\@.+=\s*?\(\s*?select|[^\w]SET\s*?\@\w+))" \
-    "id:942210,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects chained SQL injection attempts 1/2',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942260.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble-v2.pl regexp-942260.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#    ASSEMBLE_OUTPUT | s/^(?:/(?i:/
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:[\"'`]\s*?(?:(?:n(?:and|ot)|(?:x?x)?or|between|\|\||and|div|&&)\s+[\s\w]+=\s*?\w+\s*?having\s+|like(?:\s+[\s\w]+=\s*?\w+\s*?having\s+|\W*?[\"'`\d])|[^?\w\s=.,;)(]++\s*?[(@\"'`]*?\s*?\w+\W+\w|\*\s*?\w+\W+[\"'`])|(?:union\s*?(?:distinct|[(!@]*?|all)?\s*?[([]*?\s*?select|select\s+?[\[\]()\s\w\.,\"'`-]+from)\s+|\w\s+like\s+[\"'`]|find_in_set\s*?\(|like\s*?[\"'`]%)" \
-    "id:942260,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects basic SQL authentication bypass attempts 2/3',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942300.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942300.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:(?:n(?:and|ot)|(?:x?x)?or|between|\|\||like|and|div|&&)\s+\s*?\w+\(|\)\s*?when\s*?\d+\s*?then|[\"'`]\s*?(?:--|\{|#)|cha?r\s*?\(\s*?\d|\/\*!\s?\d+))" \
-    "id:942300,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects MySQL comments, conditions and ch(a)r injections',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942310.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942310.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:[\"'`](?:;\s*?(?:begin|while|if)|[\s\d]+=\s*?\d|\s+and\s*?=\W)|(?:\(\s*?select\s*?\w+|order\s+by\s+if\w*?|coalesce)\s*?\(|\w[\"'`]\s*?(?:(?:[-+=|@]+\s+?)+|[-+=|@]+)[\d(]|[\s(]+case\d*?\W.+[tw]hen[\s(]|\+\s*?\d+\s*?\+\s*?\@|\@\@\w+\s*?[^\w\s]|\W!+[\"'`]\w|\*\/from))" \
-    "id:942310,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects chained SQL injection attempts 2/2',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-#
-# -=[ SQL Injection Probings ]=-
-#
-# This is a group of three similar rules aiming to detect SQL injection probings.
-#
-# 942330 PL 2
-# 942370 PL 2
-# 942490 PL 3
-# Regexp generated from util/regexp-assemble/regexp-942330.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942330.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:^(?:[\"'`\\\\]*?(?:[^\"'`]+[\"'`]|[\d\"'`]+)\s*?(?:n(?:and|ot)|(?:x?x)?or|between|\|\||like|and|div|&&)\s*?[\w\"'`][+&!@(),.-]|.?[\"'`]$)|\@(?:[\w-]+\s(?:between|like|x?or|and|div)\s*?[^\w\s]|\w+\s+(?:between|like|x?or|and|div)\s*?[\"'`\d]+)|[\"'`]\s*?(?:between|like|x?or|and|div)\s*?[\"'`]?\d|[^\w\s:]\s*?\d\W+[^\w\s]\s*?[\"'`].|[^\w\s]\w+\s*?[|-]\s*?[\"'`]\s*?\w|\Winformation_schema|\\\\x(?:23|27|3d)|table_name\W))" \
-    "id:942330,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects classic SQL injection probings 1/3',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942340.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942340.data
-#   Note that part of regexp-942340.data is already optimized, to avoid a
-#   Regexp::Assemble behaviour, where the regex is not optimized very nicely.
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:[\"'`](?:\s*?(?:is\s*?(?:[\d.]+\s*?\W.*?[\"'`]|\d.+[\"'`]?\w)|\d\s*?(?:--|#))|(?:\W+[\w+-]+\s*?=\s*?\d\W+|\|?[\w-]{3,}[^\w\s.,]+)[\"'`]|[\%&<>^=]+\d\s*?(?:between|like|x?or|and|div|=))|(?i:n?and|x?x?or|div|like|between|not|\|\||\&\&)\s+[\s\w+]+(?:sounds\s+like\s*?[\"'`]|regexp\s*?\(|[=\d]+x)|in\s*?\(+\s*?select))" \
-    "id:942340,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects basic SQL authentication bypass attempts 3/3',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# This rule is a stricter sibling of 942360.
-# The keywords 'alter' and 'union' led to false positives.
-# Therefore they have been moved to PL2 and the keywords have been extended on PL1.
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:^[\W\d]+\s*?(?:alter|union)\b)" \
-    "id:942361,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects basic SQL injection based on keyword alter or union',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# This rule is a sibling of 942330. See that rule for a description and overview.
-#
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-# Regexp generated from util/regexp-assemble/regexp-942370.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942370.data
-# Note that after assemble an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:[\"'`](?:\s*?(?:(?:\*.+(?:(?:an|i)d|between|like|x?or|div)\W*?[\"'`]|(?:between|like|x?or|and|div)\s[^\d]+[\w-]+.*?)\d|[^\w\s?]+\s*?[^\w\s]+\s*?[\"'`]|[^\w\s]+\s*?[\W\d].*?(?:--|#))|.*?\*\s*?\d)|[()\*<>%+-][\w-]+[^\w\s]+[\"'`][^,]|\^[\"'`])" \
-    "id:942370,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects classic SQL injection probings 2/3',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942380.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942380.data
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:\b(?:having\b ?(?:[\'\"][^=]{1,10}[\'\" ?[=<>]+|\d{1,10} ?[=<>]+)|(?i:having)\b\s+(?:'[^=]{1,10}'|\d{1,10})\s*?[=<>])|exists\s(?:s(?:elect\S(?:if(?:null)?\s\(|concat|top)|ystem\s\()|\b(?i:having)\b\s+\d{1,10}|'[^=]{1,10}'|\sselect)|(?i:\bexecute\s{1,5}[\w\.$]{1,5}\s{0,3})|(?i:\bcreate\s+?table.{0,20}?\()|(?i:\blike\W*?char\W*?\()|(?i:select.*?case)|(?i:from.*?limit)|(?i:\bexecute\()|(?i:order\sby))" \
-    "id:942380,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Injection Attack',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942390.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942390.data
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:\b(?:(?i:xor)\b\s+(?:'[^=]{1,10}'(?:\s*?[=<>])?|\d{1,10}(?:\s*?[=<>])?)|(?i:or)\b\s+(?:'[^=]{1,10}'(?:\s*?[=<>])?|\d{1,10}(?:\s*?[=<>])?))|(?i:\bor\b ?[\'\"][^=]{1,10}[\'\"] ?[=<>]+)|(?i:'\s+xor\s+.{1,20}[+\-!<>=])|(?i:'\s+or\s+.{1,20}[+\-!<>=])|(?i:\bor\b ?\d{1,10} ?[=<>]+))" \
-    "id:942390,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Injection Attack',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# Regexp generated from util/regexp-assemble/regexp-942400.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942400.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:\band\b(?:\s+(?:'[^=]{1,10}'(?:\s*?[=<>])?|\d{1,10}(?:\s*?[=<>])?)| ?(?:[\'\"][^=]{1,10}[\'\"]|\d{1,10}) ?[=<>]+))" \
-    "id:942400,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Injection Attack',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-# The former rule id 942410 was split into three new rules: 942410, 942470, 942480
-#
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-# Regexp generated from util/regexp-assemble/regexp-942410.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942410.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output.
-# And a word boundary is added before and a non-word character with an opening bracket
-# is added after the Regexp::Assemble output:
-#   (?i:\bASSEMBLE_OUTPUT\W*?\()
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:\b(?:c(?:o(?:n(?:v(?:ert(?:_tz)?)?|cat(?:_ws)?|nection_id)|(?:mpres)?s|ercibility|(?:un)?t|alesce)|ur(?:rent_(?:time(?:stamp)?|date|user)|(?:dat|tim)e)|h(?:ar(?:(?:acter)?_length|set)?|r)|iel(?:ing)?|ast|r32)|s(?:t(?:d(?:dev(?:_(?:sam|po)p)?)?|r(?:_to_date|cmp))|u(?:b(?:str(?:ing(?:_index)?)?|(?:dat|tim)e)|m)|e(?:c(?:_to_time|ond)|ssion_user)|ys(?:tem_user|date)|ha[12]?|oundex|chema|ig?n|leep|pace|qrt)|i(?:s(?:_(?:ipv(?:4(?:_(?:compat|mapped))?|6)|n(?:ot(?:_null)?|ull)|(?:free|used)_lock)|null)?|n(?:et(?:6_(?:aton|ntoa)|_(?:aton|ntoa))|s(?:ert|tr)|terval)?|f(?:null)?)|d(?:a(?:t(?:e(?:_(?:format|add|sub)|diff)?|abase)|y(?:of(?:month|week|year)|name)?)|e(?:(?:s_(?:de|en)cryp|faul)t|grees|code)|count|ump)|l(?:o(?:ca(?:l(?:timestamp)?|te)|g(?:10|2)?|ad_file|wer)|ast(?:_(?:insert_id|day))?|e(?:(?:as|f)t|ngth)|case|trim|pad|n)|u(?:n(?:compress(?:ed_length)?|ix_timestamp|hex)|tc_(?:time(?:stamp)?|date)|p(?:datexml|per)|uid(?:_short)?|case|ser)|r(?:a(?:wto(?:nhex(?:toraw)?|hex)|dians|nd)|e(?:p(?:lace|eat)|lease_lock|verse)|o(?:w_count|und)|ight|trim|pad)|t(?:ime(?:_(?:format|to_sec)|stamp(?:diff|add)?|diff)?|o_(?:(?:second|day)s|base64|n?char)|r(?:uncate|im)|an)|m(?:a(?:ke(?:_set|date)|ster_pos_wait|x)|i(?:(?:crosecon)?d|n(?:ute)?)|o(?:nth(?:name)?|d)|d5)|f(?:i(?:eld(?:_in_set)?|nd_in_set)|rom_(?:unixtime|base64|days)|o(?:und_rows|rmat)|loor)|p(?:o(?:w(?:er)?|sition)|eriod_(?:diff|add)|rocedure_analyse|assword|g_sleep|i)|a(?:s(?:cii(?:str)?|in)|es_(?:de|en)crypt|dd(?:dat|tim)e|(?:co|b)s|tan2?|vg)|b(?:i(?:t_(?:length|count|x?or|and)|n(?:_to_num)?)|enchmark)|e(?:x(?:tract(?:value)?|p(?:ort_set)?)|nc(?:rypt|ode)|lt)|g(?:r(?:oup_conca|eates)t|et_(?:format|lock))|v(?:a(?:r(?:_(?:sam|po)p|iance)|lues)|ersion)|o(?:(?:ld_passwo)?rd|ct(?:et_length)?)|we(?:ek(?:ofyear|day)?|ight_string)|n(?:o(?:t_in|w)|ame_const|ullif)|h(?:ex(?:toraw)?|our)|qu(?:arter|ote)|year(?:week)?|xmltype)\W*?\()" \
-    "id:942410,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Injection Attack',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-# The former rule id 942410 was split into three new rules: 942410, 942470, 942480
-#
-# Regexp generated from util/regexp-assemble/regexp-942470.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942470.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:xp_(?:reg(?:re(?:movemultistring|ad)|delete(?:value|key)|enum(?:value|key)s|addmultistring|write)|(?:servicecontro|cmdshel)l|e(?:xecresultset|numdsn)|ntsec(?:_enumdomains)?|terminate(?:_process)?|availablemedia|loginconfig|filelist|dirtree|makecab)|s(?:p_(?:(?:addextendedpro|sqlexe)c|p(?:assword|repare)|replwritetovarbin|is_srvrolemember|execute(?:sql)?|makewebtask|oacreate|help)|ql_(?:longvarchar|variant))|open(?:owa_util|rowset|query)|(?:n?varcha|tbcreato)r|autonomous_transaction|db(?:a_users|ms_java)|utl_(?:file|http)))" \
-    "id:942470,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Injection Attack',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-# The former rule id 942410 was split into three new rules: 942410, 942470, 942480
-#
-# Regexp generated from util/regexp-assemble/regexp-942480.data using Regexp::Assemble.
-# To rebuild the regexp:
-#   cd util/regexp-assemble
-#   ./regexp-assemble.pl regexp-942480.data
-# Note that after assemble an outer bracket with an ignore case flag is added
-# to the Regexp::Assemble output:
-#   (?i:ASSEMBLE_OUTPUT)
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:(?:\b(?:(?:s(?:elect\b.{1,100}?\b(?:(?:(?:length|count)\b.{1,100}?|.*?\bdump\b.*)\bfrom|to(?:p\b.{1,100}?\bfrom|_(?:numbe|cha)r)|(?:from\b.{1,100}?\bwher|data_typ)e|instr)|ys_context)|in(?:to\b\W*?\b(?:dump|out)file|sert\b\W*?\binto|ner\b\W*?\bjoin)|u(?:nion\b.{1,100}?\bselect|tl_inaddr)|group\b.*?\bby\b.{1,100}?\bhaving|d(?:elete\b\W*?\bfrom|bms_\w+\.)|load\b\W*?\bdata\b.*?\binfile)\b|print\b\W*?\@\@)|(?:;\W*?\b(?:shutdown|drop)|collation\W*?\(a|\@\@version)\b|'(?:s(?:qloledb|a)|msdasql|dbo)'))" \
-    "id:942480,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Injection Attack',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ctl:auditLogParts=+E,\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-#
-# [ SQL Injection Character Anomaly Usage ]
-#
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-# This rules attempts to gauge when there is an excessive use of
-# meta-characters within a single parameter payload.
-#
-# Expect a lot of false positives with this rule.
-# The most likely false positive instances will be free-form text fields.
-# This will make it necessary to disable the rule for certain known parameters.
-# The following directive is an example to switch off the rule globally for
-# the parameter foo. Place this instruction in your configuration after
-# the include directive for the Core Rules Set.
-#
-# SecRuleUpdateTargetById 942430 "!ARGS:foo"
-#
-
-SecRule ARGS_NAMES|ARGS|XML:/* "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){12})" \
-    "id:942430,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (12)',\
-    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.warning_anomaly_score}',\
-    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
-
-
-#
-# -=[ Detect SQL Comment Sequences ]=-
-#
-# Example Payloads Detected:
-# -------------------------
-# OR 1#
-# DROP sampletable;--
-# admin'--
-# DROP/*comment*/sampletable
-# DR/**/OP/*bypass blacklisting*/sampletable
-# SELECT/*avoid-spaces*/password/**/FROM/**/Members
-# SELECT /*!32302 1/0, */ 1 FROM tablename
-# ‘ or 1=1#
-# ‘ or 1=1-- -
-# ‘ or 1=1/*
-# ' or 1=1;\x00
-# 1='1' or-- -
-# ' /*!50000or*/1='1
-# ' /*!or*/1='1
-# 0/**/union/*!50000select*/table_name`foo`/**/
-# -------------------------
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:/\*!?|\*/|[';]--|--[\s\r\n\v\f]|--[^-]*?-|[^&-]#.*?[\s\r\n\v\f]|;?\\x00)" \
-    "id:942440,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Comment Sequence Detected',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ SQL Hex Evasion Methods ]=-
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i:\b0x[a-f\d]{3,})" \
-    "id:942450,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQL Hex Encoding Identified',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ Detect SQLi bypass: backticks ]=-
-#
-# Quotes and backticks can be used to bypass SQLi detection.
-#
-# Example:
-# GET http://localhost/test.php?id=9999%20or+{`if`(2=(select+2+from+wp_users+where+user_login='admin'))}
-#
-# The minimum text between the ticks or backticks must be 2 (if, for example) and a maximum of 29.
-# 29 is a compromise: The lower this number (29), the lower the probability of FP and the higher the probability of false negatives.
-# In tests we got a minimum number of FP with {2,29}.
-#
-# Base64 encoding detection:
-# (?:[A-Za-z0-9+/]{4})+ #match any number of 4-letter blocks of the base64 char set
-# (?:[A-Za-z0-9+/]{2}== #match 2-letter block of the base64 char set followed by "==", together forming a 4-letter block
-# |                     # or
-# [A-Za-z0-9+/]{3}=     #match 3-letter block of the base64 char set followed by "=", together forming a 4-letter block
-# )?
-#
-# The minimal string that triggers this regexp is: `if`
-#
-# The rule 942510 is related to 942110 which catches a single ' or `
-#
-# The rule 942511 is similar to this rule, but triggers on normal quotes
-# ('if'). That rule runs in paranoia level 3 or higher since it is prone to
-# false positives in natural text.
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:`((?:[\w\s=_\-+{}()<@]){2,29}|(?:[A-Za-z0-9+\/]{4})+(?:[A-Za-z0-9+\/]{2}==|[A-Za-z0-9+\/]{3}=)?)`)" \
-    "id:942510,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQLi bypass attempt by ticks or backticks detected',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/2',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl2=+%{tx.critical_anomaly_score}'"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:942015,phase:1,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:942016,phase:2,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-#
-# [ SQL HAVING queries ]
-#
-# This pattern was split off from rule 942250 due to frequent
-# false positives in English text. Testing showed that SQL
-# injections with HAVING should be detected by libinjection
-# (rule 942100).
-#
-# This is a stricter sibling of rule 942250.
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?i)\W+\d*?\s*?having\s*?[^\s\-]" \
-    "id:942251,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects HAVING injections',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
-
-# This rule is a stricter sibling of 942330. See that rule for a
-# description and overview.
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx [\"'`][\s\d]*?[^\w\s]\W*?\d\W*?.*?[\"'`\d]" \
-    "id:942490,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Detects classic SQL injection probings 3/3',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
-
-#
-# [ SQL Injection Character Anomaly Usage ]
-#
-# This rule attempts to gauge when there is an excessive use of
-# meta-characters within a single parameter payload.
-#
-# It is similar to 942430, but focuses on Cookies instead of
-# GET/POST parameters.
-#
-# Expect a lot of false positives with this rule.
-# The most likely false positive instances will be complex session ids.
-# This will make it necessary to disable the rule for certain known cookies.
-# The following directive is an example to switch off the rule globally for
-# the cookie foo_id. Place this instruction in your configuration after
-# the include directive for the Core Rules Set.
-#
-# SecRuleUpdateTargetById 942420 "!REQUEST_COOKIES:foo_id"
-#
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){8})" \
-    "id:942420,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Restricted SQL Character Anomaly Detection (cookies): # of special characters exceeded (8)',\
-    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.warning_anomaly_score}',\
-    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
-
-
-#
-# This is a stricter sibling of rule 942430.
-#
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-
-SecRule ARGS_NAMES|ARGS|XML:/* "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){6})" \
-    "id:942431,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (6)',\
-    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.warning_anomaly_score}',\
-    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
-
-
-#
-# [ Repetitive Non-Word Characters ]
-#
-# This rule attempts to identify when multiple (4 or more) non-word characters
-# are repeated in sequence.
-#
-# The pattern may occur in some normal texts, e.g. "foo...." will match.
-#
-SecRule ARGS "@rx \W{4}" \
-    "id:942460,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Meta-Character Anomaly Detection Alert - Repetitive Non-Word Characters',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'WARNING',\
-    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.warning_anomaly_score}'"
-
-
-#
-# This is a sibling of rule 942100 that adds checking of the last path segment.
-#
-# libinjection is more likely to fail when passing the full path. E.g. the following
-# string produces a match:
-# 999999.1 union select unhex(hex(version())) -- and 1=1
-# while this doesn't:
-# /999999.1 union select unhex(hex(version())) -- and 1=1\.
-# Therefore, we capture the last segment of the path and only match that with
-# libinjection. Incidentally, the last path segment is also the most likely
-# to be used for injection, other segments will most likely not be affected.
-#
-SecRule REQUEST_BASENAME "@detectSQLi" \
-    "id:942101,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:utf8toUnicode,t:urlDecodeUni,t:removeNulls,\
-    msg:'SQL Injection Attack Detected via libinjection',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
-
-
-#
-# -=[ Detect SQLi bypass: quotes ]=-
-#
-# Quotes and backticks can be used to bypass SQLi detection.
-#
-# Example:
-# GET http://localhost/test.php?id=9999%20or+{`if`(2=(select+2+from+wp_users+where+user_login='admin'))}
-#
-# The minimum text between the ticks or backticks must be 2 (if, for example) and a maximum of 29.
-# 29 is a compromise: The lower this number (29), the lower the probability of FP and the higher the probability of false negatives.
-# In tests we got a minimum number of FP with {2,29}.
-#
-# Base64 encoding detection:
-# (?:[A-Za-z0-9+/]{4})+ #match any number of 4-letter blocks of the base64 char set
-# (?:[A-Za-z0-9+/]{2}== #match 2-letter block of the base64 char set followed by "==", together forming a 4-letter block
-# |                     # or
-# [A-Za-z0-9+/]{3}=     #match 3-letter block of the base64 char set followed by "=", together forming a 4-letter block
-# )?
-#
-# The minimal string that triggers this regexp is: 'if'
-#
-# The rule 942511 is related to 942110 which catches a single ' or `
-#
-# The rule 942510 is similar to this rule, but triggers on backticks
-# (`if`). That rule runs in paranoia level 2 or higher since the risk of
-# false positives in natural text is still present but lower than this
-# rule.
-#
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|REQUEST_COOKIES_NAMES|ARGS_NAMES|ARGS|XML:/* "@rx (?:'((?:[\w\s=_\-+{}()<@]){2,29}|(?:[A-Za-z0-9+\/]{4})+(?:[A-Za-z0-9+\/]{2}==|[A-Za-z0-9+\/]{3}=)?)')" \
-    "id:942511,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'SQLi bypass attempt by ticks detected',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/3',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-    setvar:'tx.anomaly_score_pl3=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:942017,phase:1,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:942018,phase:2,pass,nolog,skipAfter:END-REQUEST-942-APPLICATION-ATTACK-SQLI"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-#
-# [ SQL Injection Character Anomaly Usage ]
-#
-# This is a stricter sibling of rule 942420.
-#
-
-SecRule REQUEST_COOKIES|!REQUEST_COOKIES:/__utm/|!REQUEST_COOKIES:/_pk_ref/|REQUEST_COOKIES_NAMES "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){3})" \
-    "id:942421,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Restricted SQL Character Anomaly Detection (cookies): # of special characters exceeded (3)',\
-    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/4',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl4=+%{tx.warning_anomaly_score}',\
-    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
-
-
-#
-# This is a stricter sibling of rule 942430.
-#
-# This rule is also triggered by the following exploit(s):
-# [ SAP CRM Java vulnerability CVE-2018-2380 - Exploit tested: https://www.exploit-db.com/exploits/44292 ]
-#
-
-SecRule ARGS_NAMES|ARGS|XML:/* "@rx ((?:[~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>][^~!@#\$%\^&\*\(\)\-\+=\{\}\[\]\|:;\"'´’‘`<>]*?){2})" \
-    "id:942432,\
-    phase:2,\
-    block,\
-    capture,\
-    t:none,t:urlDecodeUni,\
-    msg:'Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (2)',\
-    logdata:'Matched Data: %{TX.1} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-sqli',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/152/248/66',\
-    tag:'PCI/6.5.2',\
-    tag:'paranoia-level/4',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'WARNING',\
-    setvar:'tx.anomaly_score_pl4=+%{tx.warning_anomaly_score}',\
-    setvar:'tx.sql_injection_score=+%{tx.warning_anomaly_score}'"
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-942-APPLICATION-ATTACK-SQLI"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-949-BLOCKING-EVALUATION.conf b/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-949-BLOCKING-EVALUATION.conf
deleted file mode 100644
index 9ee4a8df65..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/REQUEST-949-BLOCKING-EVALUATION.conf
+++ /dev/null
@@ -1,133 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-# Summing up the anomaly score.
-
-# NOTE: tx.anomaly_score should not be set initially, but masking would lead to difficult bugs.
-# So we add to it.
-SecRule TX:PARANOIA_LEVEL "@ge 1" \
-    "id:949060,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    setvar:'tx.anomaly_score=+%{tx.anomaly_score_pl1}'"
-
-SecRule TX:PARANOIA_LEVEL "@ge 2" \
-    "id:949061,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    setvar:'tx.anomaly_score=+%{tx.anomaly_score_pl2}'"
-
-SecRule TX:PARANOIA_LEVEL "@ge 3" \
-    "id:949062,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    setvar:'tx.anomaly_score=+%{tx.anomaly_score_pl3}'"
-
-SecRule TX:PARANOIA_LEVEL "@ge 4" \
-    "id:949063,\
-    phase:2,\
-    pass,\
-    t:none,\
-    nolog,\
-    setvar:'tx.anomaly_score=+%{tx.anomaly_score_pl4}'"
-
-
-SecMarker "BEGIN-REQUEST-BLOCKING-EVAL"
-
-# These rules use the anomaly score settings specified in the 10 config file.
-# You should also set the desired disruptive action (deny, redirect, etc...).
-#
-# -=[ IP Reputation Checks ]=-
-#
-# Block based on variable IP.REPUT_BLOCK_FLAG and TX.DO_REPUT_BLOCK
-#
-SecRule IP:REPUT_BLOCK_FLAG "@eq 1" \
-    "id:949100,\
-    phase:2,\
-    deny,\
-    log,\
-    msg:'Request Denied by IP Reputation Enforcement',\
-    logdata:'Previous Block Reason: %{ip.reput_block_reason}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-reputation-ip',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule TX:DO_REPUT_BLOCK "@eq 1" \
-        "setvar:'tx.inbound_anomaly_score=%{tx.anomaly_score}'"
-
-#
-# -=[ Anomaly Mode: Overall Transaction Anomaly Score ]=-
-#
-SecRule TX:ANOMALY_SCORE "@ge %{tx.inbound_anomaly_score_threshold}" \
-    "id:949110,\
-    phase:2,\
-    deny,\
-    t:none,\
-    log,\
-    msg:'Inbound Anomaly Score Exceeded (Total Score: %{TX.ANOMALY_SCORE})',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-generic',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    setvar:'tx.inbound_anomaly_score=%{tx.anomaly_score}'"
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:949011,phase:1,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:949012,phase:2,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:949013,phase:1,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:949014,phase:2,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:949015,phase:1,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:949016,phase:2,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:949017,phase:1,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:949018,phase:2,pass,nolog,skipAfter:END-REQUEST-949-BLOCKING-EVALUATION"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-REQUEST-949-BLOCKING-EVALUATION"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-951-DATA-LEAKAGES-SQL.conf b/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-951-DATA-LEAKAGES-SQL.conf
deleted file mode 100644
index 761a27d59c..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-951-DATA-LEAKAGES-SQL.conf
+++ /dev/null
@@ -1,476 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:951011,phase:3,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:951012,phase:4,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-#
-# -=[ SQL Error Leakages ]=-
-#
-# Ref: https://raw.github.com/sqlmapproject/sqlmap/master/xml/errors.xml
-# Ref: https://github.com/Arachni/arachni/tree/master/components/checks/active/sql_injection/regexps
-#
-SecRule RESPONSE_BODY "@pmFromFile sql-errors.data" \
-    "id:951100,\
-    phase:4,\
-    pass,\
-    t:none,\
-    nolog,\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-multi',\
-    tag:'attack-disclosure',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.sql_error_match=1'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951110,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Microsoft Access SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-msaccess',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:JET Database Engine|Access Database Engine|\[Microsoft\]\[ODBC Microsoft Access Driver\])" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951120,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Oracle SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-oracle',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:ORA-[0-9][0-9][0-9][0-9]|java\.sql\.SQLException|Oracle error|Oracle.*Driver|Warning.*oci_.*|Warning.*ora_.*)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951130,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'DB2 SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-db2',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:DB2 SQL error:|\[IBM\]\[CLI Driver\]\[DB2/6000\]|CLI Driver.*DB2|DB2 SQL error|db2_\w+\()" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951140,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'EMC SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-emc',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:\[DM_QUERY_E_SYNTAX\]|has occurred in the vicinity of:)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951150,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'firebird SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-firebird',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i)Dynamic SQL Error" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951160,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Frontbase SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-frontbase',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i)Exception (?:condition )?\d+\. Transaction rollback\." \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951170,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'hsqldb SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-hsqldb',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i)org\.hsqldb\.jdbc" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951180,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'informix SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-informix',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:An illegal character has been found in the statement|com\.informix\.jdbc|Exception.*Informix)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951190,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'ingres SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-ingres',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:Warning.*ingres_|Ingres SQLSTATE|Ingres\W.*Driver)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951200,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'interbase SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-interbase',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:<b>Warning</b>: ibase_|Unexpected end of command in statement)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951210,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'maxDB SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-maxdb',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:SQL error.*POS[0-9]+.*|Warning.*maxdb.*)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951220,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'mssql SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-mssql',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i)(?:System\.Data\.OleDb\.OleDbException|\[Microsoft\]\[ODBC SQL Server Driver\]|\[Macromedia\]\[SQLServer JDBC Driver\]|\[SqlException|System\.Data\.SqlClient\.SqlException|Unclosed quotation mark after the character string|'80040e14'|mssql_query\(\)|Microsoft OLE DB Provider for ODBC Drivers|Microsoft OLE DB Provider for SQL Server|Incorrect syntax near|Sintaxis incorrecta cerca de|Syntax error in string in query expression|Procedure or function .* expects parameter|Unclosed quotation mark before the character string|Syntax error .* in query expression|Data type mismatch in criteria expression\.|ADODB\.Field \(0x800A0BCD\)|the used select statements have different number of columns|OLE DB.*SQL Server|Warning.*mssql_.*|Driver.*SQL[ _-]*Server|SQL Server.*Driver|SQL Server.*[0-9a-fA-F]{8}|Exception.*\WSystem\.Data\.SqlClient\.)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951230,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'mysql SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-mysql',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i)(?:supplied argument is not a valid MySQL|Column count doesn't match value count at row|mysql_fetch_array\(\)|on MySQL result index|You have an error in your SQL syntax;|You have an error in your SQL syntax near|MySQL server version for the right syntax to use|\[MySQL\]\[ODBC|Column count doesn't match|Table '[^']+' doesn't exist|SQL syntax.*MySQL|Warning.*mysql_.*|valid MySQL result|MySqlClient\.)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951240,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'postgres SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-pgsql',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i:PostgreSQL query failed:|pg_query\(\) \[:|pg_exec\(\) \[:|PostgreSQL.*ERROR|Warning.*pg_.*|valid PostgreSQL result|Npgsql\.|PG::[a-zA-Z]*Error|Supplied argument is not a valid PostgreSQL .*? resource|Unable to connect to PostgreSQL server)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951250,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'sqlite SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-sqlite',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i)(?:Warning.*sqlite_.*|Warning.*SQLite3::|SQLite/JDBCDriver|SQLite\.Exception|System\.Data\.SQLite\.SQLiteException)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-SecRule TX:sql_error_match "@eq 1" \
-    "id:951260,\
-    phase:4,\
-    block,\
-    capture,\
-    t:none,\
-    msg:'Sybase SQL Information Leakage',\
-    logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',\
-    tag:'application-multi',\
-    tag:'language-multi',\
-    tag:'platform-sybase',\
-    tag:'attack-disclosure',\
-    tag:'paranoia-level/1',\
-    tag:'OWASP_CRS',\
-    tag:'capec/1000/118/116/54',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'CRITICAL',\
-    chain"
-    SecRule RESPONSE_BODY "@rx (?i)(?:Sybase message:|Warning.*sybase.*|Sybase.*Server message.*)" \
-        "capture,\
-        ctl:auditLogParts=+E,\
-        setvar:'tx.outbound_anomaly_score_pl1=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.sql_injection_score=+%{tx.critical_anomaly_score}',\
-        setvar:'tx.anomaly_score_pl1=+%{tx.critical_anomaly_score}'"
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:951013,phase:3,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:951014,phase:4,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:951015,phase:3,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:951016,phase:4,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:951017,phase:3,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:951018,phase:4,pass,nolog,skipAfter:END-RESPONSE-951-DATA-LEAKAGES-SQL"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-RESPONSE-951-DATA-LEAKAGES-SQL"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-959-BLOCKING-EVALUATION.conf b/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-959-BLOCKING-EVALUATION.conf
deleted file mode 100644
index 689cc94e37..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-959-BLOCKING-EVALUATION.conf
+++ /dev/null
@@ -1,116 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-# You should set the score to the proper threshold you would prefer. If kept at "@gt 0"
-# it will work similarly to previous Mod CRS rules and will create an event in the error_log
-# file if there are any rules that match.  If you would like to lessen the number of events
-# generated in the error_log file, you should increase the anomaly score threshold to
-# something like "@gt 20".  This would only generate an event in the error_log file if
-# there are multiple lower severity rule matches or if any 1 higher severity item matches.
-#
-# You should also set the desired disruptive action (deny, redirect, etc...).
-#
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-# Summing up the anomaly score.
-
-# NOTE: tx.anomaly_score should not be set initially, but masking would lead to difficult bugs.
-# So we add to it.
-SecRule TX:PARANOIA_LEVEL "@ge 1" \
-    "id:959060,\
-    phase:4,\
-    pass,\
-    t:none,\
-    nolog,\
-    setvar:'tx.outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl1}'"
-
-SecRule TX:PARANOIA_LEVEL "@ge 2" \
-    "id:959061,\
-    phase:4,\
-    pass,\
-    t:none,\
-    nolog,\
-    setvar:'tx.outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl2}'"
-
-SecRule TX:PARANOIA_LEVEL "@ge 3" \
-    "id:959062,\
-    phase:4,\
-    pass,\
-    t:none,\
-    nolog,\
-    setvar:'tx.outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl3}'"
-
-SecRule TX:PARANOIA_LEVEL "@ge 4" \
-    "id:959063,\
-    phase:4,\
-    pass,\
-    t:none,\
-    nolog,\
-    setvar:'tx.outbound_anomaly_score=+%{tx.outbound_anomaly_score_pl4}'"
-
-
-# Alert and Block on High Anomaly Scores - this would block outbound data leakages
-#
-# Note: This rule also sets the 'tx.anomaly_score' variable.
-# That variable name was formerly used in CRS, but not any longer.
-# However, Jwall AuditConsole depends on this exact variable name.
-# Without setting it, the 'Outbound Score' in the AuditConsole GUI would always be 0.
-
-SecRule TX:OUTBOUND_ANOMALY_SCORE "@ge %{tx.outbound_anomaly_score_threshold}" \
-    "id:959100,\
-    phase:4,\
-    deny,\
-    t:none,\
-    msg:'Outbound Anomaly Score Exceeded (Total Score: %{TX.OUTBOUND_ANOMALY_SCORE})',\
-    tag:'anomaly-evaluation',\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.anomaly_score=+%{tx.outbound_anomaly_score}'"
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:959011,phase:3,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:959012,phase:4,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:959013,phase:3,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:959014,phase:4,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:959015,phase:3,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:959016,phase:4,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:959017,phase:3,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:959018,phase:4,pass,nolog,skipAfter:END-RESPONSE-959-BLOCKING-EVALUATION"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-RESPONSE-959-BLOCKING-EVALUATION"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-980-CORRELATION.conf b/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-980-CORRELATION.conf
deleted file mode 100644
index a65c76547e..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/RESPONSE-980-CORRELATION.conf
+++ /dev/null
@@ -1,170 +0,0 @@
-# ------------------------------------------------------------------------
-# OWASP ModSecurity Core Rule Set ver.3.3.5
-# Copyright (c) 2006-2020 Trustwave and contributors. All rights reserved.
-# Copyright (c) 2021-2023 Core Rule Set project. All rights reserved.
-#
-# The OWASP ModSecurity Core Rule Set is distributed under
-# Apache Software License (ASL) version 2
-# Please see the enclosed LICENSE file for full details.
-# ------------------------------------------------------------------------
-
-#
-# This file is used in post processing after the response has been sent to
-# the client (in the logging phase).  Its purpose is to provide inbound+outbound
-# correlation of events to provide a more intelligent designation as to the outcome
-# or result of the transaction - meaning, was this a successful attack?
-#
-
-#
-# -= Paranoia Level 0 (empty) =- (apply unconditionally)
-#
-
-#
-# -=[ Correlated Successful Attack ]=-
-#
-SecRule &TX:'/LEAKAGE\\\/ERRORS/' "@ge 1" \
-    "id:980100,\
-    phase:5,\
-    pass,\
-    t:none,\
-    log,\
-    msg:'Correlated Successful Attack Identified: (Total Score: %{tx.anomaly_score}) Inbound Attack (Inbound Anomaly Score: %{TX.INBOUND_ANOMALY_SCORE}) + Outbound Data Leakage (Outbound Anomaly Score: %{TX.OUTBOUND_ANOMALY_SCORE})',\
-    tag:'event-correlation',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'EMERGENCY',\
-    chain,\
-    skipAfter:END-CORRELATION"
-    SecRule &TX:'/WEB_ATTACK/' "@ge 1" "t:none"
-
-#
-# -=[ Correlated Attack Attempt ]=-
-#
-SecRule &TX:'/AVAILABILITY\\\/APP_NOT_AVAIL/' "@ge 1" \
-    "id:980110,\
-    phase:5,\
-    pass,\
-    t:none,\
-    log,\
-    msg:'Correlated Attack Attempt Identified: (Total Score: %{tx.anomaly_score}) Inbound Attack (Inbound Anomaly Score: %{TX.INBOUND_ANOMALY_SCORE}) + Outbound Application Error (Outbound Anomaly Score: %{TX.OUTBOUND_ANOMALY_SCORE})',\
-    tag:'event-correlation',\
-    ver:'OWASP_CRS/3.3.5',\
-    severity:'ALERT',\
-    chain,\
-    skipAfter:END-CORRELATION"
-    SecRule &TX:'/WEB_ATTACK/' "@ge 1" "t:none"
-
-# Creating a total sum of all triggered inbound rules, including the ones only being monitored
-SecAction \
-    "id:980115,\
-    phase:5,\
-    pass,\
-    t:none,\
-    nolog,\
-    noauditlog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.executing_anomaly_score=%{tx.anomaly_score_pl1}',\
-    setvar:'tx.executing_anomaly_score=+%{tx.anomaly_score_pl2}',\
-    setvar:'tx.executing_anomaly_score=+%{tx.anomaly_score_pl3}',\
-    setvar:'tx.executing_anomaly_score=+%{tx.anomaly_score_pl4}'"
-
-SecRule TX:INBOUND_ANOMALY_SCORE "@lt %{tx.inbound_anomaly_score_threshold}" \
-    "id:980120,\
-    phase:5,\
-    pass,\
-    t:none,\
-    log,\
-    noauditlog,\
-    msg:'Inbound Anomaly Score (Total Inbound Score: %{TX.INBOUND_ANOMALY_SCORE} - SQLI=%{tx.sql_injection_score},XSS=%{tx.xss_score},RFI=%{tx.rfi_score},LFI=%{tx.lfi_score},RCE=%{tx.rce_score},PHPI=%{tx.php_injection_score},HTTP=%{tx.http_violation_score},SESS=%{tx.session_fixation_score}): individual paranoia level scores: %{TX.ANOMALY_SCORE_PL1}, %{TX.ANOMALY_SCORE_PL2}, %{TX.ANOMALY_SCORE_PL3}, %{TX.ANOMALY_SCORE_PL4}',\
-    tag:'event-correlation',\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule TX:MONITOR_ANOMALY_SCORE "@gt 1"
-
-SecRule TX:INBOUND_ANOMALY_SCORE "@ge %{tx.inbound_anomaly_score_threshold}" \
-    "id:980130,\
-    phase:5,\
-    pass,\
-    t:none,\
-    log,\
-    noauditlog,\
-    msg:'Inbound Anomaly Score Exceeded (Total Inbound Score: %{TX.INBOUND_ANOMALY_SCORE} - SQLI=%{tx.sql_injection_score},XSS=%{tx.xss_score},RFI=%{tx.rfi_score},LFI=%{tx.lfi_score},RCE=%{tx.rce_score},PHPI=%{tx.php_injection_score},HTTP=%{tx.http_violation_score},SESS=%{tx.session_fixation_score}): individual paranoia level scores: %{TX.ANOMALY_SCORE_PL1}, %{TX.ANOMALY_SCORE_PL2}, %{TX.ANOMALY_SCORE_PL3}, %{TX.ANOMALY_SCORE_PL4}',\
-    tag:'event-correlation',\
-    ver:'OWASP_CRS/3.3.5'"
-
-SecRule TX:OUTBOUND_ANOMALY_SCORE "@ge %{tx.outbound_anomaly_score_threshold}" \
-    "id:980140,\
-    phase:5,\
-    pass,\
-    t:none,\
-    log,\
-    noauditlog,\
-    msg:'Outbound Anomaly Score Exceeded (score %{TX.OUTBOUND_ANOMALY_SCORE}): individual paranoia level scores: %{TX.OUTBOUND_ANOMALY_SCORE_PL1}, %{TX.OUTBOUND_ANOMALY_SCORE_PL2}, %{TX.OUTBOUND_ANOMALY_SCORE_PL3}, %{TX.OUTBOUND_ANOMALY_SCORE_PL4}',\
-    tag:'event-correlation',\
-    ver:'OWASP_CRS/3.3.5'"
-
-# Creating a total sum of all triggered outbound rules, including the ones only being monitored
-SecAction \
-    "id:980145,\
-    phase:5,\
-    pass,\
-    t:none,\
-    nolog,\
-    noauditlog,\
-    ver:'OWASP_CRS/3.3.5',\
-    setvar:'tx.executing_anomaly_score=%{tx.outbound_anomaly_score_pl1}',\
-    setvar:'tx.executing_anomaly_score=+%{tx.outbound_anomaly_score_pl2}',\
-    setvar:'tx.executing_anomaly_score=+%{tx.outbound_anomaly_score_pl3}',\
-    setvar:'tx.executing_anomaly_score=+%{tx.outbound_anomaly_score_pl4}'"
-
-SecRule TX:OUTBOUND_ANOMALY_SCORE "@lt %{tx.outbound_anomaly_score_threshold}" \
-    "id:980150,\
-    phase:5,\
-    pass,\
-    t:none,\
-    log,\
-    noauditlog,\
-    msg:'Outbound Anomaly Score (Total Outbound Score: %{TX.OUTBOUND_ANOMALY_SCORE}): individual paranoia level scores: %{TX.OUTBOUND_ANOMALY_SCORE_PL1}, %{TX.OUTBOUND_ANOMALY_SCORE_PL2}, %{TX.OUTBOUND_ANOMALY_SCORE_PL3}, %{TX.OUTBOUND_ANOMALY_SCORE_PL4}',\
-    tag:'event-correlation',\
-    ver:'OWASP_CRS/3.3.5',\
-    chain"
-    SecRule TX:MONITOR_ANOMALY_SCORE "@gt 1"
-
-SecMarker "END-CORRELATION"
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:980011,phase:1,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 1" "id:980012,phase:2,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
-#
-# -= Paranoia Level 1 (default) =- (apply only when tx.executing_paranoia_level is sufficiently high: 1 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:980013,phase:1,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 2" "id:980014,phase:2,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
-#
-# -= Paranoia Level 2 =- (apply only when tx.executing_paranoia_level is sufficiently high: 2 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:980015,phase:1,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 3" "id:980016,phase:2,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
-#
-# -= Paranoia Level 3 =- (apply only when tx.executing_paranoia_level is sufficiently high: 3 or higher)
-#
-
-
-
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:980017,phase:1,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
-SecRule TX:EXECUTING_PARANOIA_LEVEL "@lt 4" "id:980018,phase:2,pass,nolog,skipAfter:END-RESPONSE-980-CORRELATION"
-#
-# -= Paranoia Level 4 =- (apply only when tx.executing_paranoia_level is sufficiently high: 4 or higher)
-#
-
-
-
-#
-# -= Paranoia Levels Finished =-
-#
-SecMarker "END-RESPONSE-980-CORRELATION"
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/crawlers-user-agents.data b/pkg/render/applicationlayer/modsec-core-ruleset/crawlers-user-agents.data
deleted file mode 100644
index f7e5d86f59..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/crawlers-user-agents.data
+++ /dev/null
@@ -1,41 +0,0 @@
-# Search engine crawlers and other bots
-# crawler
-# https://80legs.com/
-80legs
-# site ripper
-# http://www.softbytelabs.com/en/BlackWidow/
-black widow
-blackwidow
-# crawler
-# 2006
-prowebwalker
-# generic crawler
-pymills-spider/
-# SEO
-# https://ahrefs.com/robot
-AhrefsBot
-# people database
-# https://pipl.com/bot/
-PiplBot
-# advertising targeting
-# https://www.grapeshot.com/crawler/
-GrapeshotCrawler/2.0
-grapeFX
-# SEO
-# http://www.searchmetrics.com/searchmetricsbot/
-SearchmetricsBot
-# SEO
-# https://www.semrush.com/bot/
-SemrushBot
-# SEO
-# https://moz.com/help/guides/moz-procedures/what-is-rogerbot
-rogerbot
-# SEO
-# http://www.majestic12.co.uk/projects/dsearch/mj12bot.php
-MJ12bot
-# news service
-Owlin bot
-# misbehaving spider
-Lingewoud-550-Spyder
-# https://www.wappalyzer.com/
-Wappalyzer
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/iis-errors.data b/pkg/render/applicationlayer/modsec-core-ruleset/iis-errors.data
deleted file mode 100644
index 47e49b75c5..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/iis-errors.data
+++ /dev/null
@@ -1,13 +0,0 @@
-<h2 style="font:8pt/11pt verdana; color:000000">HTTP 403.6 - Forbidden: IP address rejected<br>
-<TITLE>500 Internal Server Error</TITLE>
-Microsoft VBScript runtime (0x8
-error '800
-Application uses a value of the wrong type for the current operation
-Microsoft VBScript compilation (0x8
-Microsoft VBScript compilation error
-Microsoft .NET Framework Version:
-A trappable error occurred in an external object. The script cannot continue running
-Microsoft VBScript runtime Error
->Syntax error in string in query expression
-ADODB.Command
-Object required: '
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/lfi-os-files.data b/pkg/render/applicationlayer/modsec-core-ruleset/lfi-os-files.data
deleted file mode 100644
index b32464f2c5..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/lfi-os-files.data
+++ /dev/null
@@ -1,1115 +0,0 @@
-# Apache
-# (no slash; also guards against old.htaccess, old.htpasswd, etc.)
-.htaccess
-.htdigest
-.htpasswd
-# dotfiles (keep in sync with restricted-files.data)
-.aptitude/config
-.bash_config
-.bash_history
-.bash_logout
-.bash_profile
-.bashrc
-.cache/notify-osd.log
-.config/odesk/odesk team.conf
-.cshrc
-.drush/
-.gitconfig
-.gnupg/
-.hplip/hplip.conf
-.ksh_history
-.lesshst
-.lftp/
-.lhistory
-.lldb-history
-.local/share/mc/
-.my.cnf
-.mysql_history
-.nano_history
-.node_repl_history
-.nsr
-.pearrc
-.php_history
-.pki/
-.profile
-.psql_history
-.python_history
-.rediscli_history
-.Rhistory
-.sh_history
-.sqlite_history
-.ssh/authorized_keys
-.ssh/config
-.ssh/id_dsa
-.ssh/id_dsa.pub
-.ssh/id_rsa
-.ssh/id_rsa.pub
-.ssh/identity
-.ssh/identity.pub
-.ssh/known_hosts
-.subversion/auth
-.subversion/config
-.subversion/servers
-.tconn/tconn.conf
-.tcshrc
-.vidalia/vidalia.conf
-.viminfo
-.vimrc
-.xauthority
-.zhistory
-.zshrc
-.zsh_history
-etc/redis.conf
-etc/redis-sentinel.conf
-etc/php.ini
-bin/php.ini
-etc/httpd/php.ini
-usr/lib/php.ini
-usr/lib/php/php.ini
-usr/local/etc/php.ini
-usr/local/lib/php.ini
-usr/local/php/lib/php.ini
-usr/local/php4/lib/php.ini
-usr/local/php5/lib/php.ini
-usr/local/apache/conf/php.ini
-etc/php4.4/fcgi/php.ini
-etc/php4/apache/php.ini
-etc/php4/apache2/php.ini
-etc/php5/apache/php.ini
-etc/php5/apache2/php.ini
-etc/php/php.ini
-etc/php/php4/php.ini
-etc/php/apache/php.ini
-etc/php/apache2/php.ini
-web/conf/php.ini
-usr/local/zend/etc/php.ini
-opt/xampp/etc/php.ini
-var/local/www/conf/php.ini
-etc/php/cgi/php.ini
-etc/php4/cgi/php.ini
-etc/php5/cgi/php.ini
-home2/bin/stable/apache/php.ini
-home/bin/stable/apache/php.ini
-etc/httpd/conf.d/php.conf
-php5/php.ini
-php4/php.ini
-php/php.ini
-windows/php.ini
-winnt/php.ini
-apache/php/php.ini
-xampp/apache/bin/php.ini
-netserver/bin/stable/apache/php.ini
-volumes/macintosh_hd1/usr/local/php/lib/php.ini
-etc/mono/1.0/machine.config
-etc/mono/2.0/machine.config
-etc/mono/2.0/web.config
-etc/mono/config
-usr/local/cpanel/logs/stats_log
-usr/local/cpanel/logs/access_log
-usr/local/cpanel/logs/error_log
-usr/local/cpanel/logs/license_log
-usr/local/cpanel/logs/login_log
-var/cpanel/cpanel.config
-var/log/sw-cp-server/error_log
-usr/local/psa/admin/logs/httpsd_access_log
-usr/local/psa/admin/logs/panel.log
-var/log/sso/sso.log
-usr/local/psa/admin/conf/php.ini
-etc/sw-cp-server/applications.d/plesk.conf
-usr/local/psa/admin/conf/site_isolation_settings.ini
-usr/local/sb/config
-etc/sw-cp-server/applications.d/00-sso-cpserver.conf
-etc/sso/sso_config.ini
-etc/mysql/conf.d/old_passwords.cnf
-var/log/mysql/mysql-bin.log
-var/log/mysql/mysql-bin.index
-var/log/mysql/data/mysql-bin.index
-var/log/mysql.log
-var/log/mysql.err
-var/log/mysqlderror.log
-var/log/mysql/mysql.log
-var/log/mysql/mysql-slow.log
-var/log/mysql-bin.index
-var/log/data/mysql-bin.index
-var/mysql.log
-var/mysql-bin.index
-var/data/mysql-bin.index
-program files/mysql/mysql server 5.0/data/{host}.err
-program files/mysql/mysql server 5.0/data/mysql.log
-program files/mysql/mysql server 5.0/data/mysql.err
-program files/mysql/mysql server 5.0/data/mysql-bin.log
-program files/mysql/mysql server 5.0/data/mysql-bin.index
-program files/mysql/data/{host}.err
-program files/mysql/data/mysql.log
-program files/mysql/data/mysql.err
-program files/mysql/data/mysql-bin.log
-program files/mysql/data/mysql-bin.index
-mysql/data/{host}.err
-mysql/data/mysql.log
-mysql/data/mysql.err
-mysql/data/mysql-bin.log
-mysql/data/mysql-bin.index
-usr/local/mysql/data/mysql.log
-usr/local/mysql/data/mysql.err
-usr/local/mysql/data/mysql-bin.log
-usr/local/mysql/data/mysql-slow.log
-usr/local/mysql/data/mysqlderror.log
-usr/local/mysql/data/{host}.err
-usr/local/mysql/data/mysql-bin.index
-var/lib/mysql/my.cnf
-etc/mysql/my.cnf
-etc/my.cnf
-program files/mysql/mysql server 5.0/my.ini
-program files/mysql/mysql server 5.0/my.cnf
-program files/mysql/my.ini
-program files/mysql/my.cnf
-mysql/my.ini
-mysql/my.cnf
-mysql/bin/my.ini
-var/postgresql/log/postgresql.log
-var/log/postgresql/postgresql.log
-var/log/postgres/pg_backup.log
-var/log/postgres/postgres.log
-var/log/postgresql.log
-var/log/pgsql/pgsql.log
-var/log/postgresql/postgresql-8.1-main.log
-var/log/postgresql/postgresql-8.3-main.log
-var/log/postgresql/postgresql-8.4-main.log
-var/log/postgresql/postgresql-9.0-main.log
-var/log/postgresql/postgresql-9.1-main.log
-var/log/pgsql8.log
-var/log/postgresql/postgres.log
-var/log/pgsql_log
-var/log/postgresql/main.log
-var/log/cron/var/log/postgres.log
-usr/internet/pgsql/data/postmaster.log
-usr/local/pgsql/data/postgresql.log
-usr/local/pgsql/data/pg_log
-postgresql/log/pgadmin.log
-var/lib/pgsql/data/postgresql.conf
-var/postgresql/db/postgresql.conf
-var/nm2/postgresql.conf
-usr/local/pgsql/data/postgresql.conf
-usr/local/pgsql/data/pg_hba.conf
-usr/internet/pgsql/data/pg_hba.conf
-usr/local/pgsql/data/passwd
-usr/local/pgsql/bin/pg_passwd
-etc/postgresql/postgresql.conf
-etc/postgresql/pg_hba.conf
-home/postgres/data/postgresql.conf
-home/postgres/data/pg_version
-home/postgres/data/pg_ident.conf
-home/postgres/data/pg_hba.conf
-program files/postgresql/8.3/data/pg_hba.conf
-program files/postgresql/8.3/data/pg_ident.conf
-program files/postgresql/8.3/data/postgresql.conf
-program files/postgresql/8.4/data/pg_hba.conf
-program files/postgresql/8.4/data/pg_ident.conf
-program files/postgresql/8.4/data/postgresql.conf
-program files/postgresql/9.0/data/pg_hba.conf
-program files/postgresql/9.0/data/pg_ident.conf
-program files/postgresql/9.0/data/postgresql.conf
-program files/postgresql/9.1/data/pg_hba.conf
-program files/postgresql/9.1/data/pg_ident.conf
-program files/postgresql/9.1/data/postgresql.conf
-wamp/logs/access.log
-wamp/logs/apache_error.log
-wamp/logs/genquery.log
-wamp/logs/mysql.log
-wamp/logs/slowquery.log
-wamp/bin/apache/apache2.2.22/logs/access.log
-wamp/bin/apache/apache2.2.22/logs/error.log
-wamp/bin/apache/apache2.2.21/logs/access.log
-wamp/bin/apache/apache2.2.21/logs/error.log
-wamp/bin/mysql/mysql5.5.24/data/mysql-bin.index
-wamp/bin/mysql/mysql5.5.16/data/mysql-bin.index
-wamp/bin/apache/apache2.2.21/conf/httpd.conf
-wamp/bin/apache/apache2.2.22/conf/httpd.conf
-wamp/bin/apache/apache2.2.21/wampserver.conf
-wamp/bin/apache/apache2.2.22/wampserver.conf
-wamp/bin/apache/apache2.2.22/conf/wampserver.conf
-wamp/bin/mysql/mysql5.5.24/my.ini
-wamp/bin/mysql/mysql5.5.24/wampserver.conf
-wamp/bin/mysql/mysql5.5.16/my.ini
-wamp/bin/mysql/mysql5.5.16/wampserver.conf
-wamp/bin/php/php5.3.8/php.ini
-wamp/bin/php/php5.4.3/php.ini
-xampp/apache/logs/access.log
-xampp/apache/logs/error.log
-xampp/mysql/data/mysql-bin.index
-xampp/mysql/data/mysql.err
-xampp/mysql/data/{host}.err
-xampp/sendmail/sendmail.log
-xampp/apache/conf/httpd.conf
-xampp/filezillaftp/filezilla server.xml
-xampp/mercurymail/mercury.ini
-xampp/php/php.ini
-xampp/phpmyadmin/config.inc.php
-xampp/sendmail/sendmail.ini
-xampp/webalizer/webalizer.conf
-opt/lampp/etc/httpd.conf
-xampp/htdocs/aca.txt
-xampp/htdocs/admin.php
-xampp/htdocs/leer.txt
-usr/local/apache/logs/audit_log
-usr/local/apache2/logs/audit_log
-logs/security_debug_log
-logs/security_log
-usr/local/apache/conf/modsec.conf
-usr/local/apache2/conf/modsec.conf
-winnt/system32/logfiles/msftpsvc
-winnt/system32/logfiles/msftpsvc1
-winnt/system32/logfiles/msftpsvc2
-windows/system32/logfiles/msftpsvc
-windows/system32/logfiles/msftpsvc1
-windows/system32/logfiles/msftpsvc2
-etc/logrotate.d/proftpd
-www/logs/proftpd.system.log
-var/log/proftpd
-var/log/proftpd/xferlog.legacy
-var/log/proftpd.access_log
-var/log/proftpd.xferlog
-etc/pam.d/proftpd
-etc/proftp.conf
-etc/protpd/proftpd.conf
-etc/vhcs2/proftpd/proftpd.conf
-etc/proftpd/modules.conf
-var/log/vsftpd.log
-etc/vsftpd.chroot_list
-etc/logrotate.d/vsftpd.log
-etc/vsftpd/vsftpd.conf
-etc/vsftpd.conf
-etc/chrootusers
-var/log/xferlog
-var/adm/log/xferlog
-etc/wu-ftpd/ftpaccess
-etc/wu-ftpd/ftphosts
-etc/wu-ftpd/ftpusers
-var/log/pure-ftpd/pure-ftpd.log
-logs/pure-ftpd.log
-var/log/pureftpd.log
-usr/sbin/pure-config.pl
-usr/etc/pure-ftpd.conf
-etc/pure-ftpd/pure-ftpd.conf
-usr/local/etc/pure-ftpd.conf
-usr/local/etc/pureftpd.pdb
-usr/local/pureftpd/etc/pureftpd.pdb
-usr/local/pureftpd/sbin/pure-config.pl
-usr/local/pureftpd/etc/pure-ftpd.conf
-etc/pure-ftpd.conf
-etc/pure-ftpd/pure-ftpd.pdb
-etc/pureftpd.pdb
-etc/pureftpd.passwd
-etc/pure-ftpd/pureftpd.pdb
-usr/ports/ftp/pure-ftpd/pure-ftpd.conf
-usr/ports/ftp/pure-ftpd/pureftpd.pdb
-usr/ports/ftp/pure-ftpd/pureftpd.passwd
-usr/ports/net/pure-ftpd/pure-ftpd.conf
-usr/ports/net/pure-ftpd/pureftpd.pdb
-usr/ports/net/pure-ftpd/pureftpd.passwd
-usr/pkgsrc/net/pureftpd/pure-ftpd.conf
-usr/pkgsrc/net/pureftpd/pureftpd.pdb
-usr/pkgsrc/net/pureftpd/pureftpd.passwd
-usr/ports/contrib/pure-ftpd/pure-ftpd.conf
-usr/ports/contrib/pure-ftpd/pureftpd.pdb
-usr/ports/contrib/pure-ftpd/pureftpd.passwd
-var/log/muddleftpd
-usr/sbin/mudlogd
-etc/muddleftpd/mudlog
-etc/muddleftpd.com
-etc/muddleftpd/mudlogd.conf
-etc/muddleftpd/muddleftpd.conf
-var/log/muddleftpd.conf
-usr/sbin/mudpasswd
-etc/muddleftpd/muddleftpd.passwd
-etc/muddleftpd/passwd
-var/log/ftp-proxy/ftp-proxy.log
-var/log/ftp-proxy
-var/log/ftplog
-etc/logrotate.d/ftp
-etc/ftpchroot
-etc/ftphosts
-etc/ftpusers
-var/log/exim_mainlog
-var/log/exim/mainlog
-var/log/maillog
-var/log/exim_paniclog
-var/log/exim/paniclog
-var/log/exim/rejectlog
-var/log/exim_rejectlog
-winnt/system32/logfiles/smtpsvc
-winnt/system32/logfiles/smtpsvc1
-winnt/system32/logfiles/smtpsvc2
-winnt/system32/logfiles/smtpsvc3
-winnt/system32/logfiles/smtpsvc4
-winnt/system32/logfiles/smtpsvc5
-windows/system32/logfiles/smtpsvc
-windows/system32/logfiles/smtpsvc1
-windows/system32/logfiles/smtpsvc2
-windows/system32/logfiles/smtpsvc3
-windows/system32/logfiles/smtpsvc4
-windows/system32/logfiles/smtpsvc5
-etc/osxhttpd/osxhttpd.conf
-system/library/webobjects/adaptors/apache2.2/apache.conf
-etc/apache2/sites-available/default
-etc/apache2/sites-available/default-ssl
-etc/apache2/sites-enabled/000-default
-etc/apache2/sites-enabled/default
-etc/apache2/apache2.conf
-etc/apache2/ports.conf
-usr/local/etc/apache/httpd.conf
-usr/pkg/etc/httpd/httpd.conf
-usr/pkg/etc/httpd/httpd-default.conf
-usr/pkg/etc/httpd/httpd-vhosts.conf
-etc/httpd/mod_php.conf
-etc/httpd/extra/httpd-ssl.conf
-etc/rc.d/rc.httpd
-usr/local/apache/conf/httpd.conf.default
-usr/local/apache/conf/access.conf
-usr/local/apache22/conf/httpd.conf
-usr/local/apache22/httpd.conf
-usr/local/etc/apache22/conf/httpd.conf
-usr/local/apps/apache22/conf/httpd.conf
-etc/apache22/conf/httpd.conf
-etc/apache22/httpd.conf
-opt/apache22/conf/httpd.conf
-usr/local/etc/apache2/vhosts.conf
-usr/local/apache/conf/vhosts.conf
-usr/local/apache2/conf/vhosts.conf
-usr/local/apache/conf/vhosts-custom.conf
-usr/local/apache2/conf/vhosts-custom.conf
-etc/apache/default-server.conf
-etc/apache2/default-server.conf
-usr/local/apache2/conf/extra/httpd-ssl.conf
-usr/local/apache2/conf/ssl.conf
-etc/httpd/conf.d
-usr/local/etc/apache22/httpd.conf
-usr/local/etc/apache2/httpd.conf
-etc/apache2/httpd2.conf
-etc/apache2/ssl-global.conf
-etc/apache2/vhosts.d/00_default_vhost.conf
-apache/conf/httpd.conf
-etc/apache/httpd.conf
-etc/httpd/conf
-http/httpd.conf
-usr/local/apache1.3/conf/httpd.conf
-usr/local/etc/httpd/conf
-var/apache/conf/httpd.conf
-var/www/conf
-www/apache/conf/httpd.conf
-www/conf/httpd.conf
-etc/init.d
-etc/apache/access.conf
-etc/rc.conf
-www/logs/freebsddiary-error.log
-www/logs/freebsddiary-access_log
-library/webserver/documents/index.html
-library/webserver/documents/index.htm
-library/webserver/documents/default.html
-library/webserver/documents/default.htm
-library/webserver/documents/index.php
-library/webserver/documents/default.php
-var/log/webmin/miniserv.log
-usr/local/etc/webmin/miniserv.conf
-etc/webmin/miniserv.conf
-usr/local/etc/webmin/miniserv.users
-etc/webmin/miniserv.users
-winnt/system32/logfiles/w3svc/inetsvn1.log
-winnt/system32/logfiles/w3svc1/inetsvn1.log
-winnt/system32/logfiles/w3svc2/inetsvn1.log
-winnt/system32/logfiles/w3svc3/inetsvn1.log
-windows/system32/logfiles/w3svc/inetsvn1.log
-windows/system32/logfiles/w3svc1/inetsvn1.log
-windows/system32/logfiles/w3svc2/inetsvn1.log
-windows/system32/logfiles/w3svc3/inetsvn1.log
-var/log/httpd/access_log
-var/log/httpd/error_log
-apache/logs/error.log
-apache/logs/access.log
-apache2/logs/error.log
-apache2/logs/access.log
-logs/error.log
-logs/access.log
-etc/httpd/logs/access_log
-etc/httpd/logs/access.log
-etc/httpd/logs/error_log
-etc/httpd/logs/error.log
-usr/local/apache/logs/access_log
-usr/local/apache/logs/access.log
-usr/local/apache/logs/error_log
-usr/local/apache/logs/error.log
-usr/local/apache2/logs/access_log
-usr/local/apache2/logs/access.log
-usr/local/apache2/logs/error_log
-usr/local/apache2/logs/error.log
-var/www/logs/access_log
-var/www/logs/access.log
-var/www/logs/error_log
-var/www/logs/error.log
-var/log/httpd/access.log
-var/log/httpd/error.log
-var/log/apache/access_log
-var/log/apache/access.log
-var/log/apache/error_log
-var/log/apache/error.log
-var/log/apache2/access_log
-var/log/apache2/access.log
-var/log/apache2/error_log
-var/log/apache2/error.log
-var/log/access_log
-var/log/access.log
-var/log/error_log
-var/log/error.log
-opt/lampp/logs/access_log
-opt/lampp/logs/error_log
-opt/xampp/logs/access_log
-opt/xampp/logs/error_log
-opt/lampp/logs/access.log
-opt/lampp/logs/error.log
-opt/xampp/logs/access.log
-opt/xampp/logs/error.log
-program files/apache group/apache/logs/access.log
-program files/apache group/apache/logs/error.log
-program files/apache software foundation/apache2.2/logs/error.log
-program files/apache software foundation/apache2.2/logs/access.log
-opt/apache/apache.conf
-opt/apache/conf/apache.conf
-opt/apache2/apache.conf
-opt/apache2/conf/apache.conf
-opt/httpd/apache.conf
-opt/httpd/conf/apache.conf
-etc/httpd/apache.conf
-etc/apache2/apache.conf
-etc/httpd/conf/apache.conf
-usr/local/apache/apache.conf
-usr/local/apache/conf/apache.conf
-usr/local/apache2/apache.conf
-usr/local/apache2/conf/apache.conf
-usr/local/php/apache.conf.php
-usr/local/php4/apache.conf.php
-usr/local/php5/apache.conf.php
-usr/local/php/apache.conf
-usr/local/php4/apache.conf
-usr/local/php5/apache.conf
-private/etc/httpd/apache.conf
-opt/apache/apache2.conf
-opt/apache/conf/apache2.conf
-opt/apache2/apache2.conf
-opt/apache2/conf/apache2.conf
-opt/httpd/apache2.conf
-opt/httpd/conf/apache2.conf
-etc/httpd/apache2.conf
-etc/httpd/conf/apache2.conf
-usr/local/apache/apache2.conf
-usr/local/apache/conf/apache2.conf
-usr/local/apache2/apache2.conf
-usr/local/apache2/conf/apache2.conf
-usr/local/php/apache2.conf.php
-usr/local/php4/apache2.conf.php
-usr/local/php5/apache2.conf.php
-usr/local/php/apache2.conf
-usr/local/php4/apache2.conf
-usr/local/php5/apache2.conf
-private/etc/httpd/apache2.conf
-usr/local/apache/conf/httpd.conf
-usr/local/apache2/conf/httpd.conf
-etc/httpd/conf/httpd.conf
-etc/apache/apache.conf
-etc/apache/conf/httpd.conf
-etc/apache2/httpd.conf
-usr/apache2/conf/httpd.conf
-usr/apache/conf/httpd.conf
-usr/local/etc/apache/conf/httpd.conf
-usr/local/apache/httpd.conf
-usr/local/apache2/httpd.conf
-usr/local/httpd/conf/httpd.conf
-usr/local/etc/apache2/conf/httpd.conf
-usr/local/etc/httpd/conf/httpd.conf
-usr/local/apps/apache2/conf/httpd.conf
-usr/local/apps/apache/conf/httpd.conf
-usr/local/php/httpd.conf.php
-usr/local/php4/httpd.conf.php
-usr/local/php5/httpd.conf.php
-usr/local/php/httpd.conf
-usr/local/php4/httpd.conf
-usr/local/php5/httpd.conf
-etc/apache2/conf/httpd.conf
-etc/http/conf/httpd.conf
-etc/httpd/httpd.conf
-etc/http/httpd.conf
-etc/httpd.conf
-opt/apache/conf/httpd.conf
-opt/apache2/conf/httpd.conf
-var/www/conf/httpd.conf
-private/etc/httpd/httpd.conf
-private/etc/httpd/httpd.conf.default
-etc/apache2/vhosts.d/default_vhost.include
-etc/apache2/conf.d/charset
-etc/apache2/conf.d/security
-etc/apache2/envvars
-etc/apache2/mods-available/autoindex.conf
-etc/apache2/mods-available/deflate.conf
-etc/apache2/mods-available/dir.conf
-etc/apache2/mods-available/mem_cache.conf
-etc/apache2/mods-available/mime.conf
-etc/apache2/mods-available/proxy.conf
-etc/apache2/mods-available/setenvif.conf
-etc/apache2/mods-available/ssl.conf
-etc/apache2/mods-enabled/alias.conf
-etc/apache2/mods-enabled/deflate.conf
-etc/apache2/mods-enabled/dir.conf
-etc/apache2/mods-enabled/mime.conf
-etc/apache2/mods-enabled/negotiation.conf
-etc/apache2/mods-enabled/php5.conf
-etc/apache2/mods-enabled/status.conf
-program files/apache group/apache/conf/httpd.conf
-program files/apache group/apache2/conf/httpd.conf
-program files/xampp/apache/conf/apache.conf
-program files/xampp/apache/conf/apache2.conf
-program files/xampp/apache/conf/httpd.conf
-program files/apache group/apache/apache.conf
-program files/apache group/apache/conf/apache.conf
-program files/apache group/apache2/conf/apache.conf
-program files/apache group/apache/apache2.conf
-program files/apache group/apache/conf/apache2.conf
-program files/apache group/apache2/conf/apache2.conf
-program files/apache software foundation/apache2.2/conf/httpd.conf
-volumes/macintosh_hd1/opt/httpd/conf/httpd.conf
-volumes/macintosh_hd1/opt/apache/conf/httpd.conf
-volumes/macintosh_hd1/opt/apache2/conf/httpd.conf
-volumes/macintosh_hd1/usr/local/php/httpd.conf.php
-volumes/macintosh_hd1/usr/local/php4/httpd.conf.php
-volumes/macintosh_hd1/usr/local/php5/httpd.conf.php
-volumes/webbackup/opt/apache2/conf/httpd.conf
-volumes/webbackup/private/etc/httpd/httpd.conf
-volumes/webbackup/private/etc/httpd/httpd.conf.default
-usr/local/etc/apache/vhosts.conf
-usr/local/jakarta/tomcat/conf/jakarta.conf
-usr/local/jakarta/tomcat/conf/server.xml
-usr/local/jakarta/tomcat/conf/context.xml
-usr/local/jakarta/tomcat/conf/workers.properties
-usr/local/jakarta/tomcat/conf/logging.properties
-usr/local/jakarta/dist/tomcat/conf/jakarta.conf
-usr/local/jakarta/dist/tomcat/conf/server.xml
-usr/local/jakarta/dist/tomcat/conf/context.xml
-usr/local/jakarta/dist/tomcat/conf/workers.properties
-usr/local/jakarta/dist/tomcat/conf/logging.properties
-usr/share/tomcat6/conf/server.xml
-usr/share/tomcat6/conf/context.xml
-usr/share/tomcat6/conf/workers.properties
-usr/share/tomcat6/conf/logging.properties
-var/log/tomcat6/catalina.out
-var/cpanel/tomcat.options
-usr/local/jakarta/tomcat/logs/catalina.out
-usr/local/jakarta/tomcat/logs/catalina.err
-opt/tomcat/logs/catalina.out
-opt/tomcat/logs/catalina.err
-usr/share/logs/catalina.out
-usr/share/logs/catalina.err
-usr/share/tomcat/logs/catalina.out
-usr/share/tomcat/logs/catalina.err
-usr/share/tomcat6/logs/catalina.out
-usr/share/tomcat6/logs/catalina.err
-usr/local/apache/logs/mod_jk.log
-usr/local/jakarta/tomcat/logs/mod_jk.log
-usr/local/jakarta/dist/tomcat/logs/mod_jk.log
-opt/[jboss]/server/default/conf/jboss-minimal.xml
-opt/[jboss]/server/default/conf/jboss-service.xml
-opt/[jboss]/server/default/conf/jndi.properties
-opt/[jboss]/server/default/conf/log4j.xml
-opt/[jboss]/server/default/conf/login-config.xml
-opt/[jboss]/server/default/conf/standardjaws.xml
-opt/[jboss]/server/default/conf/standardjboss.xml
-opt/[jboss]/server/default/conf/server.log.properties
-opt/[jboss]/server/default/deploy/jboss-logging.xml
-usr/local/[jboss]/server/default/conf/jboss-minimal.xml
-usr/local/[jboss]/server/default/conf/jboss-service.xml
-usr/local/[jboss]/server/default/conf/jndi.properties
-usr/local/[jboss]/server/default/conf/log4j.xml
-usr/local/[jboss]/server/default/conf/login-config.xml
-usr/local/[jboss]/server/default/conf/standardjaws.xml
-usr/local/[jboss]/server/default/conf/standardjboss.xml
-usr/local/[jboss]/server/default/conf/server.log.properties
-usr/local/[jboss]/server/default/deploy/jboss-logging.xml
-private/tmp/[jboss]/server/default/conf/jboss-minimal.xml
-private/tmp/[jboss]/server/default/conf/jboss-service.xml
-private/tmp/[jboss]/server/default/conf/jndi.properties
-private/tmp/[jboss]/server/default/conf/log4j.xml
-private/tmp/[jboss]/server/default/conf/login-config.xml
-private/tmp/[jboss]/server/default/conf/standardjaws.xml
-private/tmp/[jboss]/server/default/conf/standardjboss.xml
-private/tmp/[jboss]/server/default/conf/server.log.properties
-private/tmp/[jboss]/server/default/deploy/jboss-logging.xml
-tmp/[jboss]/server/default/conf/jboss-minimal.xml
-tmp/[jboss]/server/default/conf/jboss-service.xml
-tmp/[jboss]/server/default/conf/jndi.properties
-tmp/[jboss]/server/default/conf/log4j.xml
-tmp/[jboss]/server/default/conf/login-config.xml
-tmp/[jboss]/server/default/conf/standardjaws.xml
-tmp/[jboss]/server/default/conf/standardjboss.xml
-tmp/[jboss]/server/default/conf/server.log.properties
-tmp/[jboss]/server/default/deploy/jboss-logging.xml
-program files/[jboss]/server/default/conf/jboss-minimal.xml
-program files/[jboss]/server/default/conf/jboss-service.xml
-program files/[jboss]/server/default/conf/jndi.properties
-program files/[jboss]/server/default/conf/log4j.xml
-program files/[jboss]/server/default/conf/login-config.xml
-program files/[jboss]/server/default/conf/standardjaws.xml
-program files/[jboss]/server/default/conf/standardjboss.xml
-program files/[jboss]/server/default/conf/server.log.properties
-program files/[jboss]/server/default/deploy/jboss-logging.xml
-[jboss]/server/default/conf/jboss-minimal.xml
-[jboss]/server/default/conf/jboss-service.xml
-[jboss]/server/default/conf/jndi.properties
-[jboss]/server/default/conf/log4j.xml
-[jboss]/server/default/conf/login-config.xml
-[jboss]/server/default/conf/standardjaws.xml
-[jboss]/server/default/conf/standardjboss.xml
-[jboss]/server/default/conf/server.log.properties
-[jboss]/server/default/deploy/jboss-logging.xml
-opt/[jboss]/server/default/log/server.log
-opt/[jboss]/server/default/log/boot.log
-usr/local/[jboss]/server/default/log/server.log
-usr/local/[jboss]/server/default/log/boot.log
-private/tmp/[jboss]/server/default/log/server.log
-private/tmp/[jboss]/server/default/log/boot.log
-tmp/[jboss]/server/default/log/server.log
-tmp/[jboss]/server/default/log/boot.log
-program files/[jboss]/server/default/log/server.log
-program files/[jboss]/server/default/log/boot.log
-[jboss]/server/default/log/server.log
-[jboss]/server/default/log/boot.log
-var/log/lighttpd.error.log
-var/log/lighttpd.access.log
-var/lighttpd.log
-var/logs/access.log
-var/log/lighttpd/
-var/log/lighttpd/error.log
-var/log/lighttpd/access.www.log
-var/log/lighttpd/error.www.log
-var/log/lighttpd/access.log
-usr/local/apache2/logs/lighttpd.error.log
-usr/local/apache2/logs/lighttpd.log
-usr/local/apache/logs/lighttpd.error.log
-usr/local/apache/logs/lighttpd.log
-usr/local/lighttpd/log/lighttpd.error.log
-usr/local/lighttpd/log/access.log
-var/log/lighttpd/{domain}/access.log
-var/log/lighttpd/{domain}/error.log
-usr/home/user/var/log/lighttpd.error.log
-usr/home/user/var/log/apache.log
-home/user/lighttpd/lighttpd.conf
-usr/home/user/lighttpd/lighttpd.conf
-etc/lighttpd/lighthttpd.conf
-usr/local/etc/lighttpd.conf
-usr/local/lighttpd/conf/lighttpd.conf
-usr/local/etc/lighttpd.conf.new
-var/www/.lighttpdpassword
-var/log/nginx/access_log
-var/log/nginx/error_log
-var/log/nginx/access.log
-var/log/nginx/error.log
-var/log/nginx.access_log
-var/log/nginx.error_log
-logs/access_log
-logs/error_log
-etc/nginx/nginx.conf
-usr/local/etc/nginx/nginx.conf
-usr/local/nginx/conf/nginx.conf
-usr/local/zeus/web/global.cfg
-usr/local/zeus/web/log/errors
-opt/lsws/conf/httpd_conf.xml
-usr/local/lsws/conf/httpd_conf.xml
-opt/lsws/logs/error.log
-opt/lsws/logs/access.log
-usr/local/lsws/logs/error.log
-usr/local/logs/access.log
-usr/local/samba/lib/log.user
-usr/local/logs/samba.log
-var/log/samba/log.smbd
-var/log/samba/log.nmbd
-var/log/samba.log
-var/log/samba.log1
-var/log/samba.log2
-var/log/log.smb
-etc/samba/netlogon
-etc/smbpasswd
-etc/smb.conf
-etc/samba/dhcp.conf
-etc/samba/smb.conf
-etc/samba/samba.conf
-etc/samba/smb.conf.user
-etc/samba/smbpasswd
-etc/samba/smbusers
-etc/samba/private/smbpasswd
-usr/local/etc/smb.conf
-usr/local/samba/lib/smb.conf.user
-etc/dhcp3/dhclient.conf
-etc/dhcp3/dhcpd.conf
-etc/dhcp/dhclient.conf
-program files/vidalia bundle/polipo/polipo.conf
-etc/tor/tor-tsocks.conf
-etc/stunnel/stunnel.conf
-etc/tsocks.conf
-etc/tinyproxy/tinyproxy.conf
-etc/miredo-server.conf
-etc/miredo.conf
-etc/miredo/miredo-server.conf
-etc/miredo/miredo.conf
-etc/wicd/dhclient.conf.template.default
-etc/wicd/manager-settings.conf
-etc/wicd/wired-settings.conf
-etc/wicd/wireless-settings.conf
-var/log/ipfw.log
-var/log/ipfw
-var/log/ipfw/ipfw.log
-var/log/ipfw.today
-etc/ipfw.rules
-etc/ipfw.conf
-etc/firewall.rules
-winnt/system32/logfiles/firewall/pfirewall.log
-winnt/system32/logfiles/firewall/pfirewall.log.old
-windows/system32/logfiles/firewall/pfirewall.log
-windows/system32/logfiles/firewall/pfirewall.log.old
-etc/clamav/clamd.conf
-etc/clamav/freshclam.conf
-etc/x11/xorg.conf
-etc/x11/xorg.conf-vesa
-etc/x11/xorg.conf-vmware
-etc/x11/xorg.conf.beforevmwaretoolsinstall
-etc/x11/xorg.conf.orig
-etc/bluetooth/input.conf
-etc/bluetooth/main.conf
-etc/bluetooth/network.conf
-etc/bluetooth/rfcomm.conf
-proc/self/environ
-proc/self/mounts
-proc/self/stat
-proc/self/status
-proc/self/cmdline
-proc/self/fd/0
-proc/self/fd/1
-proc/self/fd/2
-proc/self/fd/3
-proc/self/fd/4
-proc/self/fd/5
-proc/self/fd/6
-proc/self/fd/7
-proc/self/fd/8
-proc/self/fd/9
-proc/self/fd/10
-proc/self/fd/11
-proc/self/fd/12
-proc/self/fd/13
-proc/self/fd/14
-proc/self/fd/15
-proc/version
-proc/devices
-proc/cpuinfo
-proc/meminfo
-proc/net/tcp
-proc/net/udp
-etc/bash_completion.d/debconf
-root/.bash_logout
-root/.bash_history
-root/.bash_config
-root/.bashrc
-etc/bash.bashrc
-var/adm/syslog
-var/adm/sulog
-var/adm/utmp
-var/adm/utmpx
-var/adm/wtmp
-var/adm/wtmpx
-var/adm/lastlog/username
-usr/spool/lp/log
-var/adm/lp/lpd-errs
-usr/lib/cron/log
-var/adm/loginlog
-var/adm/pacct
-var/adm/dtmp
-var/adm/acct/sum/loginlog
-var/adm/x0msgs
-var/adm/crash/vmcore
-var/adm/crash/unix
-etc/newsyslog.conf
-var/adm/qacct
-var/adm/ras/errlog
-var/adm/ras/bootlog
-var/adm/cron/log
-etc/utmp
-etc/security/lastlog
-etc/security/failedlogin
-usr/spool/mqueue/syslog
-var/adm/messages
-var/adm/aculogs
-var/adm/aculog
-var/adm/vold.log
-var/adm/log/asppp.log
-var/log/poplog
-var/log/authlog
-var/lp/logs/lpsched
-var/lp/logs/lpnet
-var/lp/logs/requests
-var/cron/log
-var/saf/_log
-var/saf/port/log
-var/log/news.all
-var/log/news/news.all
-var/log/news/news.crit
-var/log/news/news.err
-var/log/news/news.notice
-var/log/news/suck.err
-var/log/news/suck.notice
-var/log/messages
-var/log/messages.1
-var/log/user.log
-var/log/user.log.1
-var/log/auth.log
-var/log/pm-powersave.log
-var/log/xorg.0.log
-var/log/daemon.log
-var/log/daemon.log.1
-var/log/kern.log
-var/log/kern.log.1
-var/log/mail.err
-var/log/mail.info
-var/log/mail.warn
-var/log/ufw.log
-var/log/boot.log
-var/log/syslog
-var/log/syslog.1
-tmp/access.log
-etc/sensors.conf
-etc/sensors3.conf
-etc/host.conf
-etc/pam.conf
-etc/resolv.conf
-etc/apt/apt.conf
-etc/inetd.conf
-etc/syslog.conf
-etc/sysctl.conf
-etc/sysctl.d/10-console-messages.conf
-etc/sysctl.d/10-network-security.conf
-etc/sysctl.d/10-process-security.conf
-etc/sysctl.d/wine.sysctl.conf
-etc/security/access.conf
-etc/security/group.conf
-etc/security/limits.conf
-etc/security/namespace.conf
-etc/security/pam_env.conf
-etc/security/sepermit.conf
-etc/security/time.conf
-etc/ssh/sshd_config
-etc/adduser.conf
-etc/deluser.conf
-etc/avahi/avahi-daemon.conf
-etc/ca-certificates.conf
-etc/ca-certificates.conf.dpkg-old
-etc/casper.conf
-etc/chkrootkit.conf
-etc/debconf.conf
-etc/dns2tcpd.conf
-etc/e2fsck.conf
-etc/esound/esd.conf
-etc/etter.conf
-etc/fuse.conf
-etc/foremost.conf
-etc/hdparm.conf
-etc/kernel-img.conf
-etc/kernel-pkg.conf
-etc/ld.so.conf
-etc/ltrace.conf
-etc/mail/sendmail.conf
-etc/manpath.config
-etc/kbd/config
-etc/ldap/ldap.conf
-etc/logrotate.conf
-etc/mtools.conf
-etc/smi.conf
-etc/updatedb.conf
-etc/pulse/client.conf
-usr/share/adduser/adduser.conf
-etc/hostname
-etc/networks
-etc/timezone
-etc/modules
-etc/passwd
-etc/passwd~
-etc/passwd-
-etc/shadow
-etc/shadow~
-etc/shadow-
-etc/fstab
-etc/motd
-etc/hosts
-etc/group
-etc/group-
-etc/alias
-etc/crontab
-etc/crypttab
-etc/exports
-etc/mtab
-etc/hosts.allow
-etc/hosts.deny
-etc/os-release
-etc/password.master
-etc/profile
-etc/default/grub
-etc/resolvconf/update-libc.d/sendmail
-etc/inittab
-etc/issue
-etc/issue.net
-etc/login.defs
-etc/sudoers
-etc/sysconfig/network-scripts/ifcfg-eth0
-etc/redhat-release
-etc/debian_version
-etc/fedora-release
-etc/mandrake-release
-etc/slackware-release
-etc/suse-release
-etc/security/group
-etc/security/passwd
-etc/security/user
-etc/security/environ
-etc/security/limits
-etc/security/opasswd
-boot/grub/grub.cfg
-boot/grub/menu.lst
-root/.ksh_history
-root/.xauthority
-usr/lib/security/mkuser.default
-var/log/squirrelmail.log
-var/log/apache2/squirrelmail.log
-var/log/apache2/squirrelmail.err.log
-var/lib/squirrelmail/prefs/squirrelmail.log
-var/log/mail.log
-etc/squirrelmail/apache.conf
-etc/squirrelmail/config_local.php
-etc/squirrelmail/default_pref
-etc/squirrelmail/index.php
-etc/squirrelmail/config_default.php
-etc/squirrelmail/config.php
-etc/squirrelmail/filters_setup.php
-etc/squirrelmail/sqspell_config.php
-etc/squirrelmail/config/config.php
-etc/httpd/conf.d/squirrelmail.conf
-usr/share/squirrelmail/config/config.php
-private/etc/squirrelmail/config/config.php
-srv/www/htdos/squirrelmail/config/config.php
-var/www/squirrelmail/config/config.php
-var/www/html/squirrelmail/config/config.php
-var/www/html/squirrelmail-1.2.9/config/config.php
-usr/share/squirrelmail/plugins/squirrel_logger/setup.php
-usr/local/squirrelmail/www/readme
-windows/system32/drivers/etc/hosts
-windows/system32/drivers/etc/lmhosts.sam
-windows/system32/drivers/etc/networks
-windows/system32/drivers/etc/protocol
-windows/system32/drivers/etc/services
-/boot.ini
-windows/debug/netsetup.log
-windows/comsetup.log
-windows/repair/setup.log
-windows/setupact.log
-windows/setupapi.log
-windows/setuperr.log
-windows/updspapi.log
-windows/wmsetup.log
-windows/windowsupdate.log
-windows/odbc.ini
-usr/local/psa/admin/htdocs/domains/databases/phpmyadmin/libraries/config.default.php
-etc/apache2/conf.d/phpmyadmin.conf
-etc/phpmyadmin/config.inc.php
-etc/openldap/ldap.conf
-etc/cups/acroread.conf
-etc/cups/cupsd.conf
-etc/cups/cupsd.conf.default
-etc/cups/pdftops.conf
-etc/cups/printers.conf
-windows/system32/macromed/flash/flashinstall.log
-windows/system32/macromed/flash/install.log
-etc/cvs-cron.conf
-etc/cvs-pserver.conf
-etc/subversion/config
-etc/modprobe.d/vmware-tools.conf
-etc/updatedb.conf.beforevmwaretoolsinstall
-etc/vmware-tools/config
-etc/vmware-tools/tpvmlp.conf
-etc/vmware-tools/vmware-tools-libraries.conf
-var/log/vmware/hostd.log
-var/log/vmware/hostd-1.log
-# Wordpress
-wp-config.php
-wp-config.bak
-wp-config.old
-wp-config.temp
-wp-config.tmp
-wp-config.txt
-# Symfony
-config.yml
-config_dev.yml
-config_prod.yml
-config_test.yml
-parameters.yml
-routing.yml
-security.yml
-services.yml
-# Drupal
-sites/default/default.settings.php
-sites/default/settings.php
-sites/default/settings.local.php
-# Magento
-app/etc/local.xml
-# Sublime Text
-sftp-config.json
-# ASP.NET
-Web.config
-# vBulletin
-includes/config.php
-# OSCommerce
-includes/configure.php
-# phpMyAdmin
-config.inc.php
-# MediaWiki
-LocalSettings.php
-# MyBB
-inc/config.php
-# TYPO3
-typo3conf/localconf.php
-# Laravel
-# Note: these entries might be benign in REQUEST_FILENAME
-config/app.php
-config/custom.php
-config/database.php
-# Joomla
-# Note: this string might be benign in REQUEST_FILENAME
-/configuration.php
-# phpBB
-# Note: this string might be benign in REQUEST_FILENAME
-/config.php
-#Missing Debian based sensitive directories
-var/mail/www-data
-etc/network/
-etc/init/
-#IIS
-inetpub/wwwroot/global.asa
-system32/inetsrv/config/applicationhost.config
-system32/inetsrv/config/administration.config
-system32/inetsrv/config/redirection.config
-#Windows files
-system32/config/default
-system32/config/sam
-system32/config/system
-system32/config/software
-winnt/repair/sam._
-# Node
-package.json
-package-lock.json
-gruntfile.js
-npm-debug.log
-ormconfig.json
-tsconfig.json
-webpack.config.js
-yarn.lock
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/php-config-directives.data b/pkg/render/applicationlayer/modsec-core-ruleset/php-config-directives.data
deleted file mode 100644
index ecdd090f6d..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/php-config-directives.data
+++ /dev/null
@@ -1,276 +0,0 @@
-allow_call_time_pass_reference
-allow_url_fopen
-allow_url_include
-always_populate_raw_post_data
-arg_separator.input
-arg_separator.output
-asp_tags
-assert.active
-assert.bail
-assert.callback
-assert.quiet_eval
-assert.warning
-auto_append_file
-auto_detect_line_endings
-auto_globals_jit
-auto_prepend_file
-bcmath.scale
-birdstep.max_links
-browscap
-cgi.fix_pathinfo
-cgi.force_redirect
-cgi.nph
-cgi.redirect_status_env
-cgi.rfc2616_headers
-com.allow_dcom
-com.autoregister_casesensitive
-com.autoregister_typelib
-com.autoregister_verbose
-com.code_page
-com.typelib_file
-date.default_latitude
-date.default_longitude
-date.sunrise_zenith
-date.sunset_zenith
-date.timezone
-dba.default_handler
-default_charset
-default_mimetype
-default_socket_timeout
-define_syslog_variables
-disable_classes
-disable_functions
-display_errors
-display_startup_errors
-doc_root
-docref_ext
-docref_root
-enable_dl
-error_append_string
-error_log
-error_prepend_string
-error_reporting
-exif.decode_jis_intel
-exif.decode_jis_motorola
-exif.decode_unicode_intel
-exif.decode_unicode_motorola
-exif.encode_jis
-exif.encode_unicode
-expose_php
-extension_dir
-fastcgi.impersonate
-fastcgi.logging
-file_uploads
-filter.default
-filter.default_flags
-gd.jpeg_ignore_warning
-highlight.bg
-highlight.comment
-highlight.default
-highlight.html
-highlight.keyword
-highlight.string
-html_errors
-ibase.allow_persistent
-ibase.dateformat
-ibase.default_charset
-ibase.default_db
-ibase.default_password
-ibase.default_user
-ibase.max_links
-ibase.max_persistent
-ibase.timeformat
-ibase.timestampformat
-iconv.input_encoding
-iconv.internal_encoding
-iconv.output_encoding
-ignore_repeated_errors
-ignore_repeated_source
-ignore_user_abort
-implicit_flush
-include_path
-intl.default_locale
-intl.error_level
-ldap.max_links
-log_errors
-log_errors_max_len
-magic_quotes_gpc
-magic_quotes_runtime
-magic_quotes_sybase
-mail.add_x_header
-mail.force_extra_parameters
-mail.log
-max_execution_time
-max_file_uploads
-max_input_nesting_level
-max_input_time
-mbstring.detect_order
-mbstring.encoding_translation
-mbstring.func_overload
-mbstring.http_input
-mbstring.http_output
-mbstring.http_output_conv_mimetype
-mbstring.internal_encoding
-mbstring.language
-mbstring.script_encoding
-mbstring.strict_detection
-mbstring.substitute_character
-mcrypt.algorithms_dir
-mcrypt.modes_dir
-memory_limit
-mssql.allow_persistent
-mssql.batchsize
-mssql.charset
-mssql.compatability_mode
-mssql.connect_timeout
-mssql.datetimeconvert
-mssql.max_links
-mssql.max_persistent
-mssql.max_procs
-mssql.min_error_severity
-mssql.min_message_severity
-mssql.secure_connection
-mssql.textlimit
-mssql.textsize
-mssql.timeout
-mysql.allow_local_infile
-mysql.allow_persistent
-mysql.cache_size
-mysql.connect_timeout
-mysql.default_host
-mysql.default_password
-mysql.default_port
-mysql.default_socket
-mysql.default_user
-mysql.max_links
-mysql.max_persistent
-mysql.trace_mode
-mysqli.allow_local_infile
-mysqli.allow_persistent
-mysqli.cache_size
-mysqli.default_host
-mysqli.default_port
-mysqli.default_pw
-mysqli.default_socket
-mysqli.default_user
-mysqli.max_links
-mysqli.max_persistent
-mysqli.reconnect
-mysqlnd.collect_memory_statistics
-mysqlnd.collect_statistics
-mysqlnd.net_cmd_buffer_size
-mysqlnd.net_read_buffer_size
-oci8.connection_class
-oci8.default_prefetch
-oci8.events
-oci8.max_persistent
-oci8.old_oci_close_semantics
-oci8.persistent_timeout
-oci8.ping_interval
-oci8.privileged_connect
-oci8.statement_cache_size
-odbc.allow_persistent
-odbc.check_persistent
-odbc.default_db
-odbc.default_pw
-odbc.default_user
-odbc.defaultbinmode
-odbc.defaultlrl
-odbc.max_links
-odbc.max_persistent
-open_basedir
-output_buffering
-output_handler
-pcre.backtrack_limit
-pcre.recursion_limit
-pdo_mysql.cache_size
-pdo_mysql.default_socket
-pdo_odbc.connection_pooling
-pgsql.allow_persistent
-pgsql.auto_reset_persistent
-pgsql.ignore_notice
-pgsql.log_notice
-pgsql.max_links
-pgsql.max_persistent
-phar.cache_list
-phar.readonly
-phar.require_hash
-post_max_size
-realpath_cache_size
-realpath_cache_ttl
-register_argc_argv
-register_globals
-register_long_arrays
-report_memleaks
-report_zend_debug
-request_order
-safe_mode
-safe_mode_allowed_env_vars
-safe_mode_exec_dir
-safe_mode_gid
-safe_mode_include_dir
-safe_mode_protected_env_vars
-sendmail_from
-sendmail_path
-serialize_precision
-session.auto_start
-session.bug_compat_42
-session.bug_compat_warn
-session.cache_expire
-session.cache_limiter
-session.cookie_domain
-session.cookie_httponly
-session.cookie_lifetime
-session.cookie_path
-session.cookie_secure
-session.entropy_file
-session.entropy_length
-session.gc_divisor
-session.gc_maxlifetime
-session.gc_probability
-session.hash_bits_per_character
-session.hash_function
-session.name
-session.referer_check
-session.save_handler
-session.save_path
-session.serialize_handler
-session.use_cookies
-session.use_only_cookies
-session.use_trans_sid
-short_open_tag
-soap.wsdl_cache_dir
-soap.wsdl_cache_enabled
-soap.wsdl_cache_limit
-soap.wsdl_cache_ttl
-sql.safe_mode
-sqlite.assoc_case
-sqlite3.extension_dir
-sybct.allow_persistent
-sybct.deadlock_retry_count
-sybct.hostname
-sybct.login_timeout
-sybct.max_links
-sybct.max_persistent
-sybct.min_client_severity
-sybct.min_server_severity
-sybct.timeout
-sysvshm.init_mem
-tidy.clean_output
-tidy.default_config
-track_errors
-unserialize_callback_func
-upload_max_filesize
-upload_tmp_dir
-url_rewriter.tags
-user_agent
-user_dir
-user_ini.cache_ttl
-user_ini.filename
-variables_order
-xmlrpc_error_number
-xmlrpc_errors
-y2k_compliance
-zlib.output_compression
-zlib.output_compression_level
-zlib.output_handler
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/php-errors.data b/pkg/render/applicationlayer/modsec-core-ruleset/php-errors.data
deleted file mode 100644
index e19d9a5736..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/php-errors.data
+++ /dev/null
@@ -1,219 +0,0 @@
-No row with the given identifier
-open_basedir restriction in effect
-eval()'d code</b> on line <b>
-Cannot execute a blank command in
-Fatal error</b>:  preg_replace
-thrown in <b>
-#0 {main}
-Stack trace:
-</b> on line <b>
-() cannot be called statically
-- not a Class::Method
-::__toString() must not throw an exception
-Access to undeclared static property:
-An iterator cannot be used with foreach by reference
-Array callback has to contain indices 0 and 1
-Arrived at end of main loop which shouldn't happen
-Attempt to destruct pending exception
-Attempt to unset static property
-Balloc() allocation exceeds list boundary
-Balloc() failed to allocate memory
-Base lambda function for closure not found
-Call to a member function
-Call to private 
-Call to protected 
-Call to undefined function
-Call to undefined method
-Can only throw objects
-Cannot access empty property
-Cannot access parent:: when current class scope has no parent
-Cannot access parent:: when no class scope is active
-Cannot access property started with '\\0'
-Cannot access self:: when no class scope is active
-Cannot access static:: when no class scope is active
-Cannot access undefined property for object with overloaded property access
-Cannot assign by reference to overloaded object
-Cannot break/continue %d level%s
-Cannot call abstract method 
-Cannot call constructor
-Cannot call forward_static_call() when no class scope is active
-Cannot call non static method
-Cannot call overloaded function for non-object
-Cannot call private 
-Cannot create references to/from string offsets
-Cannot create references to/from string offsets nor overloaded objects
-Cannot declare self-referencing constant 
-Cannot destroy active lambda function
-Cannot get arguments for 
-Cannot increment/decrement overloaded objects nor string offsets
-Cannot instantiate abstract class 
-Cannot instantiate interface 
-Cannot instantiate trait 
-Cannot override final 
-Cannot pass parameter 
-Cannot redeclare 
-Cannot redeclare class 
-Cannot register a reverse output handler conflict outside of MINIT
-Cannot register an output handler alias outside of MINIT
-Cannot register an output handler conflict outside of MINIT
-Cannot resume an already running generator
-Cannot return string offsets by reference
-Cannot set non exception as previous exception
-Cannot unset string offsets
-Cannot use [] for reading
-Cannot use assign-op operators with overloaded objects nor string offsets
-Cannot use object as array
-Cannot use object of type 
-Cannot use string offset as an array
-Cannot use string offset as an object
-Cannot yield from finally in a force-closed generator
-Cannot yield string offsets by reference
-Class entry requested for an object without PHP class
-Class name must be a valid object or a string
-Corrupted fcall_info provided to zend_call_function()
-DCOM has been disabled by your administrator [com.allow_dcom=0]
-DateFormat class not defined
-DateTimeInterface can't be implemented by user classes
-EXTREMELY fatal error: jmpbuf unrecoverable; terminating
-EXTREMELY fatal error: jmpbuf unrecoverable; terminating.
-EXTREMELY fatal error: longjmp returned control; terminating
-Encoding: '*' may only be first arraySize value in list
-Encoding: Attribute 
-Encoding: Can't decode apache map, missing key
-Encoding: Can't decode apache map, missing value
-Encoding: Can't decode apache map, only Strings or Longs are allowd as keys
-Encoding: Cannot find encoding
-Encoding: Element 
-Encoding: Error calling from_xml callback
-Encoding: Error calling to_xml callback
-Encoding: External reference 
-Encoding: Internal Error
-Encoding: Invalid timestamp 
-Encoding: SoapVar has no 'enc_type' property
-Encoding: Unresolved reference 
-Encoding: Violation of encoding rules
-Encoding: Violation of id and ref information items 
-Encoding: object has no '
-Encoding: object has no 'any' property
-Encoding: string '
-Error installing signal handler for 
-Exception thrown without a stack frame
-Exceptions must be valid objects derived from the Exception base class
-Failed to clone SpoofChecker object
-Failed to register IntlDateFormatter class
-Failed to register MessageFormatter class
-Failed to register NumberFormatter class
-Failed to register ResourceBundle class
-Field width %d is too long
-First array member is not a valid class name or object
-Function name must be a string
-Illegal length modifier specified 
-Illegal offset type
-Input string is too long
-Invalid RelaxNG Validation Context
-Invalid Schema Validation Context
-Invalid opcode
-Invalid serialization data for DatePeriod object
-Invalid serialization data for DateTime object
-Invalid serialization data for DateTimeImmutable object
-Maximum execution time of
-Method name must be a string
-Need to supply an object when throwing an exception
-Nesting level too deep - recursive dependency?
-NumberFormatter class not defined
-Object does not support method calls
-Only variables can be passed by reference
-PDO: driver 
-Parsing Schema: <restriction> or <extension> expected in complexContent
-Parsing Schema: attribute
-Parsing Schema: attribute has both 'ref' and 'type' attributes
-Parsing Schema: attribute has both 'ref' attribute and subtype
-Parsing Schema: attribute has both 'type' attribute and subtype
-Parsing Schema: attribute has no 'name' nor 'ref' attributes
-Parsing Schema: attributeGroup 
-Parsing Schema: attributeGroup has both 'ref' attribute and subattribute
-Parsing Schema: attributeGroup has no 'name' nor 'ref' attributes
-Parsing Schema: can't import schema from 
-Parsing Schema: complexType has no 'name' attribute
-Parsing Schema: element has both 'default' and 'fixed' attributes
-Parsing Schema: element has both 'itemType' attribute and subtype
-Parsing Schema: element has both 'ref' and 'fixed' attributes
-Parsing Schema: element has both 'ref' and 'nillable' attributes
-Parsing Schema: element has both 'ref' and 'type' attributes
-Parsing Schema: element has both 'ref' attribute and subtype
-Parsing Schema: element has both 'type' attribute and subtype
-Parsing Schema: element has no 'name' nor 'ref' attributes
-Parsing Schema: expected <restriction> or <extension> in simpleContent
-Parsing Schema: expected <restriction>, <list> or <union> in simpleType
-Parsing Schema: extension has no 'base' attribute
-Parsing Schema: group has both 'ref' attribute and subcontent
-Parsing Schema: group has no 'name' nor 'ref' attributes
-Parsing Schema: include has no 'schemaLocation' attribute
-Parsing Schema: missing restriction value
-Parsing Schema: redefine has no 'schemaLocation' attribute
-Parsing Schema: restriction has no 'base' attribute
-Parsing Schema: simpleType has no 'name' attribute
-Parsing Schema: unexpected
-Parsing Schema: unresolved element 'ref' attribute 
-Parsing Schema: unresolved group 'ref' attribute 
-Parsing WSDL: <binding> 
-Parsing WSDL: <binding> has no name attribute
-Parsing WSDL: <fault> with name 
-Parsing WSDL: <message> has no name attribute
-Parsing WSDL: <portType> 
-Parsing WSDL: <portType> has no name attribute
-Parsing WSDL: <service> 
-Parsing WSDL: <service> has no name attribute
-Parsing WSDL: Could not find any usable binding services in WSDL.
-Parsing WSDL: Couldn't bind to service
-Parsing WSDL: Couldn't find <definitions> in 
-Parsing WSDL: Couldn't load from 
-Parsing WSDL: Missing 'name' attribute for <binding>
-Parsing WSDL: Missing 'name' attribute for <operation>
-Parsing WSDL: Missing 'type' attribute for <binding>
-Parsing WSDL: Missing <message> with name 
-Parsing WSDL: Missing <portType> with name 
-Parsing WSDL: Missing <portType>/<operation> with name 
-Parsing WSDL: Missing message attribute for <header>
-Parsing WSDL: Missing name for <fault> of 
-Parsing WSDL: Missing name for <input> of 
-Parsing WSDL: Missing name for <output> of 
-Parsing WSDL: Missing part '%s' in <message>
-Parsing WSDL: Missing part attribute for <header>
-Parsing WSDL: No <binding> element with name 
-Parsing WSDL: No address associated with <port>
-Parsing WSDL: No binding associated with <port>
-Parsing WSDL: No location associated with <port>
-Parsing WSDL: No name associated with <part> 
-Parsing WSDL: The fault message 
-Parsing WSDL: Unexpected WSDL element <
-Parsing WSDL: Unexpected extensibility element <
-Parsing WSDL: Unknown encodingStyle '
-Parsing WSDL: Unknown required WSDL extension '
-Parsing WSDL: Unspecified encodingStyle
-Possible integer overflow in memory allocation (
-Second array member is not a valid method
-Spoofchecker class not defined
-String size overflow
-The object to be iterated is in an invalid state: "
-Trying to clone an uncloneable object
-Trying to clone an uncloneable object of class 
-Unable to call 
-Unable to cast node to string
-Undefined class constant '
-Undefined constant '
-Undefined offset for object of type 
-Unexpected inconsistency in create_function()
-Unknown SOAP version
-Unknown typehint
-Unsupported operand types
-Using $this when not in object context
-Wrong parameters for ErrorException(
-Wrong parameters for Exception(
-You MUST load PDO before loading any PDO drivers
-[] operator not supported for strings
-and must therefore be declared abstract or implement the remaining methods
-namespace must not match the enclosing schema 'targetNamespace'
-requires PDO API version 
-PDO Connection Error: SQLSTATE[HY000] 
-(HY000/2002): Connection refused 
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/php-function-names-933150.data b/pkg/render/applicationlayer/modsec-core-ruleset/php-function-names-933150.data
deleted file mode 100644
index a04fbc46c4..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/php-function-names-933150.data
+++ /dev/null
@@ -1,44 +0,0 @@
-__halt_compiler
-apache_child_terminate
-base64_decode
-bzdecompress
-call_user_func
-call_user_func_array
-call_user_method
-call_user_method_array
-convert_uudecode
-file_get_contents
-file_put_contents
-fsockopen
-get_class_methods
-get_class_vars
-get_defined_constants
-get_defined_functions
-get_defined_vars
-gzdecode
-gzinflate
-gzuncompress
-include_once
-invokeargs
-pcntl_exec
-pcntl_fork
-pfsockopen
-posix_getcwd
-posix_getpwuid
-posix_getuid
-posix_uname
-ReflectionFunction
-require_once
-shell_exec
-str_rot13
-sys_get_temp_dir
-wp_remote_fopen
-wp_remote_get
-wp_remote_head
-wp_remote_post
-wp_remote_request
-wp_safe_remote_get
-wp_safe_remote_head
-wp_safe_remote_post
-wp_safe_remote_request
-zlib_decode
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/php-function-names-933151.data b/pkg/render/applicationlayer/modsec-core-ruleset/php-function-names-933151.data
deleted file mode 100644
index 614f11f568..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/php-function-names-933151.data
+++ /dev/null
@@ -1,1264 +0,0 @@
-__autoload
-addcslashes
-addslashes
-apache_child_terminate
-apache_get_modules
-apache_get_version
-apache_getenv
-apache_lookup_uri
-apache_note
-apache_request_headers
-apache_reset_timeout
-apache_response_headers
-apache_setenv
-array_change_key_case
-array_chunk
-array_column
-array_combine
-array_count_values
-array_diff
-array_diff_assoc
-array_diff_key
-array_fill
-array_fill_keys
-array_flip
-array_intersect
-array_intersect_assoc
-array_intersect_key
-array_key_exists
-array_keys
-array_merge
-array_merge_recursive
-array_multisort
-array_pad
-array_pop
-array_product
-array_push
-array_rand
-array_replace
-array_replace_recursive
-array_reverse
-array_search
-array_shift
-array_slice
-array_splice
-array_sum
-array_unique
-array_unshift
-array_values
-array_walk
-array_walk_recursive
-base_convert
-bin2hex
-bind_textdomain_codeset
-bindtextdomain
-blenc_encrypt
-boolval
-bzclose
-bzcompress
-bzerrno
-bzerror
-bzerrstr
-bzflush
-bzread
-bzwrite
-calcul_hmac
-calculhmac
-chdb_create
-checkdnsrr
-chgrp
-chunk_split
-class_alias
-class_exists
-class_implements
-class_parents
-class_uses
-clearstatcache
-cli_get_process_title
-cli_set_process_title
-com_create_guid
-com_event_sink
-com_get_active_object
-com_load_typelib
-com_message_pump
-com_print_typeinfo
-config_get_hash
-connection_aborted
-connection_status
-convert_cyr_string
-count_chars
-crack_check
-crack_closedict
-crack_getlastmessage
-crack_opendict
-ctype_alnum
-ctype_alpha
-ctype_cntrl
-ctype_digit
-ctype_graph
-ctype_lower
-ctype_print
-ctype_punct
-ctype_space
-ctype_upper
-ctype_xdigit
-curl_close
-curl_copy_handle
-curl_errno
-curl_error
-curl_escape
-curl_getinfo
-curl_multi_add_handle
-curl_multi_close
-curl_multi_exec
-curl_multi_getcontent
-curl_multi_info_read
-curl_multi_init
-curl_multi_remove_handle
-curl_multi_select
-curl_multi_setopt
-curl_multi_strerror
-curl_pause
-curl_reset
-curl_setopt
-curl_setopt_array
-curl_share_close
-curl_share_init
-curl_share_setopt
-curl_strerror
-curl_unescape
-curl_version
-date_add
-date_create
-date_create_from_format
-date_create_immutable
-date_create_immutable_from_format
-date_date_set
-date_default_timezone_get
-date_default_timezone_set
-date_diff
-date_format
-date_get_last_errors
-date_interval_create_from_date_string
-date_interval_format
-date_isodate_set
-date_modify
-date_offset_get
-date_parse
-date_parse_from_format
-date_sub
-date_sun_info
-date_sunrise
-date_sunset
-date_time_set
-date_timestamp_get
-date_timestamp_set
-date_timezone_get
-date_timezone_set
-dcgettext
-dcngettext
-debug_print_backtrace
-debug_zval_dump
-decbin
-dechex
-define_syslog_variables
-deg2rad
-dgettext
-disk_free_space
-disk_total_space
-dngettext
-dns_check_record
-dns_get_mx
-dns_get_record
-dom_import_simplexml
-ereg_replace
-eregi_replace
-error_clear_last
-error_get_last
-expect_expectl
-expect_popen
-expm1
-extension_loaded
-ezmlm_hash
-fastcgi_finish_request
-fflush
-fgetc
-fgetcsv
-fgetss
-filter_has_var
-filter_id
-filter_input
-filter_input_array
-filter_list
-filter_var
-filter_var_array
-finfo_close
-fnmatch
-foreach
-forward_static_call
-forward_static_call_array
-fpassthru
-fprintf
-fputcsv
-frenchtojd
-fribidi_log2vis
-fscanf
-fseek
-ftp_ssl_connect
-ftruncate
-func_get_arg
-func_get_args
-func_num_args
-gc_collect_cycles
-gc_disable
-gc_enable
-gc_enabled
-gc_mem_caches
-gd_info
-get_browser
-get_called_class
-get_class
-get_declared_classes
-get_declared_interfaces
-get_declared_traits
-get_extension_funcs
-get_headers
-get_html_translation_table
-get_include_path
-get_included_files
-get_loaded_extensions
-get_magic_quotes_gpc
-get_magic_quotes_runtime
-get_object_vars
-get_parent_class
-get_required_files
-get_resource_type
-get_resources
-getallheaders
-gethostbyaddr
-gethostbyname
-gethostbynamel
-gethostname
-getimagesizefromstring
-getmxrr
-getopt
-getprotobyname
-getprotobynumber
-getrandmax
-getrusage
-getservbyname
-getservbyport
-gettimeofday
-gmmktime
-gmstrftime
-gopher_parsedir
-gregoriantojd
-gzclose
-gzeof
-gzgetc
-gzgets
-gzgetss
-gzpassthru
-gzputs
-gzrewind
-gzseek
-gztell
-hash_algos
-hash_copy
-hash_equals
-hash_final
-hash_hmac
-hash_init
-hash_pbkdf2
-hash_update
-hash_update_stream
-header_remove
-hebrevc
-hexdec
-highlight_string
-http_build_query
-http_response_code
-iconv_get_encoding
-iconv_mime_decode
-iconv_mime_decode_headers
-iconv_mime_encode
-iconv_set_encoding
-iconv_strlen
-iconv_strpos
-iconv_strrpos
-iconv_substr
-idn_to_ascii
-idn_to_utf8
-ignore_user_abort
-image_type_to_extension
-image_type_to_mime_type
-import_request_variables
-in_array
-inet_ntop
-inet_pton
-ini_alter
-ini_restore
-interface_exists
-intl_error_name
-intl_get_error_code
-intl_get_error_message
-intl_is_failure
-ip2long
-iptcembed
-iptcparse
-is_subclass_of
-is_uploaded_file
-iterator_apply
-iterator_count
-iterator_to_array
-jddayofweek
-jdmonthname
-jdtofrench
-jdtogregorian
-jdtojewish
-jdtojulian
-jdtounix
-jewishtojd
-jpeg2wbmp
-json_last_error
-json_last_error_msg
-judy_type
-judy_version
-juliantojd
-key_exists
-krsort
-lcg_value
-lchgrp
-lchown
-libxml_clear_errors
-libxml_disable_entity_loader
-libxml_get_errors
-libxml_get_last_error
-libxml_set_external_entity_loader
-libxml_set_streams_context
-libxml_use_internal_errors
-localeconv
-long2ip
-lzf_compress
-lzf_decompress
-lzf_optimized_for
-magic_quotes_runtime
-mb_check_encoding
-mb_convert_case
-mb_convert_encoding
-mb_convert_kana
-mb_convert_variables
-mb_decode_mimeheader
-mb_decode_numericentity
-mb_detect_encoding
-mb_detect_order
-mb_encode_mimeheader
-mb_encode_numericentity
-mb_encoding_aliases
-mb_ereg_search
-mb_ereg_search_getpos
-mb_ereg_search_getregs
-mb_ereg_search_init
-mb_ereg_search_pos
-mb_ereg_search_regs
-mb_ereg_search_setpos
-mb_get_info
-mb_http_input
-mb_http_output
-mb_internal_encoding
-mb_language
-mb_list_encodings
-mb_output_handler
-mb_preferred_mime_name
-mb_regex_encoding
-mb_regex_set_options
-mb_send_mail
-mb_split
-mb_strcut
-mb_strimwidth
-mb_stripos
-mb_stristr
-mb_strlen
-mb_strpos
-mb_strrchr
-mb_strrichr
-mb_strripos
-mb_strrpos
-mb_strstr
-mb_strtolower
-mb_strtoupper
-mb_strwidth
-mb_substitute_character
-mb_substr
-mb_substr_count
-mbereg_match
-mbereg_replace
-mbereg_search
-mbereg_search_getpos
-mbereg_search_getregs
-mbereg_search_init
-mbereg_search_pos
-mbereg_search_regs
-mbereg_search_setpos
-mberegi
-mberegi_replace
-mbregex_encoding
-mcrypt_cbc
-mcrypt_cfb
-mcrypt_create_iv
-mcrypt_decrypt
-mcrypt_ecb
-mcrypt_enc_get_algorithms_name
-mcrypt_enc_get_block_size
-mcrypt_enc_get_iv_size
-mcrypt_enc_get_key_size
-mcrypt_enc_get_modes_name
-mcrypt_enc_get_supported_key_sizes
-mcrypt_enc_is_block_algorithm
-mcrypt_enc_is_block_algorithm_mode
-mcrypt_enc_is_block_mode
-mcrypt_enc_self_test
-mcrypt_encrypt
-mcrypt_generic
-mcrypt_generic_deinit
-mcrypt_generic_end
-mcrypt_generic_init
-mcrypt_get_block_size
-mcrypt_get_cipher_name
-mcrypt_get_iv_size
-mcrypt_get_key_size
-mcrypt_list_algorithms
-mcrypt_list_modes
-mcrypt_module_close
-mcrypt_module_get_algo_block_size
-mcrypt_module_get_algo_key_size
-mcrypt_module_get_supported_key_sizes
-mcrypt_module_is_block_algorithm
-mcrypt_module_is_block_algorithm_mode
-mcrypt_module_is_block_mode
-mcrypt_module_open
-mcrypt_module_self_test
-mcrypt_ofb
-mdecrypt_generic
-memcache_debug
-memory_get_peak_usage
-memory_get_usage
-mhash_count
-mhash_get_block_size
-mhash_get_hash_name
-mhash_keygen_s2k
-mime_content_type
-mktime
-money_format
-msg_get_queue
-msg_queue_exists
-msg_receive
-msg_remove_queue
-msg_send
-msg_set_queue
-msg_stat_queue
-mssql_bind
-mssql_close
-mssql_connect
-mssql_data_seek
-mssql_execute
-mssql_fetch_array
-mssql_fetch_assoc
-mssql_fetch_batch
-mssql_fetch_field
-mssql_fetch_object
-mssql_fetch_row
-mssql_field_length
-mssql_field_name
-mssql_field_seek
-mssql_field_type
-mssql_free_result
-mssql_free_statement
-mssql_get_last_message
-mssql_guid_string
-mssql_init
-mssql_min_error_severity
-mssql_min_message_severity
-mssql_next_result
-mssql_num_fields
-mssql_num_rows
-mssql_pconnect
-mssql_query
-mssql_result
-mssql_rows_affected
-mssql_select_db
-mt_getrandmax
-mt_rand
-mt_srand
-mysql_affected_rows
-mysql_client_encoding
-mysql_close
-mysql_connect
-mysql_create_db
-mysql_createdb
-mysql_data_seek
-mysql_db_name
-mysql_db_query
-mysql_dbname
-mysql_drop_db
-mysql_dropdb
-mysql_errno
-mysql_error
-mysql_escape_string
-mysql_fetch_array
-mysql_fetch_assoc
-mysql_fetch_field
-mysql_fetch_lengths
-mysql_fetch_object
-mysql_fetch_row
-mysql_field_flags
-mysql_field_len
-mysql_field_name
-mysql_field_seek
-mysql_field_table
-mysql_field_type
-mysql_fieldflags
-mysql_fieldlen
-mysql_fieldname
-mysql_fieldtable
-mysql_fieldtype
-mysql_free_result
-mysql_freeresult
-mysql_get_client_info
-mysql_get_host_info
-mysql_get_proto_info
-mysql_get_server_info
-mysql_info
-mysql_insert_id
-mysql_list_dbs
-mysql_list_fields
-mysql_list_processes
-mysql_list_tables
-mysql_listdbs
-mysql_listfields
-mysql_listtables
-mysql_num_fields
-mysql_num_rows
-mysql_numfields
-mysql_numrows
-mysql_pconnect
-mysql_ping
-mysql_real_escape_string
-mysql_result
-mysql_select_db
-mysql_selectdb
-mysql_set_charset
-mysql_stat
-mysql_table_name
-mysql_tablename
-mysql_thread_id
-mysql_unbuffered_query
-mysqli_bind_param
-mysqli_bind_result
-mysqli_client_encoding
-mysqli_connect
-mysqli_disable_rpl_parse
-mysqli_enable_reads_from_master
-mysqli_enable_rpl_parse
-mysqli_escape_string
-mysqli_execute
-mysqli_fetch
-mysqli_get_cache_stats
-mysqli_get_client_stats
-mysqli_get_client_version
-mysqli_get_links_stats
-mysqli_get_metadata
-mysqli_master_query
-mysqli_param_count
-mysqli_report
-mysqli_rpl_parse_enabled
-mysqli_rpl_probe
-mysqli_send_long_data
-mysqli_slave_query
-mysqlnd_memcache_get_config
-mysqlnd_memcache_set
-mysqlnd_ms_dump_servers
-mysqlnd_ms_fabric_select_global
-mysqlnd_ms_fabric_select_shard
-mysqlnd_ms_get_last_gtid
-mysqlnd_ms_get_last_used_connection
-mysqlnd_ms_get_stats
-mysqlnd_ms_match_wild
-mysqlnd_ms_query_is_select
-mysqlnd_ms_set_qos
-mysqlnd_ms_set_user_pick_server
-mysqlnd_ms_xa_begin
-mysqlnd_ms_xa_commit
-mysqlnd_ms_xa_gc
-mysqlnd_ms_xa_rollback
-mysqlnd_qc_clear_cache
-mysqlnd_qc_get_available_handlers
-mysqlnd_qc_get_cache_info
-mysqlnd_qc_get_core_stats
-mysqlnd_qc_get_normalized_query_trace_log
-mysqlnd_qc_get_query_trace_log
-mysqlnd_qc_set_cache_condition
-mysqlnd_qc_set_is_select
-mysqlnd_qc_set_storage_handler
-mysqlnd_qc_set_user_handlers
-mysqlnd_uh_convert_to_mysqlnd
-mysqlnd_uh_set_connection_proxy
-mysqlnd_uh_set_statement_proxy
-natcasesort
-ngettext
-nl2br
-nl_langinfo
-nsapi_request_headers
-nsapi_response_headers
-nsapi_virtual
-nthmac
-number_format
-oauth_get_sbs
-oauth_urlencode
-ob_get_length
-ob_get_level
-ob_get_status
-ob_gzhandler
-ob_iconv_handler
-ob_implicit_flush
-ob_list_handlers
-ob_tidyhandler
-odbc_autocommit
-odbc_binmode
-odbc_close
-odbc_close_all
-odbc_columnprivileges
-odbc_columns
-odbc_commit
-odbc_cursor
-odbc_data_source
-odbc_do
-odbc_error
-odbc_errormsg
-odbc_fetch_array
-odbc_fetch_into
-odbc_fetch_object
-odbc_fetch_row
-odbc_field_len
-odbc_field_name
-odbc_field_num
-odbc_field_precision
-odbc_field_scale
-odbc_field_type
-odbc_foreignkeys
-odbc_free_result
-odbc_gettypeinfo
-odbc_longreadlen
-odbc_next_result
-odbc_num_fields
-odbc_num_rows
-odbc_pconnect
-odbc_prepare
-odbc_primarykeys
-odbc_procedurecolumns
-odbc_procedures
-odbc_rollback
-odbc_setoption
-odbc_specialcolumns
-odbc_statistics
-odbc_tableprivileges
-odbc_tables
-opcache_compile_file
-opcache_get_configuration
-opcache_get_status
-opcache_invalidate
-opcache_is_script_cached
-opcache_reset
-openssl_cipher_iv_length
-openssl_csr_export
-openssl_csr_export_to_file
-openssl_csr_get_public_key
-openssl_csr_get_subject
-openssl_csr_new
-openssl_csr_sign
-openssl_decrypt
-openssl_dh_compute_key
-openssl_digest
-openssl_encrypt
-openssl_error_string
-openssl_free_key
-openssl_get_cert_locations
-openssl_get_cipher_methods
-openssl_get_md_methods
-openssl_get_privatekey
-openssl_get_publickey
-openssl_open
-openssl_pbkdf2
-openssl_pkcs12_export
-openssl_pkcs12_export_to_file
-openssl_pkcs12_read
-openssl_pkcs7_decrypt
-openssl_pkcs7_encrypt
-openssl_pkcs7_sign
-openssl_pkcs7_verify
-openssl_pkey_export
-openssl_pkey_export_to_file
-openssl_pkey_free
-openssl_pkey_get_details
-openssl_pkey_get_private
-openssl_pkey_get_public
-openssl_pkey_new
-openssl_private_decrypt
-openssl_private_encrypt
-openssl_public_decrypt
-openssl_public_encrypt
-openssl_random_pseudo_bytes
-openssl_seal
-openssl_sign
-openssl_spki_export
-openssl_spki_export_challenge
-openssl_spki_new
-openssl_spki_verify
-openssl_verify
-openssl_x509_check_private_key
-openssl_x509_checkpurpose
-openssl_x509_export
-openssl_x509_export_to_file
-openssl_x509_fingerprint
-openssl_x509_free
-openssl_x509_parse
-openssl_x509_read
-output_add_rewrite_var
-output_reset_rewrite_vars
-override_function
-parse_ini_string
-parse_url
-parsekit_compile_file
-parsekit_compile_string
-parsekit_func_arginfo
-password_get_info
-password_hash
-password_needs_rehash
-password_verify
-pcntl_alarm
-pcntl_errno
-pcntl_get_last_error
-pcntl_getpriority
-pcntl_setpriority
-pcntl_signal
-pcntl_signal_dispatch
-pcntl_sigprocmask
-pcntl_sigtimedwait
-pcntl_sigwaitinfo
-pcntl_strerror
-pcntl_wait
-pcntl_waitpid
-pcntl_wexitstatus
-pcntl_wifexited
-pcntl_wifsignaled
-pcntl_wifstopped
-pcntl_wstopsig
-pcntl_wtermsig
-pg_affected_rows
-pg_cancel_query
-pg_client_encoding
-pg_close
-pg_connect_poll
-pg_connection_busy
-pg_connection_reset
-pg_connection_status
-pg_consume_input
-pg_convert
-pg_copy_from
-pg_copy_to
-pg_dbname
-pg_delete
-pg_end_copy
-pg_escape_bytea
-pg_escape_identifier
-pg_escape_literal
-pg_escape_string
-pg_fetch_all
-pg_fetch_all_columns
-pg_fetch_array
-pg_fetch_assoc
-pg_fetch_object
-pg_fetch_result
-pg_fetch_row
-pg_field_is_null
-pg_field_name
-pg_field_num
-pg_field_prtlen
-pg_field_size
-pg_field_table
-pg_field_type
-pg_field_type_oid
-pg_flush
-pg_free_result
-pg_get_notify
-pg_get_pid
-pg_get_result
-pg_host
-pg_insert
-pg_last_error
-pg_last_notice
-pg_last_oid
-pg_lo_close
-pg_lo_create
-pg_lo_export
-pg_lo_import
-pg_lo_open
-pg_lo_read
-pg_lo_read_all
-pg_lo_seek
-pg_lo_tell
-pg_lo_truncate
-pg_lo_unlink
-pg_lo_write
-pg_meta_data
-pg_num_fields
-pg_num_rows
-pg_options
-pg_parameter_status
-pg_pconnect
-pg_ping
-pg_port
-pg_put_line
-pg_query_params
-pg_result_error
-pg_result_error_field
-pg_result_seek
-pg_result_status
-pg_select
-pg_send_execute
-pg_send_prepare
-pg_send_query
-pg_send_query_params
-pg_set_client_encoding
-pg_set_error_verbosity
-pg_socket
-pg_trace
-pg_transaction_status
-pg_tty
-pg_unescape_bytea
-pg_untrace
-pg_update
-pg_version
-php_check_syntax
-php_ini_loaded_file
-php_ini_scanned_files
-php_logo_guid
-php_sapi_name
-phpcredits
-png2wbmp
-posix_access
-posix_ctermid
-posix_errno
-posix_get_last_error
-posix_getgrgid
-posix_getgrnam
-posix_getgroups
-posix_getpgid
-posix_getpgrp
-posix_getpid
-posix_getppid
-posix_getrlimit
-posix_getsid
-posix_initgroups
-posix_isatty
-posix_setegid
-posix_seteuid
-posix_setgid
-posix_setpgid
-posix_setrlimit
-posix_setsid
-posix_setuid
-posix_strerror
-posix_times
-preg_filter
-preg_grep
-preg_last_error
-preg_quote
-property_exists
-quoted_printable_decode
-quoted_printable_encode
-rad2deg
-random_bytes
-random_int
-rar_wrapper_cache_stats
-readline_add_history
-readline_callback_handler_install
-readline_callback_handler_remove
-readline_callback_read_char
-readline_clear_history
-readline_completion_function
-readline_info
-readline_list_history
-readline_on_new_line
-readline_read_history
-readline_redisplay
-readline_write_history
-realpath
-realpath_cache_get
-realpath_cache_size
-recode_file
-recode_string
-restore_error_handler
-restore_exception_handler
-restore_include_path
-rewinddir
-rmdir
-rpm_close
-rpm_get_tag
-rpm_is_valid
-rpm_open
-rpm_version
-rrdc_disconnect
-runkit_class_adopt
-runkit_class_emancipate
-runkit_constant_remove
-runkit_function_remove
-runkit_import
-runkit_lint
-runkit_lint_file
-runkit_method_remove
-runkit_return_value_used
-runkit_sandbox_output_handler
-runkit_superglobals
-sem_acquire
-sem_get
-sem_release
-sem_remove
-session_abort
-session_cache_expire
-session_cache_limiter
-session_commit
-session_decode
-session_destroy
-session_encode
-session_get_cookie_params
-session_id
-session_is_registered
-session_module_name
-session_name
-session_pgsql_add_error
-session_pgsql_get_error
-session_pgsql_get_field
-session_pgsql_reset
-session_pgsql_set_field
-session_pgsql_status
-session_regenerate_id
-session_register
-session_register_shutdown
-session_reset
-session_save_path
-session_set_cookie_params
-session_status
-session_unregister
-session_unset
-session_write_close
-set_file_buffer
-set_socket_blocking
-set_time_limit
-setcookie
-setlocale
-setproctitle
-setrawcookie
-setthreadtitle
-shm_attach
-shm_detach
-shm_get_var
-shm_has_var
-shm_put_var
-shm_remove
-shm_remove_var
-shmop_close
-shmop_delete
-shmop_open
-shmop_read
-shmop_size
-shmop_write
-simplexml_import_dom
-socket_accept
-socket_bind
-socket_clear_error
-socket_close
-socket_cmsg_space
-socket_create_listen
-socket_create_pair
-socket_get_option
-socket_get_status
-socket_getopt
-socket_getpeername
-socket_getsockname
-socket_import_stream
-socket_last_error
-socket_listen
-socket_read
-socket_recv
-socket_recvfrom
-socket_recvmsg
-socket_select
-socket_send
-socket_sendmsg
-socket_sendto
-socket_set_block
-socket_set_blocking
-socket_set_nonblock
-socket_set_option
-socket_set_timeout
-socket_setopt
-socket_shutdown
-socket_strerror
-socket_write
-solr_get_version
-spl_autoload
-spl_autoload_call
-spl_autoload_extensions
-spl_autoload_functions
-spl_autoload_register
-spl_autoload_unregister
-spl_classes
-spl_object_hash
-sql_regcase
-sqlite_busy_timeout
-sqlite_changes
-sqlite_close
-sqlite_column
-sqlite_current
-sqlite_error_string
-sqlite_escape_string
-sqlite_factory
-sqlite_fetch_all
-sqlite_fetch_array
-sqlite_fetch_column_types
-sqlite_fetch_object
-sqlite_fetch_single
-sqlite_fetch_string
-sqlite_field_name
-sqlite_has_more
-sqlite_has_prev
-sqlite_key
-sqlite_last_error
-sqlite_last_insert_rowid
-sqlite_libencoding
-sqlite_libversion
-sqlite_next
-sqlite_num_fields
-sqlite_num_rows
-sqlite_prev
-sqlite_rewind
-sqlite_seek
-sqlite_udf_decode_binary
-sqlite_udf_encode_binary
-sqlite_valid
-sqlsrv_begin_transaction
-sqlsrv_cancel
-sqlsrv_client_info
-sqlsrv_close
-sqlsrv_commit
-sqlsrv_configure
-sqlsrv_connect
-sqlsrv_errors
-sqlsrv_execute
-sqlsrv_fetch
-sqlsrv_fetch_array
-sqlsrv_fetch_object
-sqlsrv_field_metadata
-sqlsrv_free_stmt
-sqlsrv_get_config
-sqlsrv_get_field
-sqlsrv_has_rows
-sqlsrv_next_result
-sqlsrv_num_fields
-sqlsrv_num_rows
-sqlsrv_prepare
-sqlsrv_query
-sqlsrv_rollback
-sqlsrv_rows_affected
-sqlsrv_send_stream_data
-sqlsrv_server_info
-sscanf
-ssdeep_fuzzy_compare
-ssdeep_fuzzy_hash
-ssdeep_fuzzy_hash_filename
-stomp_connect_error
-stomp_version
-str_getcsv
-str_ireplace
-str_pad
-str_repeat
-str_replace
-str_shuffle
-str_split
-str_word_count
-strcasecmp
-strchr
-strcmp
-strcspn
-stream_bucket_append
-stream_bucket_make_writeable
-stream_bucket_new
-stream_bucket_prepend
-stream_context_get_default
-stream_context_get_options
-stream_context_get_params
-stream_context_set_default
-stream_context_set_option
-stream_context_set_params
-stream_copy_to_stream
-stream_encoding
-stream_filter_append
-stream_filter_prepend
-stream_filter_register
-stream_filter_remove
-stream_get_contents
-stream_get_filters
-stream_get_line
-stream_get_meta_data
-stream_get_transports
-stream_get_wrappers
-stream_is_local
-stream_notification_callback
-stream_register_wrapper
-stream_resolve_include_path
-stream_select
-stream_set_blocking
-stream_set_chunk_size
-stream_set_read_buffer
-stream_set_timeout
-stream_set_write_buffer
-stream_socket_accept
-stream_socket_enable_crypto
-stream_socket_get_name
-stream_socket_pair
-stream_socket_recvfrom
-stream_socket_sendto
-stream_socket_server
-stream_socket_shutdown
-stream_supports_lock
-stream_wrapper_register
-stream_wrapper_restore
-stream_wrapper_unregister
-strftime
-strip_tags
-stripos
-stristr
-strnatcasecmp
-strnatcmp
-strncasecmp
-strncmp
-strpbrk
-strpos
-strptime
-strrchr
-strripos
-strrpos
-strstr
-strtok
-strtolower
-strtotime
-strtoupper
-strtr
-strval
-substr_compare
-substr_count
-substr_replace
-sys_getloadavg
-tcpwrap_check
-time_nanosleep
-time_sleep_until
-timezone_abbreviations_list
-timezone_identifiers_list
-timezone_location_get
-timezone_name_from_abbr
-timezone_name_get
-timezone_offset_get
-timezone_open
-timezone_transitions_get
-timezone_version_get
-token_get_all
-token_name
-trait_exists
-trigger_error
-ucwords
-unixtojd
-unregister_tick_function
-use_soap_error_handler
-user_error
-utf8_decode
-utf8_encode
-var_export
-version_compare
-vfprintf
-vprintf
-vsprintf
-win32_continue_service
-win32_create_service
-win32_delete_service
-win32_get_last_control_message
-win32_pause_service
-win32_ps_list_procs
-win32_ps_stat_mem
-win32_ps_stat_proc
-win32_query_service_status
-win32_set_service_status
-win32_start_service
-win32_start_service_ctrl_dispatcher
-win32_stop_service
-xattr_get
-xattr_list
-xattr_remove
-xattr_set
-xattr_supported
-xml_error_string
-xml_get_current_byte_index
-xml_get_current_column_number
-xml_get_current_line_number
-xml_get_error_code
-xml_parse
-xml_parse_into_struct
-xml_parser_create
-xml_parser_create_ns
-xml_parser_free
-xml_parser_get_option
-xml_parser_set_option
-xml_set_character_data_handler
-xml_set_default_handler
-xml_set_element_handler
-xml_set_end_namespace_decl_handler
-xml_set_external_entity_ref_handler
-xml_set_notation_decl_handler
-xml_set_object
-xml_set_processing_instruction_handler
-xml_set_start_namespace_decl_handler
-xml_set_unparsed_entity_decl_handler
-xmlrpc_decode
-xmlrpc_decode_request
-xmlrpc_encode
-xmlrpc_encode_request
-xmlrpc_get_type
-xmlrpc_is_fault
-xmlrpc_parse_method_descriptions
-xmlrpc_server_add_introspection_data
-xmlrpc_server_call_method
-xmlrpc_server_create
-xmlrpc_server_destroy
-xmlrpc_server_register_introspection_callback
-xmlrpc_server_register_method
-xmlrpc_set_type
-yaml_emit
-yaml_emit_file
-yaml_parse
-yaml_parse_file
-yaml_parse_url
-zend_logo_guid
-zend_thread_id
-zend_version
-zip_close
-zip_entry_close
-zip_entry_compressedsize
-zip_entry_compressionmethod
-zip_entry_filesize
-zip_entry_name
-zip_entry_open
-zip_entry_read
-zip_open
-zip_read
-zlib_encode
-zlib_get_coding_type
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/php-variables.data b/pkg/render/applicationlayer/modsec-core-ruleset/php-variables.data
deleted file mode 100644
index c933d28f5a..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/php-variables.data
+++ /dev/null
@@ -1,19 +0,0 @@
-$GLOBALS
-$HTTP_COOKIE_VARS
-$HTTP_ENV_VARS
-$HTTP_GET_VARS
-$HTTP_POST_FILES
-$HTTP_POST_VARS
-$HTTP_RAW_POST_DATA
-$HTTP_REQUEST_VARS
-$HTTP_SERVER_VARS
-$_COOKIE
-$_ENV
-$_FILES
-$_GET
-$_POST
-$_REQUEST
-$_SERVER
-$_SESSION
-$argc
-$argv
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/restricted-files.data b/pkg/render/applicationlayer/modsec-core-ruleset/restricted-files.data
deleted file mode 100644
index 3a7fc18407..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/restricted-files.data
+++ /dev/null
@@ -1,145 +0,0 @@
-# Apache
-# (no slash; also guards against old.htaccess, old.htpasswd, etc.)
-.htaccess
-.htdigest
-.htpasswd
-# home level dotfiles (keep in sync with lfi-os-files.data)
-.aptitude/config
-.bash_config
-.bash_history
-.bash_logout
-.bash_profile
-.bashrc
-.cache/notify-osd.log
-.config/odesk/odesk team.conf
-.cshrc
-.drush/
-.gitconfig
-.gnupg/
-.hplip/hplip.conf
-.ksh_history
-.lesshst
-.lftp/
-.lhistory
-.lldb-history
-.local/share/mc/
-.my.cnf
-.mysql_history
-.nano_history
-.node_repl_history
-.nsr
-.pearrc
-.php_history
-.pki/
-.profile
-.psql_history
-.python_history
-.rediscli_history
-.Rhistory
-.sh_history
-.sqlite_history
-.ssh/authorized_keys
-.ssh/config
-.ssh/id_dsa
-.ssh/id_dsa.pub
-.ssh/id_rsa
-.ssh/id_rsa.pub
-.ssh/identity
-.ssh/identity.pub
-.ssh/known_hosts
-.subversion/auth
-.subversion/config
-.subversion/servers
-.tconn/tconn.conf
-.tcshrc
-.vidalia/vidalia.conf
-.viminfo
-.vimrc
-.xauthority
-.zhistory
-.zshrc
-.zsh_history
-.nsconfig
-# Version control
-/.git/
-/.gitignore
-/.hg/
-/.hgignore
-/.svn/
-# Wordpress
-wp-config.php
-wp-config.bak
-wp-config.old
-wp-config.temp
-wp-config.tmp
-wp-config.txt
-# Symfony
-/config/config.yml
-/config/config_dev.yml
-/config/config_prod.yml
-/config/config_test.yml
-/config/parameters.yml
-/config/routing.yml
-/config/security.yml
-/config/services.yml
-# Drupal
-/sites/default/default.settings.php
-/sites/default/settings.php
-/sites/default/settings.local.php
-# Magento
-/app/etc/local.xml
-# Sublime Text
-/sftp-config.json
-# ASP.NET
-/Web.config
-# Node
-/package.json
-/package-lock.json
-/gruntfile.js
-/npm-debug.log
-/ormconfig.json
-/tsconfig.json
-/webpack.config.js
-/yarn.lock
-# Composer
-/composer.json
-/composer.lock
-/packages.json
-# dotenv
-/.env
-# OSX
-/.DS_Store
-# WS FTP
-/.ws_ftp.ini
-# common, old network config file
-.netrc
-# New Top Level dotfiles
-.thunderbird/
-.vmware/
-.kube/
-.java/
-.anydesk/
-.docker/
-.npm/
-.nvm/
-.minikube/
-.atom/
-.aws/config
-.aws/credentials
-.cups/
-.dbus/
-.boto
-.gem/
-.gnonme/
-.gsutil/
-# New Per-Project Files
-.idea
-nbproject/
-bower.json
-.bowerrc
-.eslintrc
-.jshintrc
-.gitlab-ci.yml
-.travis.yml
-database.yml
-Dockerfile
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/restricted-upload.data b/pkg/render/applicationlayer/modsec-core-ruleset/restricted-upload.data
deleted file mode 100644
index 659a072f1b..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/restricted-upload.data
+++ /dev/null
@@ -1,23 +0,0 @@
-# Apache webserver
-.htaccess
-.htdigest
-.htpasswd
-# WordPress configuration file
-wp-config.php
-# Symfony configuration files
-config.yml
-config_dev.yml
-config_prod.yml
-config_test.yml
-parameters.yml
-routing.yml
-security.yml
-services.yml
-# Drupal configuration files
-default.settings.php
-settings.php
-settings.local.php
-# Magento configuration files
-local.xml
-# dotenv configuration file
-.env
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/scanners-headers.data b/pkg/render/applicationlayer/modsec-core-ruleset/scanners-headers.data
deleted file mode 100644
index f87c667e60..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/scanners-headers.data
+++ /dev/null
@@ -1,8 +0,0 @@
-acunetix-product
-(acunetix web vulnerability scanner
-acunetix-scanning-agreement
-acunetix-user-agreement
-myvar=1234
-x-ratproxy-loop
-bytes=0-,5-0,5-1,5-2,5-3,5-4,5-5,5-6,5-7,5-8,5-9,5-10,5-11,5-12,5-13,5-14
-x-scanner
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/scanners-urls.data b/pkg/render/applicationlayer/modsec-core-ruleset/scanners-urls.data
deleted file mode 100644
index 768049e992..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/scanners-urls.data
+++ /dev/null
@@ -1,17 +0,0 @@
-/.adSensepostnottherenonobook
-/<invalid>hello.html
-/actSensepostnottherenonotive
-/acunetix-wvs-test-for-some-inexistent-file
-/antidisestablishmentarianism
-/appscan_fingerprint/mac_address
-/arachni-
-/cybercop
-/nessus_is_probing_you_
-/nessustest
-/netsparker-
-/rfiinc.txt
-/thereisnowaythat-you-canbethere
-/w3af/remotefileinclude.html
-appscan_fingerprint
-w00tw00t.at.ISC.SANS.DFind
-w00tw00t.at.blackhats.romanian.anti-sec
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/scanners-user-agents.data b/pkg/render/applicationlayer/modsec-core-ruleset/scanners-user-agents.data
deleted file mode 100644
index 5db44ee37e..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/scanners-user-agents.data
+++ /dev/null
@@ -1,217 +0,0 @@
-# Vulnerability scanners, bruteforce password crackers and exploitation tools
-
-# password cracker
-# http://sectools.org/tool/hydra/
-(hydra)
-# vuln scanner
-# http://virtualblueness.net/nasl.html
-.nasl
-# sql injection
-# https://sourceforge.net/projects/absinthe/
-absinthe
-# email harvesting
-# dead? 2004
-advanced email extractor
-# vuln scanner
-# http://www.arachni-scanner.com/
-arachni/
-autogetcontent
-# nessus frontend
-# http://www.crossley-nilsen.com/Linux/Bilbo_-_Nessus_WEB/bilbo_-_nessus_web.html
-# dead? 2003
-bilbo
-# Backup File Artifacts Checker
-# https://github.com/mazen160/bfac
-BFAC
-# password cracker
-# http://sectools.org/tool/brutus/
-brutus
-brutus/aet
-# sql injection
-# https://www.notsosecure.com/bsqlbf-v2-blind-sql-injection-brute-forcer/
-bsqlbf
-# vuln scanner
-# http://freecode.com/projects/cgichk dead? 2001
-cgichk
-# vuln scanner
-# https://sourceforge.net/projects/cisco-torch/
-cisco-torch
-# vuln scanner
-# https://github.com/stasinopoulos/commix
-commix
-# MS FrontPage vuln scanner?
-core-project/1.0
-# vuln scanner?
-crimscanner/
-# vuln scanner
-datacha0s
-# hidden page scanner
-# https://www.owasp.org/index.php/Category:OWASP_DirBuster_Project
-dirbuster
-# vuln scanner
-# https://sourceforge.net/projects/dominohunter/
-domino hunter
-# vuln scanner - directory traversal fuzzer
-# https://github.com/wireghoul/dotdotpwn
-dotdotpwn
-email extractor
-# vuln scanner
-fhscan core 1.
-floodgate
-# "F-Secure Radar is a turnkey vulnerability scanning and management platform."
-F-Secure Radar
-get-minimal
-# Scanner that looks for existing or hidden web objects
-# https://github.com/OJ/gobuster
-gobuster
-# vuln scanner
-gootkit auto-rooter scanner
-grabber
-# vuln scanner
-# https://sourceforge.net/projects/grendel/
-grendel-scan
-# sql injection
-havij
-# vuln scanner - path disclosure finder
-# http://seclists.org/fulldisclosure/2010/Sep/375
-inspath
-internet ninja
-# vuln scanner
-jaascois
-# vuln scanner
-zmeu
-# "Mozilla/5.0 Jorgee", vuln scanner
-Jorgee
-# port scanner
-# https://github.com/robertdavidgraham/masscan
-masscan
-# vuln scanner
-# http://www.severus.org/sacha/metis/
-metis
-# vuln scanner
-morfeus fucking scanner
-# sql injection
-# https://github.com/dtrip/mysqloit
-mysqloit
-# vuln scanner
-# http://www.nstalker.com/
-n-stealth
-# vuln scanner
-# http://www.tenable.com/products/nessus-vulnerability-scanner
-nessus
-# vuln scanner
-# https://www.netsparker.com/web-vulnerability-scanner/
-netsparker
-# vuln scanner
-# https://cirt.net/Nikto2
-nikto
-# vuln scanner
-nmap nse
-nmap scripting engine
-nmap-nse
-# vuln scanner
-# http://www.nsauditor.com/
-nsauditor
-# vuln scanner
-# https://github.com/projectdiscovery/nuclei
-Nuclei
-# vuln scanner
-# http://www.openvas.org/
-openvas
-# sql injection
-# http://www.vealtel.com/software/nosec/pangolin/
-pangolin
-# web proxy & vuln scanner
-# https://sourceforge.net/projects/paros/
-paros
-# phpmyadmin vuln scanner
-# dead 2005?
-pmafind
-prog.customcrawler
-# QQGameHall DoS/Virus/Malware/Adware
-# https://twitter.com/bagder/status/1244982556958826496?s=20
-QQGameHall
-# vuln scanner
-# https://www.qualys.com/suite/web-application-scanning/
-qualys was
-s.t.a.l.k.e.r.
-security scan
-# vuln scanner
-# https://sourceforge.net/projects/springenwerk/
-springenwerk
-# sql injection
-# http://www.sqlpowerinjector.com/
-sql power injector
-# sql injection
-# http://sqlmap.org/
-sqlmap
-# sql injection
-# http://sqlninja.sourceforge.net/
-sqlninja
-# https://www.cyber.nj.gov/threat-profiles/trojan-variants/sysscan
-sysscan
-# password cracker
-# http://foofus.net/goons/jmk/medusa/medusa.html
-teh forest lobster
-this is an exploit
-# vuln scanner?
-toata dragostea
-toata dragostea mea pentru diavola
-# SQL bot
-# http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22142&signatureSubId=0
-uil2pn
-# badly scripted UAs (e.g. User-Agent: User-Agent: foo)
-user-agent:
-# vuln scannr
-# https://subgraph.com/vega/
-vega/
-# vuln scanner
-# dead?
-voideye
-# vuln scanner
-# http://w3af.org/
-w3af.sf.net
-w3af.sourceforge.net
-w3af.org
-# site scanner (legacy)
-# http://www.robotstxt.org/db/webbandit.html
-webbandit
-# vuln scanner
-# http://www8.hp.com/us/en/software-solutions/webinspect-dynamic-analysis-dast/
-webinspect
-# site scanner
-# http://www.scrt.ch/en/attack/downloads/webshag
-webshag
-# vuln scanner
-# dead?
-webtrends security analyzer
-# vuln scanner
-# https://github.com/hhucn/webvulnscan
-webvulnscan
-# vuln scanner
-# https://github.com/xmendez/wfuzz
-Wfuzz
-# vuln scanner
-# https://github.com/ffuf/ffuf
-Fuzz Faster U Fool
-# web technology scanner
-# https://www.morningstarsecurity.com/research/whatweb
-whatweb
-# vuln scanner
-whcc/
-# exploit poc
-wordpress hash grabber
-# exploit
-xmlrpc exploit
-# wordpress vuln scanner
-# https://wpscan.org/
-WPScan
-# vuln scanner
-# https://github.com/mazen160/struts-pwn
-struts-pwn
-# Detectify website vulnerability scanner
-# https://detectify.com/
-Detectify
-# ZGrab scanner (Mozilla/5.0 zgrab/0.x)
-# https://zmap.io
-zgrab
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/scripting-user-agents.data b/pkg/render/applicationlayer/modsec-core-ruleset/scripting-user-agents.data
deleted file mode 100644
index 4c9dda0306..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/scripting-user-agents.data
+++ /dev/null
@@ -1,28 +0,0 @@
-# Generic HTTP clients (popular libraries)
-
-# http library
-# http://search.cpan.org/~opera/HTTP-DAV/DAV.pm
-dav.pm/v
-# http library
-# http://search.cpan.org/dist/libwww-perl/lib/LWP.pm
-libwww-perl
-# generic
-mozilla/4.0 (compatible)
-mozilla/4.0 (compatible; msie 6.0; win32)
-mozilla/5.0 sf/
-mozilla/5.0 sf//
-# http library
-# https://pypi.python.org/pypi/httplib2
-python-httplib2
-# http library
-# http://docs.python-requests.org/en/master/
-python-requests
-# http library
-# https://docs.python.org/2/library/urllib.html
-Python-urllib
-# http library
-# https://github.com/typhoeus/typhoeus
-typhoeus
-# http library
-# https://msdn.microsoft.com/en-us/library/windows/desktop/aa382925%28v=vs.85%29.aspx
-winhttp.winhttprequest
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/sql-errors.data b/pkg/render/applicationlayer/modsec-core-ruleset/sql-errors.data
deleted file mode 100644
index 4ecc805fc0..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/sql-errors.data
+++ /dev/null
@@ -1,80 +0,0 @@
-MySqlClient.
-Server message
-SQL error
-Oracle error
-JET Database Engine
-Procedure or function 
-SQLite.Exception
-[IBM][CLI Driver][DB2/6000]
-the used select statements have different number of columns
-org.postgresql.util.PSQLException
-Access Database Engine
-Incorrect syntax near
-Syntax error in string in query expression
-SQLiteException
-' doesn't exist
-CLI Driver
-on MySQL result index
-sybase
-com.informix.jdbc
-[MySQL][ODBC
-Error
-has occurred in the vicinity of:
-Sintaxis incorrecta cerca de
-MySQL server version for the right syntax to use
-com.mysql.jdbc.exceptions
-You have an error in your SQL syntax near
-You have an error in your SQL syntax;
-An illegal character has been found in the statement
-pg_query() [:
-supplied argument is not a valid MySQL
-mssql_query()
-mysql_fetch_array()
-Exception
-java.sql.SQLException
-Column count doesn't match value count at row
-Sybase message
- SQL Server
-PostgreSQL query failed:
-Dynamic SQL Error
-System.Data.SQLite.SQLiteException
-SQLite/JDBCDriver
-Unclosed quotation mark before the character string
-System.Data.SqlClient.
-Unclosed quotation mark after the character string
-System.Data.OleDb.OleDbException
-[DM_QUERY_E_SYNTAX]
-[SqlException
-Unexpected end of command in statement
-valid PostgreSQL result
-pg_exec() [:
-SQL Server
-[SQLITE_ERROR]
-Microsoft OLE DB Provider for ODBC Drivers
-PostgreSQL
-org.hsqldb.jdbc
-ADODB.Field (0x800A0BCD)
-SQL syntax
-Exception 
-System.Data.SqlClient.SqlException
-Data type mismatch in criteria expression.
-Driver
-DB2 SQL error
-Sybase message:
-ORA-
-[Microsoft][ODBC SQL Server Driver]
-'80040e14'
-Microsoft OLE DB Provider for SQL Server
- in query expression
-Npgsql.
-valid MySQL result
-supplied argument is not a valid PostgreSQL result
-db2_
-Ingres SQLSTATE
-Column count doesn't match
-Warning
-[Microsoft][ODBC Microsoft Access Driver]
-[Macromedia][SQLServer JDBC Driver]
-<b>Warning</b>: ibase_
-Roadhouse.Cms.
-DB2 SQL error:
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/unix-shell.data b/pkg/render/applicationlayer/modsec-core-ruleset/unix-shell.data
deleted file mode 100644
index 9a09ca8132..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/unix-shell.data
+++ /dev/null
@@ -1,115 +0,0 @@
-${CDPATH}
-${DIRSTACK}
-${HOME}
-${HOSTNAME}
-${IFS}
-${OLDPWD}
-${OSTYPE}
-${PATH}
-${PWD}
-$CDPATH
-$DIRSTACK
-$HOME
-$HOSTNAME
-$IFS
-$OLDPWD
-$OSTYPE
-$PATH
-$PWD
-bin/bash
-bin/cat
-bin/csh
-bin/dash
-bin/du
-bin/echo
-bin/grep
-bin/less
-bin/ls
-bin/mknod
-bin/more
-bin/nc
-bin/ps
-bin/rbash
-bin/sh
-bin/sleep
-bin/su
-bin/tcsh
-bin/uname
-dev/fd/
-dev/null
-dev/stderr
-dev/stdin
-dev/stdout
-dev/tcp/
-dev/udp/
-dev/zero
-etc/group
-etc/master.passwd
-etc/passwd
-etc/pwd.db
-etc/shadow
-etc/shells
-etc/spwd.db
-proc/self/
-usr/bin/awk
-usr/bin/base64
-usr/bin/cat
-usr/bin/cc
-usr/bin/clang
-usr/bin/clang++
-usr/bin/curl
-usr/bin/diff
-usr/bin/env
-usr/bin/fetch
-usr/bin/file
-usr/bin/find
-usr/bin/ftp
-usr/bin/gawk
-usr/bin/gcc
-usr/bin/head
-usr/bin/hexdump
-usr/bin/id
-usr/bin/less
-usr/bin/ln
-usr/bin/mkfifo
-usr/bin/more
-usr/bin/nc
-usr/bin/ncat
-usr/bin/nice
-usr/bin/nmap
-usr/bin/perl
-usr/bin/php
-usr/bin/php5
-usr/bin/php7
-usr/bin/php-cgi
-usr/bin/printf
-usr/bin/psed
-usr/bin/python
-usr/bin/python2
-usr/bin/python3
-usr/bin/ruby
-usr/bin/sed
-usr/bin/socat
-usr/bin/tail
-usr/bin/tee
-usr/bin/telnet
-usr/bin/top
-usr/bin/uname
-usr/bin/wget
-usr/bin/who
-usr/bin/whoami
-usr/bin/xargs
-usr/bin/xxd
-usr/bin/yes
-usr/local/bin/bash
-usr/local/bin/curl
-usr/local/bin/ncat
-usr/local/bin/nmap
-usr/local/bin/perl
-usr/local/bin/php
-usr/local/bin/python
-usr/local/bin/python2
-usr/local/bin/python3
-usr/local/bin/rbash
-usr/local/bin/ruby
-usr/local/bin/wget
diff --git a/pkg/render/applicationlayer/modsec-core-ruleset/windows-powershell-commands.data b/pkg/render/applicationlayer/modsec-core-ruleset/windows-powershell-commands.data
deleted file mode 100644
index a2b783f6f2..0000000000
--- a/pkg/render/applicationlayer/modsec-core-ruleset/windows-powershell-commands.data
+++ /dev/null
@@ -1,253 +0,0 @@
-powershell.exe
-Add-BitsFile
-Add-Computer
-Add-Content
-Add-History
-Add-Member
-Add-PSSnapin
-Add-Type
-Checkpoint-Computer
-Clear-Content
-Clear-EventLog
-Clear-History
-Clear-Item
-Clear-ItemProperty
-Clear-Variable
-Compare-Object
-Complete-BitsTransfer
-Complete-Transaction
-Connect-WSMan
-ConvertFrom-CSV
-ConvertFrom-SecureString
-ConvertFrom-StringData
-Convert-Path
-ConvertTo-CSV
-ConvertTo-Html
-ConvertTo-SecureString
-ConvertTo-XML
-Copy-Item
-Copy-ItemProperty
-Debug-Process
-Disable-ComputerRestore
-Disable-PSBreakpoint
-Disable-PSSessionConfiguration
-Disable-WSManCredSSP
-Disconnect-WSMan
-Enable-ComputerRestore
-Enable-PSBreakpoint
-Enable-PSRemoting
-Enable-PSSessionConfiguration
-Enable-WSManCredSSP
-Enter-PSSession
-Exit-PSSession
-Export-Alias
-Export-Clixml
-Export-Console
-Export-Counter
-Export-CSV
-Export-FormatData
-Export-ModuleMember
-Export-PSSession
-ForEach-Object
-Format-Custom
-Format-List
-Format-Table
-Format-Wide
-Get-Acl
-Get-Alias
-Get-AppLockerFileInformation
-Get-AppLockerPolicy
-Get-AuthenticodeSignature
-Get-BitsTransfer
-Get-ChildItem
-Get-Command
-Get-ComputerRestorePoint
-Get-Content
-Get-Counter
-Get-Credential
-Get-Culture
-Get-Event
-Get-EventLog
-Get-EventSubscriber
-Get-ExecutionPolicy
-Get-FormatData
-Get-History
-Get-Host
-Get-HotFix
-Get-Item
-Get-ItemProperty
-Get-Job
-Get-Location
-Get-Member
-Get-Module
-Get-PfxCertificate
-Get-Process
-Get-PSBreakpoint
-Get-PSCallStack
-Get-PSDrive
-Get-PSProvider
-Get-PSSession
-Get-PSSessionConfiguration
-Get-PSSnapin
-Get-Random
-Get-Service
-Get-TraceSource
-Get-Transaction
-Get-TroubleshootingPack
-Get-UICulture
-Get-Unique
-Get-Variable
-Get-WinEvent
-Get-WmiObject
-Get-WSManCredSSP
-Get-WSManInstance
-Group-Object
-Import-Alias
-Import-Clixml
-Import-Counter
-Import-CSV
-Import-LocalizedData
-Import-Module
-Import-PSSession
-Invoke-Command
-Invoke-Expression
-Invoke-History
-Invoke-Item
-Invoke-TroubleshootingPack
-Invoke-WmiMethod
-Invoke-WSManAction
-Join-Path
-Limit-EventLog
-Measure-Command
-Measure-Object
-Move-Item
-Move-ItemProperty
-New-Alias
-New-AppLockerPolicy
-New-Event
-New-EventLog
-New-Item
-New-ItemProperty
-New-Module
-New-ModuleManifest
-New-Object
-New-PSDrive
-New-PSSession
-New-PSSessionOption
-New-Service
-New-TimeSpan
-New-Variable
-New-WebServiceProxy
-New-WSManInstance
-New-WSManSessionOption
-Out-Default
-Out-File
-Out-GridView
-Out-Host
-Out-Null
-Out-Printer
-Out-String
-Pop-Location
-Push-Location
-Read-Host
-Receive-Job
-Register-EngineEvent
-Register-ObjectEvent
-Register-PSSessionConfiguration
-Register-WmiEvent
-Remove-BitsTransfer
-Remove-Computer
-Remove-Event
-Remove-EventLog
-Remove-Item
-Remove-ItemProperty
-Remove-Job
-Remove-Module
-Remove-PSBreakpoint
-Remove-PSDrive
-Remove-PSSession
-Remove-PSSnapin
-Remove-Variable
-Remove-WmiObject
-Remove-WSManInstance
-Rename-Item
-Rename-ItemProperty
-Reset-ComputerMachinePassword
-Resolve-Path
-Restart-Computer
-Restart-Service
-Restore-Computer
-Resume-BitsTransfer
-Resume-Service
-Select-Object
-Select-String
-Select-XML
-Send-MailMessage
-Set-Acl
-Set-Alias
-Set-AppLockerPolicy
-Set-AuthenticodeSignature
-Set-BitsTransfer
-Set-Content
-Set-Date
-Set-ExecutionPolicy
-Set-Item
-Set-ItemProperty
-Set-Location
-Set-PSBreakpoint
-Set-PSDebug
-Set-PSSessionConfiguration
-Set-Service
-Set-StrictMode
-Set-TraceSource
-Set-Variable
-Set-WmiInstance
-Set-WSManInstance
-Set-WSManQuickConfig
-Show-EventLog
-Sort-Object
-Split-Path
-Start-BitsTransfer
-Start-Job
-Start-Process
-Start-Service
-Start-Sleep
-Start-Transaction
-Start-Transcript
-Stop-Computer
-Stop-Job
-Stop-Process
-Stop-Service
-Stop-Transcript
-Suspend-BitsTransfer
-Suspend-Service
-Tee-Object
-Test-AppLockerPolicy
-Test-ComputerSecureChannel
-Test-Connection
-Test-ModuleManifest
-Test-Path
-Test-WSMan
-Trace-Command
-Undo-Transaction
-Unregister-Event
-Unregister-PSSessionConfiguration
-Update-FormatData
-Update-List
-Update-TypeData
-Use-Transaction
-Wait-Event
-Wait-Job
-Wait-Process
-Where-Object
-Write-Debug
-Write-Error
-Write-EventLog
-Write-Host
-Write-Output
-Write-Progress
-Write-Verbose
-Write-Warning
--EncodedCommand
--ExecutionPolicy
--PSConsoleFile
diff --git a/pkg/render/applicationlayer/modsecurityrules.go b/pkg/render/applicationlayer/modsecurityrules.go
deleted file mode 100644
index 333b5ca20f..0000000000
--- a/pkg/render/applicationlayer/modsecurityrules.go
+++ /dev/null
@@ -1,62 +0,0 @@
-// THIS IS A GENERATED FILE, PLEASE DO NOT EDIT.
-package applicationlayer
-
-var ModsecurityCoreRuleSet = map[string]string{
-	"REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example":  "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",
-	"REQUEST-901-INITIALIZATION.conf":                      "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",
-	"REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf":         "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",
-	"REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf":      "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",
-	"REQUEST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf":      "IyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KIyBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IHZlci4zLjMuNQojIENvcHlyaWdodCAoYykgMjAwNi0yMDIwIFRydXN0d2F2ZSBhbmQgY29udHJpYnV0b3JzLiBBbGwgcmlnaHRzIHJlc2VydmVkLgojIENvcHlyaWdodCAoYykgMjAyMS0yMDIzIENvcmUgUnVsZSBTZXQgcHJvamVjdC4gQWxsIHJpZ2h0cyByZXNlcnZlZC4KIwojIFRoZSBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IGlzIGRpc3RyaWJ1dGVkIHVuZGVyCiMgQXBhY2hlIFNvZnR3YXJlIExpY2Vuc2UgKEFTTCkgdmVyc2lvbiAyCiMgUGxlYXNlIHNlZSB0aGUgZW5jbG9zZWQgTElDRU5TRSBmaWxlIGZvciBmdWxsIGRldGFpbHMuCiMKIyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KCiMgVGhlc2UgZXhjbHVzaW9ucyByZW1lZHkgZmFsc2UgcG9zaXRpdmVzIGluIGEgZGVmYXVsdCBOZXh0Q2xvdWQgaW5zdGFsbC4KIyBUaGV5IHdpbGwgbGlrZWx5IHdvcmsgd2l0aCBPd25DbG91ZCB0b28sIGJ1dCB5b3UgbWF5IGhhdmUgdG8gbW9kaWZ5IHRoZW0uCiMgVGhlIGV4Y2x1c2lvbnMgYXJlIG9ubHkgYWN0aXZlIGlmIGNyc19leGNsdXNpb25zX25leHRjbG91ZD0xIGlzIHNldC4KIyBTZWUgcnVsZSA5MDAxMzAgaW4gY3JzLXNldHVwLmNvbmYuZXhhbXBsZSBmb3IgaW5zdHJ1Y3Rpb25zLgojCiMgVG8gcmVsYXggdXBsb2FkIHJlc3RyaWN0aW9ucyBmb3Igb25seSB0aGUgcGhwIGZpbGVzIHRoYXQgbmVlZCBpdCwKIyB5b3UgcHV0IHNvbWV0aGluZyBsaWtlIHRoaXMgaW4gY3JzLXNldHVwLmNvbmY6CiMKIyBTZWNSdWxlIFJFUVVFU1RfRklMRU5BTUUgIkByeCAvKD86cmVtb3RlLnBocHxpbmRleC5waHApLyIgXAojICAgImlkOjkwMDMzMzAsXAojICAgcGhhc2U6MSxcCiMgICB0Om5vbmUsXAojICAgbm9sb2csXAojICAgcGFzcyxcCiMgICB0eC5yZXN0cmljdGVkX2V4dGVuc2lvbnM9Jy5iYWsvIC5jb25maWcvIC5jb25mLyciCiMKIyBMYXJnZSB1cGxvYWRzIGNhbiBiZSBtb2RpZmllZCB3aXRoIFNlY1JlcXVlc3RCb2R5TGltaXQuIE9yIHRoZXkKIyBjYW4gYmUgbW9yZSBjb250cm9sbGVkIGJ5IHVzaW5nIHRoZSBmb2xsb3dpbmc6CiMKIyBTZWNSdWxlIFJFUVVFU1RfVVJJICJAZW5kc1dpdGggL2luZGV4LnBocC9hcHBzL2ZpbGVzL2FqYXgvdXBsb2FkLnBocCIgXAojICAgICJpZDo5MDAzNjEwLFwKIyAgICBwaGFzZToxLFwKIyAgICB0Om5vbmUsXAojICAgIG5vbG9nLFwKIyAgICBjdGw6cmVxdWVzdEJvZHlMaW1pdD0xMDczNzQxODI0IgojCiMgLS0tLS0tLS0tLS0tLS0tLS0tLS0tCgoKU2VjUnVsZSAmVFg6Y3JzX2V4Y2x1c2lvbnNfbmV4dGNsb3VkfFRYOmNyc19leGNsdXNpb25zX25leHRjbG91ZCAiQGVxIDAiIFwKICAgICJpZDo5MDAzMDAwLFwKICAgIHBoYXNlOjEsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIHNraXBBZnRlcjpFTkQtTkVYVENMT1VEIgoKU2VjUnVsZSAmVFg6Y3JzX2V4Y2x1c2lvbnNfbmV4dGNsb3VkfFRYOmNyc19leGNsdXNpb25zX25leHRjbG91ZCAiQGVxIDAiIFwKICAgICJpZDo5MDAzMDAxLFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIHNraXBBZnRlcjpFTkQtTkVYVENMT1VEIgoKCiMKIyBbIEZpbGUgTWFuYWdlciBdCiMKIwojIFRoZSB3ZWIgaW50ZXJmYWNlIHVwbG9hZHMgZmlsZXMsIGFuZCBpbnRlcmFjdHMgd2l0aCB0aGUgdXNlci4KClNlY1J1bGUgUkVRVUVTVF9GSUxFTkFNRSAiQGNvbnRhaW5zIC9yZW1vdGUucGhwL3dlYmRhdiIgXAogICAgImlkOjkwMDMxMDAsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICBjdGw6cnVsZVJlbW92ZUJ5VGFnPWF0dGFjay1pbmplY3Rpb24tcGhwLFwKICAgIGN0bDpydWxlUmVtb3ZlQnlJZD05NDEwMDAtOTQyOTk5LFwKICAgIGN0bDpydWxlUmVtb3ZlQnlJZD05NTEwMDAtOTUxOTk5LFwKICAgIGN0bDpydWxlUmVtb3ZlQnlJZD05NTMxMDAtOTUzMTMwLFwKICAgIGN0bDpydWxlUmVtb3ZlQnlJZD05MjA0MjAsXAogICAgY3RsOnJ1bGVSZW1vdmVCeUlkPTkyMDQ0MCxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNSciCgojIFNraXAgUFVUIHBhcnNpbmcgZm9yIGludmFsaWQgZW5jb2RpbmcgLyBwcm90b2NvbCB2aW9sYXRpb25zIGluIGJpbmFyeSBmaWxlcy4KClNlY1J1bGUgUkVRVUVTVF9NRVRIT0QgIkBzdHJlcSBQVVQiIFwKICAgICJpZDo5MDAzMTA1LFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIGNoYWluIgogICAgU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAY29udGFpbnMgL3JlbW90ZS5waHAvd2ViZGF2IiBcCiAgICAgICAgInQ6bm9uZSxcCiAgICAgICAgY3RsOnJ1bGVSZW1vdmVCeUlkPTkyMDAwMC05MjA5OTksXAogICAgICAgIGN0bDpydWxlUmVtb3ZlQnlJZD05MzIwMDAtOTMyOTk5LFwKICAgICAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTIxMTUwLFwKICAgICAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTMwMTEwLFwKICAgICAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTMwMTIwIgoKIyBBbGxvdyB0aGUgZGF0YSB0eXBlICd0ZXh0L3ZjYXJkJwoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAY29udGFpbnMgL3JlbW90ZS5waHAvZGF2L2ZpbGVzLyIgXAogICAgImlkOjkwMDMxMTAsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgc2V0dmFyOid0eC5hbGxvd2VkX3JlcXVlc3RfY29udGVudF90eXBlPSV7dHguYWxsb3dlZF9yZXF1ZXN0X2NvbnRlbnRfdHlwZX0gfHRleHQvdmNhcmR8JyIKCiMgQWxsb3cgdGhlIGRhdGEgdHlwZSAnYXBwbGljYXRpb24vb2N0ZXQtc3RyZWFtJwoKU2VjUnVsZSBSRVFVRVNUX01FVEhPRCAiQHJ4IF4oPzpQVVR8TU9WRSkkIiBcCiAgICAiaWQ6OTAwMzExNSxcCiAgICBwaGFzZToyLFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBjaGFpbiIKICAgIFNlY1J1bGUgUkVRVUVTVF9GSUxFTkFNRSAiQHJ4IC9yZW1vdGVcLnBocC9kYXYvKD86ZmlsZXN8dXBsb2FkcykvIiBcCiAgICAgICAgInNldHZhcjondHguYWxsb3dlZF9yZXF1ZXN0X2NvbnRlbnRfdHlwZT0le3R4LmFsbG93ZWRfcmVxdWVzdF9jb250ZW50X3R5cGV9IHxhcHBsaWNhdGlvbi9vY3RldC1zdHJlYW18JyIKCiMgQWxsb3cgZGF0YSB0eXBlcyBsaWtlIHZpZGVvL21wNAoKU2VjUnVsZSBSRVFVRVNUX01FVEhPRCAiQHN0cmVxIFBVVCIgXAogICAgImlkOjkwMDMxMTYsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgY2hhaW4iCiAgICBTZWNSdWxlIFJFUVVFU1RfRklMRU5BTUUgIkByeCAoPzovcHVibGljXC5waHAvd2ViZGF2L3wvcmVtb3RlXC5waHAvZGF2L3VwbG9hZHMvKSIgXAogICAgICAgICJjdGw6cnVsZVJlbW92ZUJ5SWQ9OTIwMzQwLFwKICAgICAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTIwNDIwIgoKCiMgQWxsb3cgY2hhcmFjdGVycyBsaWtlIC8uLi8gaW4gZmlsZXMuCiMgQWxsb3cgYWxsIGtpbmQgb2YgZmlsZXR5cGVzLgojIEFsbG93IHNvdXJjZSBjb2RlLgoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAY29udGFpbnMgL3JlbW90ZS5waHAvZGF2L2ZpbGVzLyIgXAogICAgImlkOjkwMDMxMjAsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTMwMTAwLTkzMDExMCxcCiAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTUxMDAwLTk1MTk5OSxcCiAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTUzMTAwLTk1MzEzMCxcCiAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTIwNDQwLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyIKCiMgQWxsb3cgUkVQT1JUIHJlcXVlc3RzIHdpdGhvdXQgQ29udGVudC1UeXBlIGhlYWRlciAoYXQgbGVhc3QgdGhlIGlPUyBhcHAgZG9lcyB0aGlzKQoKU2VjUnVsZSBSRVFVRVNUX01FVEhPRCAiQHN0cmVxIFJFUE9SVCIgXAogICAgImlkOjkwMDMxMjEsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICBjaGFpbiIKICAgIFNlY1J1bGUgUkVRVUVTVF9GSUxFTkFNRSAiQGNvbnRhaW5zIC9yZW1vdGUucGhwL2Rhdi9maWxlcy8iIFwKICAgICAgICAidDpub25lLFwKICAgICAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTIwMzQwIgoKCiMgWyBTZWFyY2hlbmdpbmUgXQojCiMgTmV4Q2xvdWQgdXNlcyBhIHNlYXJjaCBmaWVsZCBmb3IgZmlsZW5hbWUgb3IgY29udGVudCBxdWVyaWVzLgoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAY29udGFpbnMgL2luZGV4LnBocC9jb3JlL3NlYXJjaCIgXAogICAgImlkOjkwMDMxMjUsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICBjdGw6cnVsZVJlbW92ZVRhcmdldEJ5VGFnPWF0dGFjay1pbmplY3Rpb24tcGhwO0FSR1M6cXVlcnksXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeUlkPTk0MTAwMC05NDI5OTk7QVJHUzpxdWVyeSxcCiAgICBjdGw6cnVsZVJlbW92ZVRhcmdldEJ5SWQ9OTMyMDAwLTkzMjk5OTtBUkdTOnF1ZXJ5LFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyIKCgojIFsgREFWIF0KIwojIE5leHRDbG91ZCB1c2VzIERBViBtZXRob2RzIHdpdGggaW5kZXgucGhwIGFuZCByZW1vdGUucGhwIHRvIGRvIG1hbnkgdGhpbmdzCiMgVGhlIGRlZmF1bHQgb25lcyBpbiBNb2RTZWN1cml0eSBhcmU6IEdFVCBIRUFEIFBPU1QgT1BUSU9OUwojCiMgTG9va2luZyB0aHJvdWdoIHRoZSBjb2RlLCBhbmQgdmlhIHRlc3RpbmcsIEkgZm91bmQgdGhlc2U6CiMKIyBGaWxlIG1hbmFnZXI6IFBVVCBERUxFVEUgTU9WRSBQUk9QRklORCBQUk9QUEFUQ0gKIyBDYWxlbmRhcnM6IFJFUE9SVAojIE90aGVycyBpbiB0aGUgY29kZSBvciBqcyBmaWxlczogUEFUQ0ggTUtDT0wgTU9WRSBUUkFDRQojIE90aGVycyB0aGF0IEkgYWRkZWQganVzdCBpbiBjYXNlLCBhbmQgdGhleSBzZWVtIHJlbGF0ZWQ6CiMgICBDSEVDS09VVCBDT1BZIExPQ0sgTUVSR0UgTUtBQ1RJVklUWSBVTkxPQ0suCgpTZWNSdWxlIFJFUVVFU1RfRklMRU5BTUUgIkByeCAvKD86cmVtb3RlfGluZGV4fHB1YmxpYylcLnBocC8iIFwKICAgICJpZDo5MDAzMTMwLFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIHNldHZhcjondHguYWxsb3dlZF9tZXRob2RzPSV7dHguYWxsb3dlZF9tZXRob2RzfSBQVVQgUEFUQ0ggQ0hFQ0tPVVQgQ09QWSBERUxFVEUgTE9DSyBNRVJHRSBNS0FDVElWSVRZIE1LQ09MIE1PVkUgUFJPUEZJTkQgUFJPUFBBVENIIFVOTE9DSyBSRVBPUlQgVFJBQ0UganNvbnAnIgoKCiMgV2UgbmVlZCB0byBhbGxvdyBEQVYgbWV0aG9kcyBmb3Igc2hhcmluZyBmaWxlcywgYW5kIHJlbW92aW5nIHNoYXJlcwojIERFTEVURSAtIHdoZW4gdGhlIHNoYXJlIGlzIHJlbW92ZWQKIyBQVVQgLSB3aGVuIHNldHRpbmcgYSBwYXNzd29yZCAvIGV4cGlyYXRpb24gdGltZQoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAcnggL29jcy92WzAtOV0rXC5waHAvYXBwcy9maWxlc19zaGFyaW5nLyIgXAogICAgImlkOjkwMDMxNDAsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgc2V0dmFyOid0eC5hbGxvd2VkX21ldGhvZHM9JXt0eC5hbGxvd2VkX21ldGhvZHN9IFBVVCBERUxFVEUnIgoKCiMgWyBQcmV2aWV3IGFuZCBUaHVtYm5haWxzIF0KClNlY1J1bGUgUkVRVUVTVF9GSUxFTkFNRSAiQGNvbnRhaW5zIC9pbmRleC5waHAvY29yZS9wcmV2aWV3LnBuZyIgXAogICAgImlkOjkwMDMxNTAsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICBjdGw6cnVsZVJlbW92ZVRhcmdldEJ5SWQ9OTMyMTUwO0FSR1M6ZmlsZSxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNSciCgojIEZpbGVwcmV2aWV3IGZvciB0cmFzaGJpbgoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAY29udGFpbnMgL2luZGV4LnBocC9hcHBzL2ZpbGVzX3RyYXNoYmluL2FqYXgvcHJldmlldy5waHAiIFwKICAgICJpZDo5MDAzMTU1LFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeUlkPTkzMjE1MDtBUkdTOmZpbGUsXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeUlkPTk0MjE5MDtBUkdTOmZpbGUsXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnIgoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAcnggL2luZGV4XC5waHAvKD86YXBwcy9nYWxsZXJ5L3RodW1ibmFpbHN8bG9nb3V0JCkiIFwKICAgICJpZDo5MDAzMTYwLFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeUlkPTk0MTEyMDtBUkdTOnJlcXVlc3R0b2tlbixcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNSciCgoKIyBbIE93bm5vdGUgXQoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAY29udGFpbnMgL2luZGV4LnBocC9hcHBzL293bm5vdGUvIiBcCiAgICAiaWQ6OTAwMzMwMCxcCiAgICBwaGFzZToyLFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIGN0bDpydWxlUmVtb3ZlQnlJZD05NDExNTAsXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnIgoKCiMgWyBUZXh0IEVkaXRvciBdCiMKIyBUaGlzIGZpbGUgY2FuIHNhdmUgYW55dGhpbmcsIGFuZCBpdCdzIG5hbWUgY291bGQgYmUgbG90cyBvZiB0aGluZ3MuCgpTZWNSdWxlIFJFUVVFU1RfRklMRU5BTUUgIkBjb250YWlucyAvaW5kZXgucGhwL2FwcHMvZmlsZXNfdGV4dGVkaXRvci8iIFwKICAgICJpZDo5MDAzMzEwLFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeVRhZz1PV0FTUF9DUlM7QVJHUzpmaWxlY29udGVudHMsXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeUlkPTkyMTExMC05MjExNjA7QVJHUzpmaWxlY29udGVudHMsXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeUlkPTkzMjE1MDtBUkdTOmZpbGVuYW1lLFwKICAgIGN0bDpydWxlUmVtb3ZlVGFyZ2V0QnlJZD05MjAzNzAtOTIwMzkwO0FSR1M6ZmlsZWNvbnRlbnRzLFwKICAgIGN0bDpydWxlUmVtb3ZlVGFyZ2V0QnlJZD05MjAzNzAtOTIwMzkwO0FSR1NfQ09NQklORURfU0laRSxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNSciCgoKIyBbIEFkZHJlc3MgQm9vayBdCiMKIyBBbGxvdyB0aGUgZGF0YSB0eXBlICd0ZXh0L3ZjYXJkJwoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAY29udGFpbnMgL3JlbW90ZS5waHAvZGF2L2FkZHJlc3Nib29rcy8iIFwKICAgICJpZDo5MDAzMzIwLFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIHNldHZhcjondHguYWxsb3dlZF9yZXF1ZXN0X2NvbnRlbnRfdHlwZT0le3R4LmFsbG93ZWRfcmVxdWVzdF9jb250ZW50X3R5cGV9IHx0ZXh0L3ZjYXJkfCciCgojIEFsbG93IG1vZGlmeWluZyBjb250YWN0cyB2aWEgdGhlIHdlYiBpbnRlcmZhY2UKU2VjUnVsZSBSRVFVRVNUX01FVEhPRCAiQHN0cmVxIFBVVCIgXAogICAgImlkOjkwMDMzMjEsXAogICAgcGhhc2U6MSxcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICBjaGFpbiIKICAgIFNlY1J1bGUgUkVRVUVTVF9GSUxFTkFNRSAiQGNvbnRhaW5zIC9yZW1vdGUucGhwL2Rhdi9hZGRyZXNzYm9va3MvIiBcCiAgICAgICAgInQ6bm9uZSxcCiAgICAgICAgY3RsOnJ1bGVSZW1vdmVCeUlkPTIwMDAwMiIKCgojIFsgQ2FsZW5kYXIgXQojCiMgQWxsb3cgdGhlIGRhdGEgdHlwZSAndGV4dC9jYWxlbmRhcicKClNlY1J1bGUgUkVRVUVTVF9GSUxFTkFNRSAiQGNvbnRhaW5zIC9yZW1vdGUucGhwL2Rhdi9jYWxlbmRhcnMvIiBcCiAgICAiaWQ6OTAwMzMzMCxcCiAgICBwaGFzZToyLFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBzZXR2YXI6J3R4LmFsbG93ZWRfcmVxdWVzdF9jb250ZW50X3R5cGU9JXt0eC5hbGxvd2VkX3JlcXVlc3RfY29udGVudF90eXBlfSB8dGV4dC9jYWxlbmRhcnwnIgoKIyBBbGxvdyBtb2RpZnlpbmcgY2FsZW5kYXIgZXZlbnRzIHZpYSB0aGUgd2ViIGludGVyZmFjZQpTZWNSdWxlIFJFUVVFU1RfTUVUSE9EICJAc3RyZXEgUFVUIiBcCiAgICAiaWQ6OTAwMzMzMSxcCiAgICBwaGFzZToxLFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIGNoYWluIgogICAgU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAY29udGFpbnMgL3JlbW90ZS5waHAvZGF2L2NhbGVuZGFycy8iIFwKICAgICAgICAidDpub25lLFwKICAgICAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9MjAwMDAyIgoKCiMgWyBOb3RlcyBdCiMKIyBXZSB3YW50IHRvIGFsbG93IGEgbG90IG9mIHRoaW5ncyBhcyB0aGUgdXNlciBpcwojIGFsbG93ZWQgdG8gbm90ZSBvbiBhbnl0aGluZy4KClNlY1J1bGUgUkVRVUVTVF9GSUxFTkFNRSAiQGNvbnRhaW5zIC9pbmRleC5waHAvYXBwcy9ub3Rlcy8iIFwKICAgICJpZDo5MDAzMzQwLFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgY3RsOnJ1bGVSZW1vdmVCeVRhZz1hdHRhY2staW5qZWN0aW9uLXBocCxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNSciCgoKIyBbIEJvb2ttYXJrcyBdCiMKIyBBbGxvdyB1cmxzIGluIGRhdGEuCgpTZWNSdWxlIFJFUVVFU1RfRklMRU5BTUUgIkBjb250YWlucyAvaW5kZXgucGhwL2FwcHMvYm9va21hcmtzLyIgXAogICAgImlkOjkwMDMzNTAsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICBjdGw6cnVsZVJlbW92ZUJ5SWQ9OTMxMTMwLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyIKCgojCiMgWyBMb2dpbiBmb3JtcyBdCiMKCiMgVGhpcyByZW1vdmVzIGNoZWNrcyBvbiB0aGUgJ3Bhc3N3b3JkJyBhbmQgcmVsYXRlZCBmaWVsZHM6CgojIFVzZXIgbG9naW4gcGFzc3dvcmQuCgpTZWNSdWxlIFJFUVVFU1RfRklMRU5BTUUgIkBjb250YWlucyAvaW5kZXgucGhwL2xvZ2luIiBcCiAgICAiaWQ6OTAwMzQwMCxcCiAgICBwaGFzZToyLFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIGN0bDpydWxlUmVtb3ZlVGFyZ2V0QnlJZD05NDExMDA7QVJHUzpyZXF1ZXN0dG9rZW4sXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeVRhZz1PV0FTUF9DUlM7QVJHUzpwYXNzd29yZCxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNSciCgojIFJlc2V0IHBhc3N3b3JkLgoKU2VjUnVsZSBSRVFVRVNUX0ZJTEVOQU1FICJAZW5kc1dpdGggL2luZGV4LnBocC9sb2dpbiIgXAogICAgImlkOjkwMDM0MTAsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgY2hhaW4iCiAgICBTZWNSdWxlIEFSR1M6YWN0aW9uICJAc3RyZXEgcmVzZXRwYXNzIiBcCiAgICAgICAgInQ6bm9uZSxcCiAgICAgICAgY2hhaW4iCiAgICAgICAgU2VjUnVsZSAmQVJHUzphY3Rpb24gIkBlcSAxIiBcCiAgICAgICAgICAgICJ0Om5vbmUsXAogICAgICAgICAgICBjdGw6cnVsZVJlbW92ZVRhcmdldEJ5VGFnPU9XQVNQX0NSUztBUkdTOnBhc3MxLFwKICAgICAgICAgICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeVRhZz1PV0FTUF9DUlM7QVJHUzpwYXNzMS10ZXh0LFwKICAgICAgICAgICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeVRhZz1PV0FTUF9DUlM7QVJHUzpwYXNzMiIKCiMgQ2hhbmdlIFBhc3N3b3JkIGFuZCBTZXR0aW5nIHVwIGEgbmV3IHVzZXIvcGFzc3dvcmQKClNlY1J1bGUgUkVRVUVTVF9GSUxFTkFNRSAiQGVuZHNXaXRoIC9pbmRleC5waHAvc2V0dGluZ3MvdXNlcnMiIFwKICAgICJpZDo5MDAzNTAwLFwKICAgIHBoYXNlOjIsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeVRhZz1PV0FTUF9DUlM7QVJHUzpuZXd1c2VycGFzc3dvcmQsXAogICAgY3RsOnJ1bGVSZW1vdmVUYXJnZXRCeVRhZz1PV0FTUF9DUlM7QVJHUzpwYXNzd29yZCxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNSciCgoKU2VjTWFya2VyICJFTkQtTkVYVENMT1VELUFETUlOIgoKU2VjTWFya2VyICJFTkQtTkVYVENMT1VEIgo=",
-	"REQUEST-903.9004-DOKUWIKI-EXCLUSION-RULES.conf":       "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",
-	"REQUEST-903.9005-CPANEL-EXCLUSION-RULES.conf":         "IyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KIyBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IHZlci4zLjMuNQojIENvcHlyaWdodCAoYykgMjAwNi0yMDIwIFRydXN0d2F2ZSBhbmQgY29udHJpYnV0b3JzLiBBbGwgcmlnaHRzIHJlc2VydmVkLgojIENvcHlyaWdodCAoYykgMjAyMS0yMDIzIENvcmUgUnVsZSBTZXQgcHJvamVjdC4gQWxsIHJpZ2h0cyByZXNlcnZlZC4KIwojIFRoZSBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IGlzIGRpc3RyaWJ1dGVkIHVuZGVyCiMgQXBhY2hlIFNvZnR3YXJlIExpY2Vuc2UgKEFTTCkgdmVyc2lvbiAyCiMgUGxlYXNlIHNlZSB0aGUgZW5jbG9zZWQgTElDRU5TRSBmaWxlIGZvciBmdWxsIGRldGFpbHMuCiMgLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCgojIFRoZXNlIGV4Y2x1c2lvbnMgcmVtZWR5IGZhbHNlIHBvc2l0aXZlcyBpbiBhIGRlZmF1bHQgY1BhbmVsIGVudmlyb25tZW50LgojIFRoZSBleGNsdXNpb25zIGFyZSBvbmx5IGFjdGl2ZSBpZiBjcnNfZXhjbHVzaW9uc19jcGFuZWw9MSBpcyBzZXQuCiMgU2VlIHJ1bGUgOTAwMTMwIGluIGNycy1zZXR1cC5jb25mLmV4YW1wbGUgZm9yIGluc3RydWN0aW9ucy4KCgpTZWNSdWxlICZUWDpjcnNfZXhjbHVzaW9uc19jcGFuZWx8VFg6Y3JzX2V4Y2x1c2lvbnNfY3BhbmVsICJAZXEgMCIgXAogICAgImlkOjkwMDUwMDAsXAogICAgcGhhc2U6MSxcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgc2tpcEFmdGVyOkVORC1DUEFORUwiCgpTZWNSdWxlICZUWDpjcnNfZXhjbHVzaW9uc19jcGFuZWx8VFg6Y3JzX2V4Y2x1c2lvbnNfY3BhbmVsICJAZXEgMCIgXAogICAgImlkOjkwMDUwMDEsXAogICAgcGhhc2U6MixcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgc2tpcEFmdGVyOkVORC1DUEFORUwiCgoKIwojIFsgY1BhbmVsIHdobS1zZXJ2ZXItc3RhdHVzIF0KIwojIENwYW5lbCdzIFdITSBhdXRvIGdlbmVyYXRlcyByZXF1ZXN0cyB0byAvd2htLXNlcnZlci1zdGF0dXMgZnJvbQojIDEyNy4wLjAuMSAodHJpZ2dlcnMgcnVsZSA5MjAyODAsIG5vbi1ibG9ja2luZywgbG9nIG9ubHkpIE9uY2UgZXZlcnkgNSBtaW51dGVzLgojIFRoZXNlIGZhbHNlIHBvc2l0aXZlcyBoYXZlIGEgbG93IGltcGFjdCAobG9nZ2VkLCBub24tYmxvY2tpbmcpIHRvIGEgbGFyZ2UgbnVtYmVyIG9mIHVzZXJzIChhbGwgY1BhbmVsIGFkbWlucykuCiMKCiMKIyBSdWxlIHRvIGFsbG93IGNQYW5lbCB3aG0tc2VydmVyLXN0YXR1cyByZXF1ZXN0cyBmcm9tIGxvY2FsaG9zdCB3aXRob3V0IGxvZyBlbnRyeS4KIwpTZWNSdWxlIFJFUVVFU1RfTElORSAiQHJ4IF5HRVQgL3dobS1zZXJ2ZXItc3RhdHVzKD86L3wvXD9hdXRvKT8gSFRUUC9bMTJdXC5bMDFdJCIgXAogICAgImlkOjkwMDUxMDAsXAogICAgcGhhc2U6MSxcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICB0YWc6J2FwcGxpY2F0aW9uLW11bHRpJyxcCiAgICB0YWc6J2xhbmd1YWdlLW11bHRpJyxcCiAgICB0YWc6J3BsYXRmb3JtLWFwYWNoZScsXAogICAgdGFnOidhdHRhY2stZ2VuZXJpYycsXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIGNoYWluIgogICAgU2VjUnVsZSBSRU1PVEVfQUREUiAiQGlwTWF0Y2ggMTI3LjAuMC4xLDo6MSIgXAogICAgICAgICJ0Om5vbmUsXAogICAgICAgIGN0bDpydWxlUmVtb3ZlQnlJZD05MjAyODAsXAogICAgICAgIGN0bDpydWxlUmVtb3ZlQnlJZD05MjAzNTAiCgoKU2VjTWFya2VyICJFTkQtQ1BBTkVMIgo=",
-	"REQUEST-903.9006-XENFORO-EXCLUSION-RULES.conf":        "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",
-	"REQUEST-905-COMMON-EXCEPTIONS.conf":                   "IyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KIyBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IHZlci4zLjMuNQojIENvcHlyaWdodCAoYykgMjAwNi0yMDIwIFRydXN0d2F2ZSBhbmQgY29udHJpYnV0b3JzLiBBbGwgcmlnaHRzIHJlc2VydmVkLgojIENvcHlyaWdodCAoYykgMjAyMS0yMDIzIENvcmUgUnVsZSBTZXQgcHJvamVjdC4gQWxsIHJpZ2h0cyByZXNlcnZlZC4KIwojIFRoZSBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IGlzIGRpc3RyaWJ1dGVkIHVuZGVyCiMgQXBhY2hlIFNvZnR3YXJlIExpY2Vuc2UgKEFTTCkgdmVyc2lvbiAyCiMgUGxlYXNlIHNlZSB0aGUgZW5jbG9zZWQgTElDRU5TRSBmaWxlIGZvciBmdWxsIGRldGFpbHMuCiMgLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCgoKIyBUaGlzIGZpbGUgaXMgdXNlZCBhcyBhbiBleGNlcHRpb24gbWVjaGFuaXNtIHRvIHJlbW92ZSBjb21tb24gZmFsc2UgcG9zaXRpdmVzCiMgdGhhdCBtYXkgYmUgZW5jb3VudGVyZWQuCiMKIyBFeGNlcHRpb24gZm9yIEFwYWNoZSBTU0wgcGluZ2VyCiMKU2VjUnVsZSBSRVFVRVNUX0xJTkUgIkBzdHJlcSBHRVQgLyIgXAogICAgImlkOjkwNTEwMCxcCiAgICBwaGFzZToxLFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIHRhZzonYXBwbGljYXRpb24tbXVsdGknLFwKICAgIHRhZzonbGFuZ3VhZ2UtbXVsdGknLFwKICAgIHRhZzoncGxhdGZvcm0tYXBhY2hlJyxcCiAgICB0YWc6J2F0dGFjay1nZW5lcmljJyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgY2hhaW4iCiAgICBTZWNSdWxlIFJFTU9URV9BRERSICJAaXBNYXRjaCAxMjcuMC4wLjEsOjoxIiBcCiAgICAgICAgInQ6bm9uZSxcCiAgICAgICAgY3RsOnJ1bGVFbmdpbmU9T2ZmLFwKICAgICAgICBjdGw6YXVkaXRFbmdpbmU9T2ZmIgoKIwojIEV4Y2VwdGlvbiBmb3IgQXBhY2hlIGludGVybmFsIGR1bW15IGNvbm5lY3Rpb24KIwpTZWNSdWxlIFJFTU9URV9BRERSICJAaXBNYXRjaCAxMjcuMC4wLjEsOjoxIiBcCiAgICAiaWQ6OTA1MTEwLFwKICAgIHBoYXNlOjEsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgdGFnOidhcHBsaWNhdGlvbi1tdWx0aScsXAogICAgdGFnOidsYW5ndWFnZS1tdWx0aScsXAogICAgdGFnOidwbGF0Zm9ybS1hcGFjaGUnLFwKICAgIHRhZzonYXR0YWNrLWdlbmVyaWMnLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBjaGFpbiIKICAgIFNlY1J1bGUgUkVRVUVTVF9IRUFERVJTOlVzZXItQWdlbnQgIkBlbmRzV2l0aCAoaW50ZXJuYWwgZHVtbXkgY29ubmVjdGlvbikiIFwKICAgICAgICAidDpub25lLFwKICAgICAgICBjaGFpbiIKICAgICAgICBTZWNSdWxlIFJFUVVFU1RfTElORSAiQHJ4IF4oPzpHRVQgL3xPUFRJT05TIFwqKSBIVFRQL1sxMl1cLlswMV0kIiBcCiAgICAgICAgICAgICJ0Om5vbmUsXAogICAgICAgICAgICBjdGw6cnVsZUVuZ2luZT1PZmYsXAogICAgICAgICAgICBjdGw6YXVkaXRFbmdpbmU9T2ZmIgo=",
-	"REQUEST-910-IP-REPUTATION.conf":                       "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",
-	"REQUEST-911-METHOD-ENFORCEMENT.conf":                  "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",
-	"REQUEST-912-DOS-PROTECTION.conf":                      "IyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KIyBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IHZlci4zLjMuNQojIENvcHlyaWdodCAoYykgMjAwNi0yMDIwIFRydXN0d2F2ZSBhbmQgY29udHJpYnV0b3JzLiBBbGwgcmlnaHRzIHJlc2VydmVkLgojIENvcHlyaWdodCAoYykgMjAyMS0yMDIzIENvcmUgUnVsZSBTZXQgcHJvamVjdC4gQWxsIHJpZ2h0cyByZXNlcnZlZC4KIwojIFRoZSBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IGlzIGRpc3RyaWJ1dGVkIHVuZGVyCiMgQXBhY2hlIFNvZnR3YXJlIExpY2Vuc2UgKEFTTCkgdmVyc2lvbiAyCiMgUGxlYXNlIHNlZSB0aGUgZW5jbG9zZWQgTElDRU5TRSBmaWxlIGZvciBmdWxsIGRldGFpbHMuCiMgLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCgojCiMgQW50aS1BdXRvbWF0aW9uIHJ1bGVzIHRvIGRldGVjdCBEZW5pYWwgb2YgU2VydmljZSBhdHRhY2tzLgojCiMgRGVzY3JpcHRpb24gb2YgbWVjaGFuaWNzOgojIFdoZW4gYSByZXF1ZXN0IGhpdHMgYSBub24tc3RhdGljIHJlc291cmNlIChUWDpTVEFUSUNfRVhURU5TSU9OUyksIHRoZW4gYSBjb3VudGVyIGZvciB0aGUgSVAKIyBhZGRyZXNzIGlzIGJlaW5nIHJhaXNlZCAoSVA6RE9TX0NPVU5URVIpLiBJZiB0aGUgY291bnRlciAoSVA6RE9TX0NPVU5URVIpIGhpdHMgYSBsaW1pdAojIChUWDpET1NfQ09VTlRFUl9USFJFU0hPTEQpLCB0aGVuIGEgYnVyc3QgaXMgaWRlbnRpZmllZCAoSVA6RE9TX0JVUlNUX0NPVU5URVIpIGFuZCB0aGUKIyBjb3VudGVyIChJUDpET1NfQ09VTlRFUikgaXMgcmVzZXQuIFRoZSBidXJzdCBjb3VudGVyIGV4cGlyZXMgd2l0aGluIGEgdGltZW91dCBwZXJpb2QKIyAoVFg6RE9TX0JVUlNUX1RJTUVfU0xJQ0UpLgojIElmIHRoZSBidXJzdCBjb3VudGVyIChJUDpET1NfQlVSU1RfQ09VTlRFUikgaXMgZ3JlYXRlciBlcXVhbCAyLCB0aGVuIHRoZSBibG9ja2luZyBmbGFnCiMgaXMgYmVpbmcgc2V0IChJUDpET1NfQkxPQ0spLiBUaGUgYmxvY2tpbmcgZmxhZyAoSVA6RE9TX0JMT0NLKSBleHBpcmVzIHdpdGhpbiBhIHRpbWVvdXQKIyBwZXJpb2QgKFRYOkRPU19CTE9DS19USU1FT1VUKS4gQWxsIHRoaXMgY291bnRpbmcgaGFwcGVucyBpbiBwaGFzZSA1LgojIFRoZXJlIGlzIGEgc3RyaWN0ZXIgc2libGluZyB0byB0aGlzIHJ1bGUgKDkxMjE3MCkgaW4gcGFyYW5vaWEgbGV2ZWwgMiwgd2hlcmUgdGhlCiMgYnVyc3QgY291bnRlciBjaGVjayAoSVA6RE9TX0JVUlNUX0NPVU5URVIpIGhpdHMgYXQgZ3JlYXRlciBlcXVhbCAxLgojCiMgVGhlIGJsb2NraW5nIGlzIGRvbmUgaW4gcGhhc2UgMTogV2hlbiB0aGUgYmxvY2tpbmcgZmxhZyBpcyBlbmNvdW50ZXJlZCAoSVA6RE9TX0JMT0NLKSwKIyB0aGVuIHRoZSByZXF1ZXN0IGlzIGRyb3BwZWQgd2l0aG91dCBzZW5kaW5nIGEgcmVzcG9uc2UuIElmIHRoaXMgaGFwcGVucywgdGhlbiBhCiMgY291bnRlciBpcyAjIHJhaXNlZCAoSVA6RE9TX0JMT0NLX0NPVU5URVIpLgojIFdoZW4gYW4gSVAgYWRkcmVzcyBpcyBibG9ja2VkIGZvciB0aGUgZmlyc3QgdGltZSwgdGhlbiB0aGUgYmxvY2tpbmcgaXMgcmVwb3J0ZWQgaW4gYQojIG1lc3NhZ2UgYW5kIGEgZmxhZyAoSVA6RE9TX0JMT0NLX0ZMQUcpIGlzIHNldC4gVGhpcyBmbGFnIGV4cGlyZXMgaW4gNjAgc2Vjb25kcy4KIyBXaGVuIGFuIElQIGFkZHJlc3MgaXMgYmxvY2tlZCBhbmQgdGhlIGZsYWcgKElQOkRPU19CTE9DS19GTEFHKSBpcyBzZXQsIHRoZW4gdGhlCiMgYmxvY2tpbmcgaXMgbm90IGJlaW5nIHJlcG9ydGVkICh0byBwcmV2ZW50IGEgZmxvb2Qgb2YgYWxlcnRzKS4gV2hlbiB0aGUgZmxhZwojIChJUDpET1NfQkxPQ0tfRkxBRykgaGFzIGV4cGlyZWQgYW5kIGEgbmV3IHJlcXVlc3QgaXMgYmVpbmcgYmxvY2tlZCwgdGhlbiB0aGUKIyBjb3VudGVyIChJUDpET1NfQkxPQ0tfQ09VTlRFUikgaXMgYmVpbmcgcmVzZXQgdG8gMCBhbmQgdGhlIGJsb2NrIGlzIGJlaW5nIHRyZWF0ZWQKIyBhcyB0aGUgZmlyc3QgYmxvY2sgKC0+IGFsZXJ0KS4KIyBJbiBvcmRlciB0byBiZSBhYmxlIHRvIGRpc3BsYXkgdGhlIGNvdW50ZXIgKElQOkRPU19CTE9DS19DT1VOVEVSKSBhbmQgcmVzZXR0aW5nCiMgaXQgYXQgdGhlIHNhbWUgdGltZSwgd2UgY29weSB0aGUgY291bnRlciAoSVA6RE9TX0JMT0NLX0NPVU5URVIpIGludG8gYSBkaWZmZXJlbnQKIyB2YXJpYWJsZSAoVFg6RE9TX0JMT0NLX0NPVU5URVIpLCB3aGljaCBpcyB0aGVuIGRpc3BsYXllZCBpbiB0dXJuLgojCiMgVmFyaWFibGVzOgojIElQOkRPU19CTE9DSyAgICAgICAgICAgICAgRmxhZyBpZiBhbiBJUCBhZGRyZXNzIHNob3VsZCBiZSBibG9ja2VkCiMgSVA6RE9TX0JMT0NLX0NPVU5URVIgICAgICBDb3VudGVyIG9mIGJsb2NrZWQgcmVxdWVzdHMKIyBJUDpET1NfQkxPQ0tfRkxBRyAgICAgICAgIEZsYWcga2VlcGluZyB0cmFjayBvZiBhbGVydC4gRmxhZyBleHBpcmVzIGFmdGVyIDYwIHNlY29uZHMuCiMgSVA6RE9TX0JVUlNUX0NPVU5URVIgICAgICBCdXJzdCBjb3VudGVyCiMgSVA6RE9TX0NPVU5URVIgICAgICAgICAgICBSZXF1ZXN0IGNvdW50ZXIgKHN0YXRpYyByZXNvdXJjZXMgYXJlIGlnbm9yZWQpCiMgVFg6RE9TX0JMT0NLX0NPVU5URVIgICAgICBDb3B5IG9mIElQOkRPU19CTE9DS19DT1VOVEVSIChuZWVkZWQgZm9yIGRpc3BsYXkgcmVhc29ucykKIyBUWDpET1NfQkxPQ0tfVElNRU9VVCAgICAgIFBlcmlvZCBpbiBzZWNvbmRzIGEgYmxvY2tlZCBJUCB3aWxsIGJlIGJsb2NrZWQKIyBUWDpET1NfQ09VTlRFUl9USFJFU0hPTEQgIExpbWl0IG9mIHJlcXVlc3RzLCB3aGVyZSBhIGJ1cnN0IGlzIGlkZW50aWZpZWQKIyBUWDpET1NfQlVSU1RfVElNRV9TTElDRSAgIFBlcmlvZCBpbiBzZWNvbmRzIHdoZW4gd2Ugd2lsbCBmb3JnZXQgYSBidXJzdAojIFRYOlNUQVRJQ19FWFRFTlNJT05TICAgICAgUGF0aHMgd2hpY2ggY2FuIGJlIGlnbm9yZWQgd2l0aCByZWdhcmRzIHRvIERvUwojCiMgQXMgYSBwcmVjb25kaXRpb24gZm9yIHRoZXNlIHJ1bGVzLCBwbGVhc2Ugc2V0IHRoZSBmb2xsb3dpbmcgdGhyZWUgdmFyaWFibGVzOgojICAtIFRYOkRPU19CTE9DS19USU1FT1VUCiMgIC0gVFg6RE9TX0NPVU5URVJfVEhSRVNIT0xECiMgIC0gVFg6RE9TX0JVUlNUX1RJTUVfU0xJQ0UKIwojIEFuZCBtYWtlIHN1cmUgdGhhdCBUWDpTVEFUSUNfRVhURU5TSU9OUyBpcyBhbHNvIHNldC4KIwoKIwojIC09IFBhcmFub2lhIExldmVsIDAgKGVtcHR5KSA9LSAoYXBwbHkgdW5jb25kaXRpb25hbGx5KQojCgojCiMgU2tpcCBpZiB2YXJpYWJsZXMgZGVmaW5pbmcgRG9TIHByb3RlY3Rpb24gYXJlIG5vdCBzZXQKIwpTZWNSdWxlICZUWDpkb3NfYnVyc3RfdGltZV9zbGljZSAiQGVxIDAiIFwKICAgICJpZDo5MTIxMDAsXAogICAgcGhhc2U6MSxcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBub2xvZyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgY2hhaW4sXAogICAgc2tpcEFmdGVyOkVORC1ET1MtUFJPVEVDVElPTi1DSEVDS1MiCiAgICBTZWNSdWxlICZUWDpkb3NfY291bnRlcl90aHJlc2hvbGQgIkBlcSAwIiBcCiAgICAgICAgImNoYWluIgogICAgICAgIFNlY1J1bGUgJlRYOmRvc19ibG9ja190aW1lb3V0ICJAZXEgMCIKClNlY1J1bGUgJlRYOmRvc19idXJzdF90aW1lX3NsaWNlICJAZXEgMCIgXAogICAgImlkOjkxMjExMCxcCiAgICBwaGFzZTo1LFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBjaGFpbixcCiAgICBza2lwQWZ0ZXI6RU5ELURPUy1QUk9URUNUSU9OLUNIRUNLUyIKICAgIFNlY1J1bGUgJlRYOmRvc19jb3VudGVyX3RocmVzaG9sZCAiQGVxIDAiIFwKICAgICAgICAiY2hhaW4iCiAgICAgICAgU2VjUnVsZSAmVFg6ZG9zX2Jsb2NrX3RpbWVvdXQgIkBlcSAwIgoKClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgMSIgImlkOjkxMjAxMSxwaGFzZToxLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTkxMi1ET1MtUFJPVEVDVElPTiIKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAxIiAiaWQ6OTEyMDEyLHBoYXNlOjIscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTEyLURPUy1QUk9URUNUSU9OIgojCiMgLT0gUGFyYW5vaWEgTGV2ZWwgMSAoZGVmYXVsdCkgPS0gKGFwcGx5IG9ubHkgd2hlbiB0eC5leGVjdXRpbmdfcGFyYW5vaWFfbGV2ZWwgaXMgc3VmZmljaWVudGx5IGhpZ2g6IDEgb3IgaGlnaGVyKQojCgojCiMgLT1bIEFudGktQXV0b21hdGlvbiAvIERvUyBQcm90ZWN0aW9uIDogQmxvY2sgXT0tCiMKCiMKIyBCbG9jayBhbmQgdHJhY2sgIyBvZiByZXF1ZXN0cyBhbmQgbG9nCiMKU2VjUnVsZSBJUDpET1NfQkxPQ0sgIkBlcSAxIiBcCiAgICAiaWQ6OTEyMTIwLFwKICAgIHBoYXNlOjEsXAogICAgZHJvcCxcCiAgICBtc2c6J0RlbmlhbCBvZiBTZXJ2aWNlIChEb1MpIGF0dGFjayBpZGVudGlmaWVkIGZyb20gJXt0eC5yZWFsX2lwfSAoJXt0eC5kb3NfYmxvY2tfY291bnRlcn0gaGl0cyBzaW5jZSBsYXN0IGFsZXJ0KScsXAogICAgdGFnOidhcHBsaWNhdGlvbi1tdWx0aScsXAogICAgdGFnOidsYW5ndWFnZS1tdWx0aScsXAogICAgdGFnOidwbGF0Zm9ybS1tdWx0aScsXAogICAgdGFnOidwYXJhbm9pYS1sZXZlbC8xJyxcCiAgICB0YWc6J2F0dGFjay1kb3MnLFwKICAgIHRhZzonT1dBU1BfQ1JTJyxcCiAgICB0YWc6J2NhcGVjLzEwMDAvMjEwLzIyNy80NjknLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBjaGFpbiIKICAgIFNlY1J1bGUgJklQOkRPU19CTE9DS19GTEFHICJAZXEgMCIgXAogICAgICAgICJzZXR2YXI6J2lwLmRvc19ibG9ja19jb3VudGVyPSsxJyxcCiAgICAgICAgc2V0dmFyOidpcC5kb3NfYmxvY2tfZmxhZz0xJyxcCiAgICAgICAgc2V0dmFyOid0eC5kb3NfYmxvY2tfY291bnRlcj0le2lwLmRvc19ibG9ja19jb3VudGVyfScsXAogICAgICAgIHNldHZhcjonaXAuZG9zX2Jsb2NrX2NvdW50ZXI9MCcsXAogICAgICAgIGV4cGlyZXZhcjonaXAuZG9zX2Jsb2NrX2ZsYWc9NjAnIgoKCiMKIyBCbG9jayBhbmQgdHJhY2sgIyBvZiByZXF1ZXN0cyBidXQgZG9uJ3QgbG9nCiMKU2VjUnVsZSBJUDpET1NfQkxPQ0sgIkBlcSAxIiBcCiAgICAiaWQ6OTEyMTMwLFwKICAgIHBoYXNlOjEsXAogICAgZHJvcCxcCiAgICB0Om5vbmUsXAogICAgbm9sb2csXAogICAgdGFnOidhcHBsaWNhdGlvbi1tdWx0aScsXAogICAgdGFnOidsYW5ndWFnZS1tdWx0aScsXAogICAgdGFnOidwbGF0Zm9ybS1tdWx0aScsXAogICAgdGFnOidhdHRhY2stZG9zJyxcCiAgICB0YWc6J09XQVNQX0NSUycsXAogICAgdGFnOidjYXBlYy8xMDAwLzIxMC8yMjcvNDY5JyxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgc2V0dmFyOidpcC5kb3NfYmxvY2tfY291bnRlcj0rMSciCgoKIwojIC09WyBBbnRpLUF1dG9tYXRpb24gLyBEb1MgUHJvdGVjdGlvbjogQ291bnQgcmVxdWVzdHMgXT0tCiMKCiMKIyBTa2lwIGlmIHdlIGhhdmUgYmxvY2tlZCB0aGUgcmVxdWVzdAojClNlY1J1bGUgSVA6RE9TX0JMT0NLICJAZXEgMSIgXAogICAgImlkOjkxMjE0MCxcCiAgICBwaGFzZTo1LFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIHRhZzonYXBwbGljYXRpb24tbXVsdGknLFwKICAgIHRhZzonbGFuZ3VhZ2UtbXVsdGknLFwKICAgIHRhZzoncGxhdGZvcm0tbXVsdGknLFwKICAgIHRhZzonYXR0YWNrLWRvcycsXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIHNraXBBZnRlcjpFTkQtRE9TLVBST1RFQ1RJT04tQ0hFQ0tTIgoKCiMKIyBET1MgQ291bnRlcjogQ291bnQgdGhlIG51bWJlciBvZiByZXF1ZXN0cyB0byBub24tc3RhdGljIHJlc291cmNlcwojClNlY1J1bGUgUkVRVUVTVF9CQVNFTkFNRSAiQHJ4IC4qPyhcLlthLXowLTldezEsMTB9KT8kIiBcCiAgICAiaWQ6OTEyMTUwLFwKICAgIHBoYXNlOjUsXAogICAgcGFzcyxcCiAgICBjYXB0dXJlLFwKICAgIHQ6bm9uZSx0Omxvd2VyY2FzZSxcCiAgICBub2xvZyxcCiAgICB0YWc6J2FwcGxpY2F0aW9uLW11bHRpJyxcCiAgICB0YWc6J2xhbmd1YWdlLW11bHRpJyxcCiAgICB0YWc6J3BsYXRmb3JtLW11bHRpJyxcCiAgICB0YWc6J2F0dGFjay1kb3MnLFwKICAgIHRhZzonT1dBU1BfQ1JTJyxcCiAgICB0YWc6J2NhcGVjLzEwMDAvMjEwLzIyNy80NjknLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBzZXR2YXI6J3R4LmV4dGVuc2lvbj0vJXtUWC4xfS8nLFwKICAgIGNoYWluIgogICAgU2VjUnVsZSBUWDpFWFRFTlNJT04gIiFAd2l0aGluICV7dHguc3RhdGljX2V4dGVuc2lvbnN9IiBcCiAgICAgICAgInNldHZhcjonaXAuZG9zX2NvdW50ZXI9KzEnIgoKCiMKIyBDaGVjayBET1MgQ291bnRlcgojIElmIHRoZSByZXF1ZXN0IGNvdW50IGlzIGdyZWF0ZXIgdGhhbiBvciBlcXVhbCB0byB1c2VyIHNldHRpbmdzLAojIHdlIHJhaXNlIHRoZSBidXJzdCBjb3VudGVyLiBUaGlzIGhhcHBlbnMgdmlhIHR3byBzZXBhcmF0ZSBydWxlczoKIyAtIDkxMjE2MDogcmFpc2UgZnJvbSAwIHRvIDEKIyAtIDkxMjE2MTogcmFpc2UgZnJvbSAxIHRvIDIKIwojIFRoaXMgYXBwcm9hY2ggd2l0aCB0d28gcnVsZXMgYXZvaWRzIHJhaXNpbmcgdGhlIGJ1cnN0IGNvdW50ZXIKIyBmcm9tIDAgdG8gMiB2aWEgdHdvIGNvbmN1cnJlbnQgcmVxdWVzdHMuIFdlIGRvIG5vdCByYWlzZSB0aGUKIyBidXJzdCBjb3VudGVyIGJleW9uZCAyLgojCiMKU2VjUnVsZSBJUDpET1NfQ09VTlRFUiAiQGdlICV7dHguZG9zX2NvdW50ZXJfdGhyZXNob2xkfSIgXAogICAgImlkOjkxMjE2MCxcCiAgICBwaGFzZTo1LFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIHRhZzonYXBwbGljYXRpb24tbXVsdGknLFwKICAgIHRhZzonbGFuZ3VhZ2UtbXVsdGknLFwKICAgIHRhZzoncGxhdGZvcm0tbXVsdGknLFwKICAgIHRhZzonYXR0YWNrLWRvcycsXAogICAgdGFnOidPV0FTUF9DUlMnLFwKICAgIHRhZzonY2FwZWMvMTAwMC8yMTAvMjI3LzQ2OScsXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIGNoYWluIgogICAgU2VjUnVsZSAmSVA6RE9TX0JVUlNUX0NPVU5URVIgIkBlcSAwIiBcCiAgICAgICAgInNldHZhcjonaXAuZG9zX2J1cnN0X2NvdW50ZXI9MScsXAogICAgICAgIHNldHZhcjonIWlwLmRvc19jb3VudGVyJyxcCiAgICAgICAgZXhwaXJldmFyOidpcC5kb3NfYnVyc3RfY291bnRlcj0le3R4LmRvc19idXJzdF90aW1lX3NsaWNlfSciCgoKU2VjUnVsZSBJUDpET1NfQ09VTlRFUiAiQGdlICV7dHguZG9zX2NvdW50ZXJfdGhyZXNob2xkfSIgXAogICAgImlkOjkxMjE2MSxcCiAgICBwaGFzZTo1LFwKICAgIHBhc3MsXAogICAgdDpub25lLFwKICAgIG5vbG9nLFwKICAgIHRhZzonYXBwbGljYXRpb24tbXVsdGknLFwKICAgIHRhZzonbGFuZ3VhZ2UtbXVsdGknLFwKICAgIHRhZzoncGxhdGZvcm0tbXVsdGknLFwKICAgIHRhZzonYXR0YWNrLWRvcycsXAogICAgdGFnOidPV0FTUF9DUlMnLFwKICAgIHRhZzonY2FwZWMvMTAwMC8yMTAvMjI3LzQ2OScsXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIGNoYWluIgogICAgU2VjUnVsZSAmSVA6RE9TX0JVUlNUX0NPVU5URVIgIkBnZSAxIiBcCiAgICAgICAgInNldHZhcjonaXAuZG9zX2J1cnN0X2NvdW50ZXI9MicsXAogICAgICAgIHNldHZhcjonIWlwLmRvc19jb3VudGVyJyxcCiAgICAgICAgZXhwaXJldmFyOidpcC5kb3NfYnVyc3RfY291bnRlcj0le3R4LmRvc19idXJzdF90aW1lX3NsaWNlfSciCgoKIwojIENoZWNrIERPUyBCdXJzdCBDb3VudGVyIGFuZCBzZXQgQmxvY2sKIyBDaGVjayB0aGUgYnVyc3QgY291bnRlciAtIGlmIGdyZWF0ZXIgdGhhbiBvciBlcXVhbCB0byAyLCB0aGVuIHdlIHNldCB0aGUgSVAKIyBibG9jayB2YXJpYWJsZSBmb3IgYSBnaXZlbiBleHBpcnkgYW5kIGlzc3VlIGFuIGFsZXJ0LgojClNlY1J1bGUgSVA6RE9TX0JVUlNUX0NPVU5URVIgIkBnZSAyIiBcCiAgICAiaWQ6OTEyMTcwLFwKICAgIHBoYXNlOjUsXAogICAgcGFzcyxcCiAgICB0Om5vbmUsXAogICAgbG9nLFwKICAgIG1zZzonUG90ZW50aWFsIERlbmlhbCBvZiBTZXJ2aWNlIChEb1MpIEF0dGFjayBmcm9tICV7dHgucmVhbF9pcH0gLSAjIG9mIFJlcXVlc3QgQnVyc3RzOiAle2lwLmRvc19idXJzdF9jb3VudGVyfScsXAogICAgdGFnOidhcHBsaWNhdGlvbi1tdWx0aScsXAogICAgdGFnOidsYW5ndWFnZS1tdWx0aScsXAogICAgdGFnOidwbGF0Zm9ybS1tdWx0aScsXAogICAgdGFnOidwYXJhbm9pYS1sZXZlbC8xJyxcCiAgICB0YWc6J2F0dGFjay1kb3MnLFwKICAgIHRhZzonT1dBU1BfQ1JTJyxcCiAgICB0YWc6J2NhcGVjLzEwMDAvMjEwLzIyNy80NjknLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBzZXR2YXI6J2lwLmRvc19ibG9jaz0xJyxcCiAgICBleHBpcmV2YXI6J2lwLmRvc19ibG9jaz0le3R4LmRvc19ibG9ja190aW1lb3V0fSciCgoKClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgMiIgImlkOjkxMjAxMyxwaGFzZToxLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTkxMi1ET1MtUFJPVEVDVElPTiIKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAyIiAiaWQ6OTEyMDE0LHBoYXNlOjIscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTEyLURPUy1QUk9URUNUSU9OIgpTZWNSdWxlIFRYOkVYRUNVVElOR19QQVJBTk9JQV9MRVZFTCAiQGx0IDIiICJpZDo5MTIwMTkscGhhc2U6NSxwYXNzLG5vbG9nLHNraXBBZnRlcjpFTkQtUkVRVUVTVC05MTItRE9TLVBST1RFQ1RJT04iCiMKIyAtPSBQYXJhbm9pYSBMZXZlbCAyID0tIChhcHBseSBvbmx5IHdoZW4gdHguZXhlY3V0aW5nX3BhcmFub2lhX2xldmVsIGlzIHN1ZmZpY2llbnRseSBoaWdoOiAyIG9yIGhpZ2hlcikKIwoKIwojIENoZWNrIERPUyBCdXJzdCBDb3VudGVyIGFuZCBzZXQgQmxvY2sKIyBDaGVjayB0aGUgYnVyc3QgY291bnRlciAtIGlmIGdyZWF0ZXIgdGhhbiBvciBlcXVhbCB0byAxLCB0aGVuIHdlIHNldCB0aGUgSVAKIyBibG9jayB2YXJpYWJsZSBmb3IgYSBnaXZlbiBleHBpcnkgYW5kIGlzc3VlIGFuIGFsZXJ0LgojCiMgVGhpcyBpcyBhIHN0cmljdGVyIHNpYmxpbmcgb2YgcnVsZSA5MTIxNzAuCiMKU2VjUnVsZSBJUDpET1NfQlVSU1RfQ09VTlRFUiAiQGdlIDEiIFwKICAgICJpZDo5MTIxNzEsXAogICAgcGhhc2U6NSxcCiAgICBwYXNzLFwKICAgIHQ6bm9uZSxcCiAgICBsb2csXAogICAgbXNnOidQb3RlbnRpYWwgRGVuaWFsIG9mIFNlcnZpY2UgKERvUykgQXR0YWNrIGZyb20gJXt0eC5yZWFsX2lwfSAtICMgb2YgUmVxdWVzdCBCdXJzdHM6ICV7aXAuZG9zX2J1cnN0X2NvdW50ZXJ9JyxcCiAgICB0YWc6J2FwcGxpY2F0aW9uLW11bHRpJyxcCiAgICB0YWc6J2xhbmd1YWdlLW11bHRpJyxcCiAgICB0YWc6J3BsYXRmb3JtLW11bHRpJyxcCiAgICB0YWc6J2F0dGFjay1kb3MnLFwKICAgIHRhZzoncGFyYW5vaWEtbGV2ZWwvMicsXAogICAgdGFnOidPV0FTUF9DUlMnLFwKICAgIHRhZzonY2FwZWMvMTAwMC8yMTAvMjI3LzQ2OScsXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIHNldHZhcjonaXAuZG9zX2Jsb2NrPTEnLFwKICAgIGV4cGlyZXZhcjonaXAuZG9zX2Jsb2NrPSV7dHguZG9zX2Jsb2NrX3RpbWVvdXR9JyIKCgoKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAzIiAiaWQ6OTEyMDE1LHBoYXNlOjEscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTEyLURPUy1QUk9URUNUSU9OIgpTZWNSdWxlIFRYOkVYRUNVVElOR19QQVJBTk9JQV9MRVZFTCAiQGx0IDMiICJpZDo5MTIwMTYscGhhc2U6MixwYXNzLG5vbG9nLHNraXBBZnRlcjpFTkQtUkVRVUVTVC05MTItRE9TLVBST1RFQ1RJT04iCiMKIyAtPSBQYXJhbm9pYSBMZXZlbCAzID0tIChhcHBseSBvbmx5IHdoZW4gdHguZXhlY3V0aW5nX3BhcmFub2lhX2xldmVsIGlzIHN1ZmZpY2llbnRseSBoaWdoOiAzIG9yIGhpZ2hlcikKIwoKCgpTZWNSdWxlIFRYOkVYRUNVVElOR19QQVJBTk9JQV9MRVZFTCAiQGx0IDQiICJpZDo5MTIwMTcscGhhc2U6MSxwYXNzLG5vbG9nLHNraXBBZnRlcjpFTkQtUkVRVUVTVC05MTItRE9TLVBST1RFQ1RJT04iClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgNCIgImlkOjkxMjAxOCxwaGFzZToyLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTkxMi1ET1MtUFJPVEVDVElPTiIKIwojIC09IFBhcmFub2lhIExldmVsIDQgPS0gKGFwcGx5IG9ubHkgd2hlbiB0eC5leGVjdXRpbmdfcGFyYW5vaWFfbGV2ZWwgaXMgc3VmZmljaWVudGx5IGhpZ2g6IDQgb3IgaGlnaGVyKQojCgoKCiMKIyAtPSBQYXJhbm9pYSBMZXZlbHMgRmluaXNoZWQgPS0KIwpTZWNNYXJrZXIgIkVORC1SRVFVRVNULTkxMi1ET1MtUFJPVEVDVElPTiIKClNlY01hcmtlciAiRU5ELURPUy1QUk9URUNUSU9OLUNIRUNLUyIK",
-	"REQUEST-913-SCANNER-DETECTION.conf":                   "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",
-	"REQUEST-920-PROTOCOL-ENFORCEMENT.conf":                "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",
-	"REQUEST-921-PROTOCOL-ATTACK.conf":                     "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",
-	"REQUEST-922-MULTIPART-ATTACK.conf":                    "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",
-	"REQUEST-930-APPLICATION-ATTACK-LFI.conf":              "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",
-	"REQUEST-931-APPLICATION-ATTACK-RFI.conf":              "IyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KIyBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IHZlci4zLjMuNQojIENvcHlyaWdodCAoYykgMjAwNi0yMDIwIFRydXN0d2F2ZSBhbmQgY29udHJpYnV0b3JzLiBBbGwgcmlnaHRzIHJlc2VydmVkLgojIENvcHlyaWdodCAoYykgMjAyMS0yMDIzIENvcmUgUnVsZSBTZXQgcHJvamVjdC4gQWxsIHJpZ2h0cyByZXNlcnZlZC4KIwojIFRoZSBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IGlzIGRpc3RyaWJ1dGVkIHVuZGVyCiMgQXBhY2hlIFNvZnR3YXJlIExpY2Vuc2UgKEFTTCkgdmVyc2lvbiAyCiMgUGxlYXNlIHNlZSB0aGUgZW5jbG9zZWQgTElDRU5TRSBmaWxlIGZvciBmdWxsIGRldGFpbHMuCiMgLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCiMKIyBSRkkgQXR0YWNrcwojCgojCiMgLT0gUGFyYW5vaWEgTGV2ZWwgMCAoZW1wdHkpID0tIChhcHBseSB1bmNvbmRpdGlvbmFsbHkpCiMKCgoKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAxIiAiaWQ6OTMxMDExLHBoYXNlOjEscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTMxLUFQUExJQ0FUSU9OLUFUVEFDSy1SRkkiClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgMSIgImlkOjkzMTAxMixwaGFzZToyLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTkzMS1BUFBMSUNBVElPTi1BVFRBQ0stUkZJIgojCiMgLT0gUGFyYW5vaWEgTGV2ZWwgMSAoZGVmYXVsdCkgPS0gKGFwcGx5IG9ubHkgd2hlbiB0eC5leGVjdXRpbmdfcGFyYW5vaWFfbGV2ZWwgaXMgc3VmZmljaWVudGx5IGhpZ2g6IDEgb3IgaGlnaGVyKQojCgojIC09WyBSdWxlIExvZ2ljIF09LQojIFRoZXNlIHJ1bGVzIGxvb2sgZm9yIGNvbW1vbiB0eXBlcyBvZiBSZW1vdGUgRmlsZSBJbmNsdXNpb24gKFJGSSkgYXR0YWNrIG1ldGhvZHMuCiMJLSBVUkwgQ29udGFpbnMgYW4gSVAgQWRkcmVzcwojCS0gVGhlIFBIUCAiaW5jbHVkZSgpIiBGdW5jdGlvbgojCS0gUkZJIERhdGEgRW5kcyB3aXRoIFF1ZXN0aW9uIE1hcmsocykgKD8pCiMJLSBSRkkgSG9zdCBEb2Vzbid0IE1hdGNoIExvY2FsIEhvc3QKIwojIC09WyBSZWZlcmVuY2VzIF09LQojIGh0dHA6Ly9wcm9qZWN0cy53ZWJhcHBzZWMub3JnL1JlbW90ZS1GaWxlLUluY2x1c2lvbgojIGh0dHA6Ly90YWN0aWNhbHdlYmFwcHNlYy5ibG9nc3BvdC5jb20vMjAwOS8wNi9nZW5lcmljLXJlbW90ZS1maWxlLWluY2x1c2lvbi1hdHRhY2suaHRtbAojClNlY1J1bGUgQVJHUyAiQHJ4IF4oP2k6ZmlsZXxmdHBzP3xodHRwcz8pOlwvXC8oPzpcZHsxLDN9XC5cZHsxLDN9XC5cZHsxLDN9XC5cZHsxLDN9KSIgXAogICAgImlkOjkzMTEwMCxcCiAgICBwaGFzZToyLFwKICAgIGJsb2NrLFwKICAgIGNhcHR1cmUsXAogICAgdDpub25lLFwKICAgIG1zZzonUG9zc2libGUgUmVtb3RlIEZpbGUgSW5jbHVzaW9uIChSRkkpIEF0dGFjazogVVJMIFBhcmFtZXRlciB1c2luZyBJUCBBZGRyZXNzJyxcCiAgICBsb2dkYXRhOidNYXRjaGVkIERhdGE6ICV7VFguMH0gZm91bmQgd2l0aGluICV7TUFUQ0hFRF9WQVJfTkFNRX06ICV7TUFUQ0hFRF9WQVJ9JyxcCiAgICB0YWc6J2FwcGxpY2F0aW9uLW11bHRpJyxcCiAgICB0YWc6J2xhbmd1YWdlLW11bHRpJyxcCiAgICB0YWc6J3BsYXRmb3JtLW11bHRpJyxcCiAgICB0YWc6J2F0dGFjay1yZmknLFwKICAgIHRhZzoncGFyYW5vaWEtbGV2ZWwvMScsXAogICAgdGFnOidPV0FTUF9DUlMnLFwKICAgIHRhZzonY2FwZWMvMTAwMC8xNTIvMTc1LzI1MycsXAogICAgY3RsOmF1ZGl0TG9nUGFydHM9K0UsXAogICAgdmVyOidPV0FTUF9DUlMvMy4zLjUnLFwKICAgIHNldmVyaXR5OidDUklUSUNBTCcsXAogICAgc2V0dmFyOid0eC5yZmlfc2NvcmU9KyV7dHguY3JpdGljYWxfYW5vbWFseV9zY29yZX0nLFwKICAgIHNldHZhcjondHguYW5vbWFseV9zY29yZV9wbDE9KyV7dHguY3JpdGljYWxfYW5vbWFseV9zY29yZX0nIgoKU2VjUnVsZSBRVUVSWV9TVFJJTkd8UkVRVUVTVF9CT0RZICJAcnggKD9pKSg/OlxiaW5jbHVkZVxzKlwoW14pXSp8bW9zQ29uZmlnX2Fic29sdXRlX3BhdGh8X0NPTkZcW3BhdGhcXXxfU0VSVkVSXFtET0NVTUVOVF9ST09UXF18R0FMTEVSWV9CQVNFRElSfHBhdGhcW2RvY3Jvb3RcXXxhcHBzZXJ2X3Jvb3R8Y29uZmlnXFtyb290X2RpclxdKT0oPzpmaWxlfGZ0cHM/fGh0dHBzPyk6XC9cLyIgXAogICAgImlkOjkzMTExMCxcCiAgICBwaGFzZToyLFwKICAgIGJsb2NrLFwKICAgIGNhcHR1cmUsXAogICAgdDpub25lLHQ6dXJsRGVjb2RlVW5pLFwKICAgIG1zZzonUG9zc2libGUgUmVtb3RlIEZpbGUgSW5jbHVzaW9uIChSRkkpIEF0dGFjazogQ29tbW9uIFJGSSBWdWxuZXJhYmxlIFBhcmFtZXRlciBOYW1lIHVzZWQgdy9VUkwgUGF5bG9hZCcsXAogICAgbG9nZGF0YTonTWF0Y2hlZCBEYXRhOiAle1RYLjB9IGZvdW5kIHdpdGhpbiAle01BVENIRURfVkFSX05BTUV9OiAle01BVENIRURfVkFSfScsXAogICAgdGFnOidhcHBsaWNhdGlvbi1tdWx0aScsXAogICAgdGFnOidsYW5ndWFnZS1tdWx0aScsXAogICAgdGFnOidwbGF0Zm9ybS1tdWx0aScsXAogICAgdGFnOidhdHRhY2stcmZpJyxcCiAgICB0YWc6J3BhcmFub2lhLWxldmVsLzEnLFwKICAgIHRhZzonT1dBU1BfQ1JTJyxcCiAgICB0YWc6J2NhcGVjLzEwMDAvMTUyLzE3NS8yNTMnLFwKICAgIGN0bDphdWRpdExvZ1BhcnRzPStFLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBzZXZlcml0eTonQ1JJVElDQUwnLFwKICAgIHNldHZhcjondHgucmZpX3Njb3JlPSsle3R4LmNyaXRpY2FsX2Fub21hbHlfc2NvcmV9JyxcCiAgICBzZXR2YXI6J3R4LmFub21hbHlfc2NvcmVfcGwxPSsle3R4LmNyaXRpY2FsX2Fub21hbHlfc2NvcmV9JyIKClNlY1J1bGUgQVJHUyAiQHJ4IF4oP2k6ZmlsZXxmdHBzP3xodHRwcz8pLio/XD8rJCIgXAogICAgImlkOjkzMTEyMCxcCiAgICBwaGFzZToyLFwKICAgIGJsb2NrLFwKICAgIGNhcHR1cmUsXAogICAgdDpub25lLFwKICAgIG1zZzonUG9zc2libGUgUmVtb3RlIEZpbGUgSW5jbHVzaW9uIChSRkkpIEF0dGFjazogVVJMIFBheWxvYWQgVXNlZCB3L1RyYWlsaW5nIFF1ZXN0aW9uIE1hcmsgQ2hhcmFjdGVyICg/KScsXAogICAgbG9nZGF0YTonTWF0Y2hlZCBEYXRhOiAle1RYLjB9IGZvdW5kIHdpdGhpbiAle01BVENIRURfVkFSX05BTUV9OiAle01BVENIRURfVkFSfScsXAogICAgdGFnOidhcHBsaWNhdGlvbi1tdWx0aScsXAogICAgdGFnOidsYW5ndWFnZS1tdWx0aScsXAogICAgdGFnOidwbGF0Zm9ybS1tdWx0aScsXAogICAgdGFnOidhdHRhY2stcmZpJyxcCiAgICB0YWc6J3BhcmFub2lhLWxldmVsLzEnLFwKICAgIHRhZzonT1dBU1BfQ1JTJyxcCiAgICB0YWc6J2NhcGVjLzEwMDAvMTUyLzE3NS8yNTMnLFwKICAgIGN0bDphdWRpdExvZ1BhcnRzPStFLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBzZXZlcml0eTonQ1JJVElDQUwnLFwKICAgIHNldHZhcjondHgucmZpX3Njb3JlPSsle3R4LmNyaXRpY2FsX2Fub21hbHlfc2NvcmV9JyxcCiAgICBzZXR2YXI6J3R4LmFub21hbHlfc2NvcmVfcGwxPSsle3R4LmNyaXRpY2FsX2Fub21hbHlfc2NvcmV9JyIKCgoKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAyIiAiaWQ6OTMxMDEzLHBoYXNlOjEscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTMxLUFQUExJQ0FUSU9OLUFUVEFDSy1SRkkiClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgMiIgImlkOjkzMTAxNCxwaGFzZToyLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTkzMS1BUFBMSUNBVElPTi1BVFRBQ0stUkZJIgojCiMgLT0gUGFyYW5vaWEgTGV2ZWwgMiA9LSAoYXBwbHkgb25seSB3aGVuIHR4LmV4ZWN1dGluZ19wYXJhbm9pYV9sZXZlbCBpcyBzdWZmaWNpZW50bHkgaGlnaDogMiBvciBoaWdoZXIpCiMKClNlY1J1bGUgQVJHUyAiQHJ4IF4oP2k6ZmlsZXxmdHBzP3xodHRwcz8pOi8vKFteL10qKS4qJCIgXAogICAgImlkOjkzMTEzMCxcCiAgICBwaGFzZToyLFwKICAgIGJsb2NrLFwKICAgIGNhcHR1cmUsXAogICAgdDpub25lLFwKICAgIG1zZzonUG9zc2libGUgUmVtb3RlIEZpbGUgSW5jbHVzaW9uIChSRkkpIEF0dGFjazogT2ZmLURvbWFpbiBSZWZlcmVuY2UvTGluaycsXAogICAgbG9nZGF0YTonTWF0Y2hlZCBEYXRhOiAle1RYLjB9IGZvdW5kIHdpdGhpbiAle01BVENIRURfVkFSX05BTUV9OiAle01BVENIRURfVkFSfScsXAogICAgdGFnOidhcHBsaWNhdGlvbi1tdWx0aScsXAogICAgdGFnOidsYW5ndWFnZS1tdWx0aScsXAogICAgdGFnOidwbGF0Zm9ybS1tdWx0aScsXAogICAgdGFnOidhdHRhY2stcmZpJyxcCiAgICB0YWc6J09XQVNQX0NSUycsXAogICAgdGFnOidjYXBlYy8xMDAwLzE1Mi8xNzUvMjUzJyxcCiAgICB0YWc6J3BhcmFub2lhLWxldmVsLzInLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBzZXZlcml0eTonQ1JJVElDQUwnLFwKICAgIHNldHZhcjondHgucmZpX3BhcmFtZXRlcl8le01BVENIRURfVkFSX05BTUV9PS4le3R4LjF9JyxcCiAgICBjaGFpbiIKICAgIFNlY1J1bGUgVFg6L3JmaV9wYXJhbWV0ZXJfLiovICIhQGVuZHNXaXRoIC4le3JlcXVlc3RfaGVhZGVycy5ob3N0fSIgXAogICAgICAgICJjdGw6YXVkaXRMb2dQYXJ0cz0rRSxcCiAgICAgICAgc2V0dmFyOid0eC5yZmlfc2NvcmU9KyV7dHguY3JpdGljYWxfYW5vbWFseV9zY29yZX0nLFwKICAgICAgICBzZXR2YXI6J3R4LmFub21hbHlfc2NvcmVfcGwyPSsle3R4LmNyaXRpY2FsX2Fub21hbHlfc2NvcmV9JyIKCgoKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAzIiAiaWQ6OTMxMDE1LHBoYXNlOjEscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTMxLUFQUExJQ0FUSU9OLUFUVEFDSy1SRkkiClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgMyIgImlkOjkzMTAxNixwaGFzZToyLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTkzMS1BUFBMSUNBVElPTi1BVFRBQ0stUkZJIgojCiMgLT0gUGFyYW5vaWEgTGV2ZWwgMyA9LSAoYXBwbHkgb25seSB3aGVuIHR4LmV4ZWN1dGluZ19wYXJhbm9pYV9sZXZlbCBpcyBzdWZmaWNpZW50bHkgaGlnaDogMyBvciBoaWdoZXIpCiMKCgoKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCA0IiAiaWQ6OTMxMDE3LHBoYXNlOjEscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTMxLUFQUExJQ0FUSU9OLUFUVEFDSy1SRkkiClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgNCIgImlkOjkzMTAxOCxwaGFzZToyLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTkzMS1BUFBMSUNBVElPTi1BVFRBQ0stUkZJIgojCiMgLT0gUGFyYW5vaWEgTGV2ZWwgNCA9LSAoYXBwbHkgb25seSB3aGVuIHR4LmV4ZWN1dGluZ19wYXJhbm9pYV9sZXZlbCBpcyBzdWZmaWNpZW50bHkgaGlnaDogNCBvciBoaWdoZXIpCiMKCgoKIwojIC09IFBhcmFub2lhIExldmVscyBGaW5pc2hlZCA9LQojClNlY01hcmtlciAiRU5ELVJFUVVFU1QtOTMxLUFQUExJQ0FUSU9OLUFUVEFDSy1SRkkiCg==",
-	"REQUEST-932-APPLICATION-ATTACK-RCE.conf":              "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",
-	"REQUEST-933-APPLICATION-ATTACK-PHP.conf":              "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",
-	"REQUEST-934-APPLICATION-ATTACK-NODEJS.conf":           "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",
-	"REQUEST-941-APPLICATION-ATTACK-XSS.conf":              "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",
-	"REQUEST-942-APPLICATION-ATTACK-SQLI.conf":             "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",
-	"REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf": "IyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KIyBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IHZlci4zLjMuNQojIENvcHlyaWdodCAoYykgMjAwNi0yMDIwIFRydXN0d2F2ZSBhbmQgY29udHJpYnV0b3JzLiBBbGwgcmlnaHRzIHJlc2VydmVkLgojIENvcHlyaWdodCAoYykgMjAyMS0yMDIzIENvcmUgUnVsZSBTZXQgcHJvamVjdC4gQWxsIHJpZ2h0cyByZXNlcnZlZC4KIwojIFRoZSBPV0FTUCBNb2RTZWN1cml0eSBDb3JlIFJ1bGUgU2V0IGlzIGRpc3RyaWJ1dGVkIHVuZGVyCiMgQXBhY2hlIFNvZnR3YXJlIExpY2Vuc2UgKEFTTCkgdmVyc2lvbiAyCiMgUGxlYXNlIHNlZSB0aGUgZW5jbG9zZWQgTElDRU5TRSBmaWxlIGZvciBmdWxsIGRldGFpbHMuCiMgLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCgojCiMgLT0gUGFyYW5vaWEgTGV2ZWwgMCAoZW1wdHkpID0tIChhcHBseSB1bmNvbmRpdGlvbmFsbHkpCiMKCgoKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAxIiAiaWQ6OTQzMDExLHBoYXNlOjEscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTQzLUFQUExJQ0FUSU9OLUFUVEFDSy1TRVNTSU9OLUZJWEFUSU9OIgpTZWNSdWxlIFRYOkVYRUNVVElOR19QQVJBTk9JQV9MRVZFTCAiQGx0IDEiICJpZDo5NDMwMTIscGhhc2U6MixwYXNzLG5vbG9nLHNraXBBZnRlcjpFTkQtUkVRVUVTVC05NDMtQVBQTElDQVRJT04tQVRUQUNLLVNFU1NJT04tRklYQVRJT04iCiMKIyAtPSBQYXJhbm9pYSBMZXZlbCAxIChkZWZhdWx0KSA9LSAoYXBwbHkgb25seSB3aGVuIHR4LmV4ZWN1dGluZ19wYXJhbm9pYV9sZXZlbCBpcyBzdWZmaWNpZW50bHkgaGlnaDogMSBvciBoaWdoZXIpCiMKCiMKIyBTZXNzaW9uIGZpeGF0aW9uCiMKIyAtPVsgUmVmZXJlbmNlcyBdPS0KIyBodHRwOi8vcHJvamVjdHMud2ViYXBwc2VjLm9yZy9TZXNzaW9uLUZpeGF0aW9uCiMgaHR0cDovL3Byb2plY3RzLndlYmFwcHNlYy5vcmcvdy9wYWdlLzEzMjQ2OTYwL1Nlc3Npb24lMjBGaXhhdGlvbgojIGh0dHA6Ly9jYXBlYy5taXRyZS5vcmcvZGF0YS9kZWZpbml0aW9ucy82MS5odG1sCiMKU2VjUnVsZSBSRVFVRVNUX0NPT0tJRVN8IVJFUVVFU1RfQ09PS0lFUzovX191dG0vfFJFUVVFU1RfQ09PS0lFU19OQU1FU3xBUkdTX05BTUVTfEFSR1N8WE1MOi8qICJAcnggKD9pOlwuY29va2llXGIuKj87XFcqPyg/OmV4cGlyZXN8ZG9tYWluKVxXKj89fFxiaHR0cC1lcXVpdlxXK3NldC1jb29raWVcYikiIFwKICAgICJpZDo5NDMxMDAsXAogICAgcGhhc2U6MixcCiAgICBibG9jayxcCiAgICBjYXB0dXJlLFwKICAgIHQ6bm9uZSx0OnVybERlY29kZVVuaSxcCiAgICBtc2c6J1Bvc3NpYmxlIFNlc3Npb24gRml4YXRpb24gQXR0YWNrOiBTZXR0aW5nIENvb2tpZSBWYWx1ZXMgaW4gSFRNTCcsXAogICAgbG9nZGF0YTonTWF0Y2hlZCBEYXRhOiAle1RYLjB9IGZvdW5kIHdpdGhpbiAle01BVENIRURfVkFSX05BTUV9OiAle01BVENIRURfVkFSfScsXAogICAgdGFnOidhcHBsaWNhdGlvbi1tdWx0aScsXAogICAgdGFnOidsYW5ndWFnZS1tdWx0aScsXAogICAgdGFnOidwbGF0Zm9ybS1tdWx0aScsXAogICAgdGFnOidhdHRhY2stZml4YXRpb24nLFwKICAgIHRhZzoncGFyYW5vaWEtbGV2ZWwvMScsXAogICAgdGFnOidPV0FTUF9DUlMnLFwKICAgIHRhZzonY2FwZWMvMTAwMC8yMjUvMjEvNTkzLzYxJyxcCiAgICBjdGw6YXVkaXRMb2dQYXJ0cz0rRSxcCiAgICB2ZXI6J09XQVNQX0NSUy8zLjMuNScsXAogICAgc2V2ZXJpdHk6J0NSSVRJQ0FMJyxcCiAgICBzZXR2YXI6J3R4LnNlc3Npb25fZml4YXRpb25fc2NvcmU9KyV7dHguY3JpdGljYWxfYW5vbWFseV9zY29yZX0nLFwKICAgIHNldHZhcjondHguYW5vbWFseV9zY29yZV9wbDE9KyV7dHguY3JpdGljYWxfYW5vbWFseV9zY29yZX0nIgoKClNlY1J1bGUgQVJHU19OQU1FUyAiQHJ4IF4oPzpqc2Vzc2lvbmlkfGFzcHNlc3Npb25pZHxhc3BcLm5ldF9zZXNzaW9uaWR8cGhwc2Vzc2lvbnxwaHBzZXNzaWR8d2VibG9naWNzZXNzaW9ufHNlc3Npb25faWR8c2Vzc2lvbi1pZHxjZmlkfGNmdG9rZW58Y2ZzaWR8anNlcnZzZXNzaW9ufGp3c2Vzc2lvbikkIiBcCiAgICAiaWQ6OTQzMTEwLFwKICAgIHBoYXNlOjIsXAogICAgYmxvY2ssXAogICAgY2FwdHVyZSxcCiAgICB0Om5vbmUsdDp1cmxEZWNvZGVVbmksdDpsb3dlcmNhc2UsXAogICAgbXNnOidQb3NzaWJsZSBTZXNzaW9uIEZpeGF0aW9uIEF0dGFjazogU2Vzc2lvbklEIFBhcmFtZXRlciBOYW1lIHdpdGggT2ZmLURvbWFpbiBSZWZlcmVyJyxcCiAgICBsb2dkYXRhOidNYXRjaGVkIERhdGE6ICV7VFguMH0gZm91bmQgd2l0aGluICV7TUFUQ0hFRF9WQVJfTkFNRX06ICV7TUFUQ0hFRF9WQVJ9JyxcCiAgICB0YWc6J2FwcGxpY2F0aW9uLW11bHRpJyxcCiAgICB0YWc6J2xhbmd1YWdlLW11bHRpJyxcCiAgICB0YWc6J3BsYXRmb3JtLW11bHRpJyxcCiAgICB0YWc6J2F0dGFjay1maXhhdGlvbicsXAogICAgdGFnOidwYXJhbm9pYS1sZXZlbC8xJyxcCiAgICB0YWc6J09XQVNQX0NSUycsXAogICAgdGFnOidjYXBlYy8xMDAwLzIyNS8yMS81OTMvNjEnLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBzZXZlcml0eTonQ1JJVElDQUwnLFwKICAgIGNoYWluIgogICAgU2VjUnVsZSBSRVFVRVNUX0hFQURFUlM6UmVmZXJlciAiQHJ4IF4oPzpodHxmKXRwcz86Ly8oLio/KVwvIiBcCiAgICAgICAgImNhcHR1cmUsXAogICAgICAgIGNoYWluIgogICAgICAgIFNlY1J1bGUgVFg6MSAiIUBlbmRzV2l0aCAle3JlcXVlc3RfaGVhZGVycy5ob3N0fSIgXAogICAgICAgICAgICAiY3RsOmF1ZGl0TG9nUGFydHM9K0UsXAogICAgICAgICAgICBzZXR2YXI6J3R4LnNlc3Npb25fZml4YXRpb25fc2NvcmU9KyV7dHguY3JpdGljYWxfYW5vbWFseV9zY29yZX0nLFwKICAgICAgICAgICAgc2V0dmFyOid0eC5hbm9tYWx5X3Njb3JlX3BsMT0rJXt0eC5jcml0aWNhbF9hbm9tYWx5X3Njb3JlfSciCgoKU2VjUnVsZSBBUkdTX05BTUVTICJAcnggXig/OmpzZXNzaW9uaWR8YXNwc2Vzc2lvbmlkfGFzcFwubmV0X3Nlc3Npb25pZHxwaHBzZXNzaW9ufHBocHNlc3NpZHx3ZWJsb2dpY3Nlc3Npb258c2Vzc2lvbl9pZHxzZXNzaW9uLWlkfGNmaWR8Y2Z0b2tlbnxjZnNpZHxqc2VydnNlc3Npb258andzZXNzaW9uKSQiIFwKICAgICJpZDo5NDMxMjAsXAogICAgcGhhc2U6MixcCiAgICBibG9jayxcCiAgICBjYXB0dXJlLFwKICAgIHQ6bm9uZSx0OnVybERlY29kZVVuaSx0Omxvd2VyY2FzZSxcCiAgICBtc2c6J1Bvc3NpYmxlIFNlc3Npb24gRml4YXRpb24gQXR0YWNrOiBTZXNzaW9uSUQgUGFyYW1ldGVyIE5hbWUgd2l0aCBObyBSZWZlcmVyJyxcCiAgICBsb2dkYXRhOidNYXRjaGVkIERhdGE6ICV7VFguMH0gZm91bmQgd2l0aGluICV7TUFUQ0hFRF9WQVJfTkFNRX06ICV7TUFUQ0hFRF9WQVJ9JyxcCiAgICB0YWc6J2FwcGxpY2F0aW9uLW11bHRpJyxcCiAgICB0YWc6J2xhbmd1YWdlLW11bHRpJyxcCiAgICB0YWc6J3BsYXRmb3JtLW11bHRpJyxcCiAgICB0YWc6J2F0dGFjay1maXhhdGlvbicsXAogICAgdGFnOidwYXJhbm9pYS1sZXZlbC8xJyxcCiAgICB0YWc6J09XQVNQX0NSUycsXAogICAgdGFnOidjYXBlYy8xMDAwLzIyNS8yMS81OTMvNjEnLFwKICAgIHZlcjonT1dBU1BfQ1JTLzMuMy41JyxcCiAgICBzZXZlcml0eTonQ1JJVElDQUwnLFwKICAgIGNoYWluIgogICAgU2VjUnVsZSAmUkVRVUVTVF9IRUFERVJTOlJlZmVyZXIgIkBlcSAwIiBcCiAgICAgICAgImN0bDphdWRpdExvZ1BhcnRzPStFLFwKICAgICAgICBzZXR2YXI6J3R4LnNlc3Npb25fZml4YXRpb25fc2NvcmU9KyV7dHguY3JpdGljYWxfYW5vbWFseV9zY29yZX0nLFwKICAgICAgICBzZXR2YXI6J3R4LmFub21hbHlfc2NvcmVfcGwxPSsle3R4LmNyaXRpY2FsX2Fub21hbHlfc2NvcmV9JyIKCgoKClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgMiIgImlkOjk0MzAxMyxwaGFzZToxLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTk0My1BUFBMSUNBVElPTi1BVFRBQ0stU0VTU0lPTi1GSVhBVElPTiIKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAyIiAiaWQ6OTQzMDE0LHBoYXNlOjIscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTQzLUFQUExJQ0FUSU9OLUFUVEFDSy1TRVNTSU9OLUZJWEFUSU9OIgojCiMgLT0gUGFyYW5vaWEgTGV2ZWwgMiA9LSAoYXBwbHkgb25seSB3aGVuIHR4LmV4ZWN1dGluZ19wYXJhbm9pYV9sZXZlbCBpcyBzdWZmaWNpZW50bHkgaGlnaDogMiBvciBoaWdoZXIpCiMKCgoKU2VjUnVsZSBUWDpFWEVDVVRJTkdfUEFSQU5PSUFfTEVWRUwgIkBsdCAzIiAiaWQ6OTQzMDE1LHBoYXNlOjEscGFzcyxub2xvZyxza2lwQWZ0ZXI6RU5ELVJFUVVFU1QtOTQzLUFQUExJQ0FUSU9OLUFUVEFDSy1TRVNTSU9OLUZJWEFUSU9OIgpTZWNSdWxlIFRYOkVYRUNVVElOR19QQVJBTk9JQV9MRVZFTCAiQGx0IDMiICJpZDo5NDMwMTYscGhhc2U6MixwYXNzLG5vbG9nLHNraXBBZnRlcjpFTkQtUkVRVUVTVC05NDMtQVBQTElDQVRJT04tQVRUQUNLLVNFU1NJT04tRklYQVRJT04iCiMKIyAtPSBQYXJhbm9pYSBMZXZlbCAzID0tIChhcHBseSBvbmx5IHdoZW4gdHguZXhlY3V0aW5nX3BhcmFub2lhX2xldmVsIGlzIHN1ZmZpY2llbnRseSBoaWdoOiAzIG9yIGhpZ2hlcikKIwoKCgpTZWNSdWxlIFRYOkVYRUNVVElOR19QQVJBTk9JQV9MRVZFTCAiQGx0IDQiICJpZDo5NDMwMTcscGhhc2U6MSxwYXNzLG5vbG9nLHNraXBBZnRlcjpFTkQtUkVRVUVTVC05NDMtQVBQTElDQVRJT04tQVRUQUNLLVNFU1NJT04tRklYQVRJT04iClNlY1J1bGUgVFg6RVhFQ1VUSU5HX1BBUkFOT0lBX0xFVkVMICJAbHQgNCIgImlkOjk0MzAxOCxwaGFzZToyLHBhc3Msbm9sb2csc2tpcEFmdGVyOkVORC1SRVFVRVNULTk0My1BUFBMSUNBVElPTi1BVFRBQ0stU0VTU0lPTi1GSVhBVElPTiIKIwojIC09IFBhcmFub2lhIExldmVsIDQgPS0gKGFwcGx5IG9ubHkgd2hlbiB0eC5leGVjdXRpbmdfcGFyYW5vaWFfbGV2ZWwgaXMgc3VmZmljaWVudGx5IGhpZ2g6IDQgb3IgaGlnaGVyKQojCgoKCiMKIyAtPSBQYXJhbm9pYSBMZXZlbHMgRmluaXNoZWQgPS0KIwpTZWNNYXJrZXIgIkVORC1SRVFVRVNULTk0My1BUFBMSUNBVElPTi1BVFRBQ0stU0VTU0lPTi1GSVhBVElPTiIK",
-	"REQUEST-944-APPLICATION-ATTACK-JAVA.conf":             "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",
-	"REQUEST-949-BLOCKING-EVALUATION.conf":                 "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",
-	"RESPONSE-950-DATA-LEAKAGES.conf":                      "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",
-	"RESPONSE-951-DATA-LEAKAGES-SQL.conf":                  "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",
-	"RESPONSE-952-DATA-LEAKAGES-JAVA.conf":                 "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",
-	"RESPONSE-953-DATA-LEAKAGES-PHP.conf":                  "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",
-	"RESPONSE-954-DATA-LEAKAGES-IIS.conf":                  "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",
-	"RESPONSE-959-BLOCKING-EVALUATION.conf":                "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",
-	"RESPONSE-980-CORRELATION.conf":                        "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",
-	"RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example":  "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",
-	"crawlers-user-agents.data":                            "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",
-	"crs-setup.conf":                                       "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",
-	"iis-errors.data":                                      "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",
-	"java-classes.data":                                    "Y29tLm9wZW5zeW1waG9ueS54d29yazIKY29tLnN1bi5vcmcuYXBhY2hlCmphdmEuaW8uQnVmZmVyZWRJbnB1dFN0cmVhbQpqYXZhLmlvLkJ1ZmZlcmVkUmVhZGVyCmphdmEuaW8uQnl0ZUFycmF5SW5wdXRTdHJlYW0KamF2YS5pby5CeXRlQXJyYXlPdXRwdXRTdHJlYW0KamF2YS5pby5DaGFyQXJyYXlSZWFkZXIKamF2YS5pby5EYXRhSW5wdXRTdHJlYW0KamF2YS5pby5GaWxlCmphdmEuaW8uRmlsZU91dHB1dFN0cmVhbQpqYXZhLmlvLkZpbGVQZXJtaXNzaW9uCmphdmEuaW8uRmlsZVdyaXRlcgpqYXZhLmlvLkZpbHRlcklucHV0U3RyZWFtCmphdmEuaW8uRmlsdGVyT3V0cHV0U3RyZWFtCmphdmEuaW8uRmlsdGVyUmVhZGVyCmphdmEuaW8uSW5wdXRTdHJlYW0KamF2YS5pby5JbnB1dFN0cmVhbVJlYWRlcgpqYXZhLmlvLkxpbmVOdW1iZXJSZWFkZXIKamF2YS5pby5PYmplY3RPdXRwdXRTdHJlYW0KamF2YS5pby5PdXRwdXRTdHJlYW0KamF2YS5pby5QaXBlZE91dHB1dFN0cmVhbQpqYXZhLmlvLlBpcGVkUmVhZGVyCmphdmEuaW8uUHJpbnRTdHJlYW0KamF2YS5pby5QdXNoYmFja0lucHV0U3RyZWFtCmphdmEuaW8uUmVhZGVyCmphdmEuaW8uU3RyaW5nUmVhZGVyCmphdmEubGFuZy5DbGFzcwpqYXZhLmxhbmcuSW50ZWdlcgpqYXZhLmxhbmcuTnVtYmVyCmphdmEubGFuZy5PYmplY3QKamF2YS5sYW5nLlByb2Nlc3MKamF2YS5sYW5nLlByb2Nlc3NCdWlsZGVyCmphdmEubGFuZy5yZWZsZWN0CmphdmEubGFuZy5SdW50aW1lCmphdmEubGFuZy5TdHJpbmcKamF2YS5sYW5nLlN0cmluZ0J1aWxkZXIKamF2YS5sYW5nLlN5c3RlbQpqYXZheC5zY3JpcHQuU2NyaXB0RW5naW5lTWFuYWdlcgpvcmcuYXBhY2hlLmNvbW1vbnMKb3JnLmFwYWNoZS5zdHJ1dHMKb3JnLmFwYWNoZS5zdHJ1dHMyCm9yZy5vbWcuQ09SQkEKamF2YS5iZWFucy5YTUxEZWNvZGUK",
-	"java-code-leakages.data":                              "PGpzcDoKamF2YXguc2VydmxldAouYWRkaGVhZGVyCi5jcmVhdGV0ZXh0ZmlsZQouZ2V0ZmlsZQoubG9hZGZyb21maWxlCnJlc3BvbnNlLmJpbmFyeXdyaXRlCnJlc3BvbnNlLndyaXRlCnNjcmlwdGluZy5maWxlc3lzdGVtb2JqZWN0CnNlcnZlci5jcmVhdGVvYmplY3QKc2VydmVyLmV4ZWN1dGUKc2VydmVyLmh0bWxlbmNvZGUKc2VydmVyLm1hcHBhdGgKc2VydmVyLnVybGVuY29kZQp2YnNjcmlwdC5lbmNvZGUKd3NjcmlwdC5uZXR3b3JrCndzY3JpcHQuc2hlbGwK",
-	"java-errors.data":                                     "W2phdmEubGFuZy4KY2xhc3MgamF2YS5sYW5nLgpqYXZhLmxhbmcuTnVsbFBvaW50ZXJFeGNlcHRpb24KamF2YS5ybWkuU2VydmVyRXhjZXB0aW9uCmF0IGphdmEubGFuZy4Kb25jbGljaz0idG9nZ2xlKCdmdWxsIGV4Y2VwdGlvbiBjaGFpbiBzdGFja3RyYWNlJykiCmF0IG9yZy5hcGFjaGUuY2F0YWxpbmEKYXQgb3JnLmFwYWNoZS5jb3lvdGUuCmF0IG9yZy5hcGFjaGUudG9tY2F0LgphdCBvcmcuYXBhY2hlLmphc3Blci4K",
-	"lfi-os-files.data":                                    "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",
-	"modsecdefault.conf":                                   "IyAtLSBSdWxlIGVuZ2luZSBpbml0aWFsaXphdGlvbiAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCgojIEVuYWJsZSBNb2RTZWN1cml0eSwgYXR0YWNoaW5nIGl0IHRvIGV2ZXJ5IHRyYW5zYWN0aW9uLiBVc2UgZGV0ZWN0aW9uCiMgb25seSB0byBzdGFydCB3aXRoLCBiZWNhdXNlIHRoYXQgbWluaW1pc2VzIHRoZSBjaGFuY2VzIG9mIHBvc3QtaW5zdGFsbGF0aW9uCiMgZGlzcnVwdGlvbi4KIwpTZWNSdWxlRW5naW5lIERldGVjdGlvbk9ubHkKCgojIC0tIFJlcXVlc3QgYm9keSBoYW5kbGluZyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KCiMgQWxsb3cgTW9kU2VjdXJpdHkgdG8gYWNjZXNzIHJlcXVlc3QgYm9kaWVzLiBJZiB5b3UgZG9uJ3QsIE1vZFNlY3VyaXR5CiMgd29uJ3QgYmUgYWJsZSB0byBzZWUgYW55IFBPU1QgcGFyYW1ldGVycywgd2hpY2ggb3BlbnMgYSBsYXJnZSBzZWN1cml0eQojIGhvbGUgZm9yIGF0dGFja2VycyB0byBleHBsb2l0LgojClNlY1JlcXVlc3RCb2R5QWNjZXNzIE9uCgoKIyBFbmFibGUgWE1MIHJlcXVlc3QgYm9keSBwYXJzZXIuCiMgSW5pdGlhdGUgWE1MIFByb2Nlc3NvciBpbiBjYXNlIG9mIHhtbCBjb250ZW50LXR5cGUKIwpTZWNSdWxlIFJFUVVFU1RfSEVBREVSUzpDb250ZW50LVR5cGUgIl4oPzphcHBsaWNhdGlvbig/Oi9zb2FwXCt8Lyl8dGV4dC8peG1sIiBcCiAgICAgImlkOicyMDAwMDAnLHBoYXNlOjEsdDpub25lLHQ6bG93ZXJjYXNlLHBhc3Msbm9sb2csY3RsOnJlcXVlc3RCb2R5UHJvY2Vzc29yPVhNTCIKCiMgRW5hYmxlIEpTT04gcmVxdWVzdCBib2R5IHBhcnNlci4KIyBJbml0aWF0ZSBKU09OIFByb2Nlc3NvciBpbiBjYXNlIG9mIEpTT04gY29udGVudC10eXBlOyBjaGFuZ2UgYWNjb3JkaW5nbHkKIyBpZiB5b3VyIGFwcGxpY2F0aW9uIGRvZXMgbm90IHVzZSAnYXBwbGljYXRpb24vanNvbicKIwpTZWNSdWxlIFJFUVVFU1RfSEVBREVSUzpDb250ZW50LVR5cGUgIl5hcHBsaWNhdGlvbi9qc29uIiBcCiAgICAgImlkOicyMDAwMDEnLHBoYXNlOjEsdDpub25lLHQ6bG93ZXJjYXNlLHBhc3Msbm9sb2csY3RsOnJlcXVlc3RCb2R5UHJvY2Vzc29yPUpTT04iCgojIFNhbXBsZSBydWxlIHRvIGVuYWJsZSBKU09OIHJlcXVlc3QgYm9keSBwYXJzZXIgZm9yIG1vcmUgc3VidHlwZXMuCiMgVW5jb21tZW50IG9yIGFkYXB0IHRoaXMgcnVsZSBpZiB5b3Ugd2FudCB0byBlbmdhZ2UgdGhlIEpTT04KIyBQcm9jZXNzb3IgZm9yICIranNvbiIgc3VidHlwZXMKIwojU2VjUnVsZSBSRVFVRVNUX0hFQURFUlM6Q29udGVudC1UeXBlICJeYXBwbGljYXRpb24vW2EtejAtOS4tXStbK11qc29uIiBcCiMgICAgICJpZDonMjAwMDA2JyxwaGFzZToxLHQ6bm9uZSx0Omxvd2VyY2FzZSxwYXNzLG5vbG9nLGN0bDpyZXF1ZXN0Qm9keVByb2Nlc3Nvcj1KU09OIgoKIyBNYXhpbXVtIHJlcXVlc3QgYm9keSBzaXplIHdlIHdpbGwgYWNjZXB0IGZvciBidWZmZXJpbmcuIElmIHlvdSBzdXBwb3J0CiMgZmlsZSB1cGxvYWRzIHRoZW4gdGhlIHZhbHVlIGdpdmVuIG9uIHRoZSBmaXJzdCBsaW5lIGhhcyB0byBiZSBhcyBsYXJnZQojIGFzIHRoZSBsYXJnZXN0IGZpbGUgeW91IGFyZSB3aWxsaW5nIHRvIGFjY2VwdC4gVGhlIHNlY29uZCB2YWx1ZSByZWZlcnMKIyB0byB0aGUgc2l6ZSBvZiBkYXRhLCB3aXRoIGZpbGVzIGV4Y2x1ZGVkLiBZb3Ugd2FudCB0byBrZWVwIHRoYXQgdmFsdWUgYXMKIyBsb3cgYXMgcHJhY3RpY2FsLgojClNlY1JlcXVlc3RCb2R5TGltaXQgMTMxMDcyMDAKU2VjUmVxdWVzdEJvZHlOb0ZpbGVzTGltaXQgMTMxMDcyCgojIFdoYXQgdG8gZG8gaWYgdGhlIHJlcXVlc3QgYm9keSBzaXplIGlzIGFib3ZlIG91ciBjb25maWd1cmVkIGxpbWl0LgojIEtlZXAgaW4gbWluZCB0aGF0IHRoaXMgc2V0dGluZyB3aWxsIGF1dG9tYXRpY2FsbHkgYmUgc2V0IHRvIFByb2Nlc3NQYXJ0aWFsCiMgd2hlbiBTZWNSdWxlRW5naW5lIGlzIHNldCB0byBEZXRlY3Rpb25Pbmx5IG1vZGUgaW4gb3JkZXIgdG8gbWluaW1pemUKIyBkaXNydXB0aW9ucyB3aGVuIGluaXRpYWxseSBkZXBsb3lpbmcgTW9kU2VjdXJpdHkuCiMKU2VjUmVxdWVzdEJvZHlMaW1pdEFjdGlvbiBSZWplY3QKCiMgTWF4aW11bSBwYXJzaW5nIGRlcHRoIGFsbG93ZWQgZm9yIEpTT04gb2JqZWN0cy4gWW91IHdhbnQgdG8ga2VlcCB0aGlzCiMgdmFsdWUgYXMgbG93IGFzIHByYWN0aWNhbC4KIwpTZWNSZXF1ZXN0Qm9keUpzb25EZXB0aExpbWl0IDUxMgoKIyBNYXhpbXVtIG51bWJlciBvZiBhcmdzIGFsbG93ZWQgcGVyIHJlcXVlc3QuIFlvdSB3YW50IHRvIGtlZXAgdGhpcwojIHZhbHVlIGFzIGxvdyBhcyBwcmFjdGljYWwuIFRoZSB2YWx1ZSBzaG91bGQgbWF0Y2ggdGhhdCBpbiBydWxlIDIwMDAwNy4KU2VjQXJndW1lbnRzTGltaXQgMTAwMAoKIyBJZiBTZWNBcmd1bWVudHNMaW1pdCBoYXMgYmVlbiBzZXQsIHlvdSBwcm9iYWJseSB3YW50IHRvIHJlamVjdCBhbnkKIyByZXF1ZXN0IGJvZHkgdGhhdCBoYXMgb25seSBiZWVuIHBhcnRseSBwYXJzZWQuIFRoZSB2YWx1ZSB1c2VkIGluIHRoaXMKIyBydWxlIHNob3VsZCBtYXRjaCB3aGF0IHdhcyB1c2VkIHdpdGggU2VjQXJndW1lbnRzTGltaXQKU2VjUnVsZSAmQVJHUyAiQGdlIDEwMDAiIFwKImlkOicyMDAwMDcnLCBwaGFzZToyLHQ6bm9uZSxsb2csZGVueSxzdGF0dXM6NDAwLG1zZzonRmFpbGVkIHRvIGZ1bGx5IHBhcnNlIHJlcXVlc3QgYm9keSBkdWUgdG8gbGFyZ2UgYXJndW1lbnQgY291bnQnLHNldmVyaXR5OjIiCgojIFZlcmlmeSB0aGF0IHdlJ3ZlIGNvcnJlY3RseSBwcm9jZXNzZWQgdGhlIHJlcXVlc3QgYm9keS4KIyBBcyBhIHJ1bGUgb2YgdGh1bWIsIHdoZW4gZmFpbGluZyB0byBwcm9jZXNzIGEgcmVxdWVzdCBib2R5CiMgeW91IHNob3VsZCByZWplY3QgdGhlIHJlcXVlc3QgKHdoZW4gZGVwbG95ZWQgaW4gYmxvY2tpbmcgbW9kZSkKIyBvciBsb2cgYSBoaWdoLXNldmVyaXR5IGFsZXJ0ICh3aGVuIGRlcGxveWVkIGluIGRldGVjdGlvbi1vbmx5IG1vZGUpLgojClNlY1J1bGUgUkVRQk9EWV9FUlJPUiAiIUBlcSAwIiBcCiJpZDonMjAwMDAyJywgcGhhc2U6Mix0Om5vbmUsbG9nLGRlbnksc3RhdHVzOjQwMCxtc2c6J0ZhaWxlZCB0byBwYXJzZSByZXF1ZXN0IGJvZHkuJyxsb2dkYXRhOicle3JlcWJvZHlfZXJyb3JfbXNnfScsc2V2ZXJpdHk6MiIKCiMgQnkgZGVmYXVsdCBiZSBzdHJpY3Qgd2l0aCB3aGF0IHdlIGFjY2VwdCBpbiB0aGUgbXVsdGlwYXJ0L2Zvcm0tZGF0YQojIHJlcXVlc3QgYm9keS4gSWYgdGhlIHJ1bGUgYmVsb3cgcHJvdmVzIHRvIGJlIHRvbyBzdHJpY3QgZm9yIHlvdXIKIyBlbnZpcm9ubWVudCBjb25zaWRlciBjaGFuZ2luZyBpdCB0byBkZXRlY3Rpb24tb25seS4gWW91IGFyZSBlbmNvdXJhZ2VkCiMgX25vdF8gdG8gcmVtb3ZlIGl0IGFsdG9nZXRoZXIuCiMKU2VjUnVsZSBNVUxUSVBBUlRfU1RSSUNUX0VSUk9SICIhQGVxIDAiIFwKImlkOicyMDAwMDMnLHBoYXNlOjIsdDpub25lLGxvZyxkZW55LHN0YXR1czo0MDAsIFwKbXNnOidNdWx0aXBhcnQgcmVxdWVzdCBib2R5IGZhaWxlZCBzdHJpY3QgdmFsaWRhdGlvbjogXApQRSAle1JFUUJPRFlfUFJPQ0VTU09SX0VSUk9SfSwgXApCUSAle01VTFRJUEFSVF9CT1VOREFSWV9RVU9URUR9LCBcCkJXICV7TVVMVElQQVJUX0JPVU5EQVJZX1dISVRFU1BBQ0V9LCBcCkRCICV7TVVMVElQQVJUX0RBVEFfQkVGT1JFfSwgXApEQSAle01VTFRJUEFSVF9EQVRBX0FGVEVSfSwgXApIRiAle01VTFRJUEFSVF9IRUFERVJfRk9MRElOR30sIFwKTEYgJXtNVUxUSVBBUlRfTEZfTElORX0sIFwKU00gJXtNVUxUSVBBUlRfTUlTU0lOR19TRU1JQ09MT059LCBcCklRICV7TVVMVElQQVJUX0lOVkFMSURfUVVPVElOR30sIFwKSVAgJXtNVUxUSVBBUlRfSU5WQUxJRF9QQVJUfSwgXApJSCAle01VTFRJUEFSVF9JTlZBTElEX0hFQURFUl9GT0xESU5HfSwgXApGTCAle01VTFRJUEFSVF9GSUxFX0xJTUlUX0VYQ0VFREVEfSciCgojIERpZCB3ZSBzZWUgYW55dGhpbmcgdGhhdCBtaWdodCBiZSBhIGJvdW5kYXJ5PwojCiMgSGVyZSBpcyBhIHNob3J0IGRlc2NyaXB0aW9uIGFib3V0IHRoZSBNb2RTZWN1cml0eSBNdWx0aXBhcnQgcGFyc2VyOiB0aGUKIyBwYXJzZXIgcmV0dXJucyB3aXRoIHZhbHVlIDAsIGlmIGFsbCAiYm91bmRhcnktbGlrZSIgbGluZSBtYXRjaGVzIHdpdGgKIyB0aGUgYm91bmRhcnkgc3RyaW5nIHdoaWNoIGdpdmVuIGluIE1JTUUgaGVhZGVyLiBJbiBhbnkgb3RoZXIgY2FzZXMgaXQgcmV0dXJucwojIHdpdGggZGlmZmVyZW50IHZhbHVlLCBlZy4gMSBvciAyLgojCiMgVGhlIFJGQyAxMzQxIGRlc2NyaXB0IHRoZSBtdWx0aXBhcnQgY29udGVudC10eXBlIGFuZCBpdHMgc3ludGF4IG11c3QgY29udGFpbnMKIyBvbmx5IHRocmVlIG1hbmRhdG9yeSBsaW5lcyAoYWJvdmUgdGhlIGNvbnRlbnQpOgojICogQ29udGVudC1UeXBlOiBtdWx0aXBhcnQvbWl4ZWQ7IGJvdW5kYXJ5PUJPVU5EQVJZX1NUUklORwojICogLS1CT1VOREFSWV9TVFJJTkcKIyAqIC0tQk9VTkRBUllfU1RSSU5HLS0KIwojIEZpcnN0IGxpbmUgaW5kaWNhdGVzLCB0aGF0IHRoaXMgaXMgYSBtdWx0aXBhcnQgY29udGVudCwgc2Vjb25kIHNob3dzIHRoYXQKIyBoZXJlIHN0YXJ0cyBhIHBhcnQgb2YgdGhlIG11bHRpcGFydCBjb250ZW50LCB0aGlyZCBzaG93cyB0aGUgZW5kIG9mIGNvbnRlbnQuCiMKIyBJZiB0aGVyZSBhcmUgYW55IG90aGVyIGxpbmVzLCB3aGljaCBzdGFydHMgd2l0aCAiLS0iLCB0aGVuIGl0IHNob3VsZCBiZQojIGFub3RoZXIgYm91bmRhcnkgaWQgLSBvciBub3QuCiMKIyBBZnRlciAzLjAuMywgdGhlcmUgYXJlIHR3byBraW5kcyBvZiB0eXBlcyBvZiBib3VuZGFyeSBlcnJvcnM6IHN0cmljdCBhbmQgcGVybWlzc2l2ZS4KIwojIElmIG11bHRpcGFydCBjb250ZW50IGNvbnRhaW5zIHRoZSB0aHJlZSBuZWNlc3NhcnkgbGluZXMgd2l0aCBjb3JyZWN0IG9yZGVyLCBidXQKIyB0aGVyZSBhcmUgb25lIG9yIG1vcmUgbGluZXMgd2l0aCAiLS0iLCB0aGVuIHBhcnNlciByZXR1cm5zIHdpdGggdmFsdWUgMiAobm9uLXplcm8pLgojCiMgSWYgc29tZSBvZiB0aGUgbmVjZXNzYXJ5IGxpbmVzICh1c3VhbGx5IHRoZSBzdGFydCBvciBlbmQpIG1pc3Nlcywgb3IgdGhlIG9yZGVyCiMgaXMgd3JvbmcsIHRoZW4gcGFyc2VyIHJldHVybnMgd2l0aCB2YWx1ZSAxIChhbHNvIGEgbm9uLXplcm8pLgojCiMgWW91IGNhbiBjaG9vc2UsIHdoaWNoIG9uZSBpcyB3aGF0IHlvdSBuZWVkLiBUaGUgZXhhbXBsZSBiZWxvdyBjb250YWlucyB0aGUKIyAnc3RyaWN0JyBtb2RlLCB3aGljaCBtZWFucyBpZiB0aGVyZSBhcmUgYW55IGxpbmVzIHdpdGggc3RhcnQgb2YgIi0tIiwgdGhlbgojIE1vZFNlY3VyaXR5IGJsb2NrZWQgdGhlIGNvbnRlbnQuIEJ1dCB0aGUgbmV4dCwgY29tbWVudGVkIGV4YW1wbGUgY29udGFpbnMKIyB0aGUgJ3Blcm1pc3NpdmUnIG1vZGUsIHRoZW4geW91IGNoZWNrIG9ubHkgaWYgdGhlIG5lY2Vzc2FyeSBsaW5lcyBleGlzdHMgaW4KIyBjb3JyZWN0IG9yZGVyLiBXaGl0IHRoaXMsIHlvdSBjYW4gZW5hYmxlIHRvIHVwbG9hZCBQRU0gZmlsZXMgKGVnICItLS0tQkVHSU4uLiIpLAojIG9yIG90aGVyIHRleHQgZmlsZXMsIHdoaWNoIGNvbnRhaW5zIGVnLiBIVFRQIGhlYWRlcnMuCiMKIyBUaGUgZGlmZmVyZW5jZSBpcyBvbmx5IHRoZSBvcGVyYXRvciAtIGluIHN0cmljdCBtb2RlIChmaXJzdCkgdGhlIGNvbnRlbnQgYmxvY2tlZAojIGluIGNhc2Ugb2YgYW55IG5vbi16ZXJvIHZhbHVlLiBJbiBwZXJtaXNzaXZlIG1vZGUgKHNlY29uZCwgY29tbWVudGVkKSB0aGUKIyBjb250ZW50IGJsb2NrZWQgb25seSBpZiB0aGUgdmFsdWUgaXMgZXhwbGljaXQgMS4gSWYgaXQgMCBvciAyLCB0aGUgY29udGVudCB3aWxsCiMgYWxsb3dlZC4KIwoKIwojIFNlZSAjMTc0NyBhbmQgIzE5MjQgZm9yIGZ1cnRoZXIgaW5mb3JtYXRpb24gb24gdGhlIHBvc3NpYmxlIHZhbHVlcyBmb3IKIyBNVUxUSVBBUlRfVU5NQVRDSEVEX0JPVU5EQVJZLgojClNlY1J1bGUgTVVMVElQQVJUX1VOTUFUQ0hFRF9CT1VOREFSWSAiQGVxIDEiIFwKICAgICJpZDonMjAwMDA0JyxwaGFzZToyLHQ6bm9uZSxsb2csZGVueSxtc2c6J011bHRpcGFydCBwYXJzZXIgZGV0ZWN0ZWQgYSBwb3NzaWJsZSB1bm1hdGNoZWQgYm91bmRhcnkuJyIKCgojIFBDUkUgVHVuaW5nCiMgV2Ugd2FudCB0byBhdm9pZCBhIHBvdGVudGlhbCBSZWdFeCBEb1MgY29uZGl0aW9uCiMKU2VjUGNyZU1hdGNoTGltaXQgMTAwMApTZWNQY3JlTWF0Y2hMaW1pdFJlY3Vyc2lvbiAxMDAwCgojIFNvbWUgaW50ZXJuYWwgZXJyb3JzIHdpbGwgc2V0IGZsYWdzIGluIFRYIGFuZCB3ZSB3aWxsIG5lZWQgdG8gbG9vayBmb3IgdGhlc2UuCiMgQWxsIG9mIHRoZXNlIGFyZSBwcmVmaXhlZCB3aXRoICJNU0NfIi4gIFRoZSBmb2xsb3dpbmcgZmxhZ3MgY3VycmVudGx5IGV4aXN0OgojCiMgTVNDX1BDUkVfTElNSVRTX0VYQ0VFREVEOiBQQ1JFIG1hdGNoIGxpbWl0cyB3ZXJlIGV4Y2VlZGVkLgojClNlY1J1bGUgVFg6L15NU0NfLyAiIUBzdHJlcSAwIiBcCiAgICAgICAgImlkOicyMDAwMDUnLHBoYXNlOjIsdDpub25lLGRlbnksbXNnOidNb2RTZWN1cml0eSBpbnRlcm5hbCBlcnJvciBmbGFnZ2VkOiAle01BVENIRURfVkFSX05BTUV9JyIKCgojIC0tIFJlc3BvbnNlIGJvZHkgaGFuZGxpbmcgLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KCiMgQWxsb3cgTW9kU2VjdXJpdHkgdG8gYWNjZXNzIHJlc3BvbnNlIGJvZGllcy4gCiMgWW91IHNob3VsZCBoYXZlIHRoaXMgZGlyZWN0aXZlIGVuYWJsZWQgaW4gb3JkZXIgdG8gaWRlbnRpZnkgZXJyb3JzCiMgYW5kIGRhdGEgbGVha2FnZSBpc3N1ZXMuCiMgCiMgRG8ga2VlcCBpbiBtaW5kIHRoYXQgZW5hYmxpbmcgdGhpcyBkaXJlY3RpdmUgZG9lcyBpbmNyZWFzZXMgYm90aAojIG1lbW9yeSBjb25zdW1wdGlvbiBhbmQgcmVzcG9uc2UgbGF0ZW5jeS4KIwpTZWNSZXNwb25zZUJvZHlBY2Nlc3MgT24KCiMgV2hpY2ggcmVzcG9uc2UgTUlNRSB0eXBlcyBkbyB5b3Ugd2FudCB0byBpbnNwZWN0PyBZb3Ugc2hvdWxkIGFkanVzdCB0aGUKIyBjb25maWd1cmF0aW9uIGJlbG93IHRvIGNhdGNoIGRvY3VtZW50cyBidXQgYXZvaWQgc3RhdGljIGZpbGVzCiMgKGUuZy4sIGltYWdlcyBhbmQgYXJjaGl2ZXMpLgojClNlY1Jlc3BvbnNlQm9keU1pbWVUeXBlIHRleHQvcGxhaW4gdGV4dC9odG1sIHRleHQveG1sCgojIEJ1ZmZlciByZXNwb25zZSBib2RpZXMgb2YgdXAgdG8gNTEyIEtCIGluIGxlbmd0aC4KU2VjUmVzcG9uc2VCb2R5TGltaXQgNTI0Mjg4CgojIFdoYXQgaGFwcGVucyB3aGVuIHdlIGVuY291bnRlciBhIHJlc3BvbnNlIGJvZHkgbGFyZ2VyIHRoYW4gdGhlIGNvbmZpZ3VyZWQKIyBsaW1pdD8gQnkgZGVmYXVsdCwgd2UgcHJvY2VzcyB3aGF0IHdlIGhhdmUgYW5kIGxldCB0aGUgcmVzdCB0aHJvdWdoLgojIFRoYXQncyBzb21ld2hhdCBsZXNzIHNlY3VyZSwgYnV0IGRvZXMgbm90IGJyZWFrIGFueSBsZWdpdGltYXRlIHBhZ2VzLgojClNlY1Jlc3BvbnNlQm9keUxpbWl0QWN0aW9uIFByb2Nlc3NQYXJ0aWFsCgoKIyAtLSBGaWxlc3lzdGVtIGNvbmZpZ3VyYXRpb24gLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCgojIFRoZSBsb2NhdGlvbiB3aGVyZSBNb2RTZWN1cml0eSBzdG9yZXMgdGVtcG9yYXJ5IGZpbGVzIChmb3IgZXhhbXBsZSwgd2hlbgojIGl0IG5lZWRzIHRvIGhhbmRsZSBhIGZpbGUgdXBsb2FkIHRoYXQgaXMgbGFyZ2VyIHRoYW4gdGhlIGNvbmZpZ3VyZWQgbGltaXQpLgojIAojIFRoaXMgZGVmYXVsdCBzZXR0aW5nIGlzIGNob3NlbiBkdWUgdG8gYWxsIHN5c3RlbXMgaGF2ZSAvdG1wIGF2YWlsYWJsZSBob3dldmVyLCAKIyB0aGlzIGlzIGxlc3MgdGhhbiBpZGVhbC4gSXQgaXMgcmVjb21tZW5kZWQgdGhhdCB5b3Ugc3BlY2lmeSBhIGxvY2F0aW9uIHRoYXQncyBwcml2YXRlLgojClNlY1RtcERpciAvdG1wLwoKIyBUaGUgbG9jYXRpb24gd2hlcmUgTW9kU2VjdXJpdHkgd2lsbCBrZWVwIGl0cyBwZXJzaXN0ZW50IGRhdGEuICBUaGlzIGRlZmF1bHQgc2V0dGluZyAKIyBpcyBjaG9zZW4gZHVlIHRvIGFsbCBzeXN0ZW1zIGhhdmUgL3RtcCBhdmFpbGFibGUgaG93ZXZlciwgaXQKIyB0b28gc2hvdWxkIGJlIHVwZGF0ZWQgdG8gYSBwbGFjZSB0aGF0IG90aGVyIHVzZXJzIGNhbid0IGFjY2Vzcy4KIwpTZWNEYXRhRGlyIC90bXAvCgoKIyAtLSBGaWxlIHVwbG9hZHMgaGFuZGxpbmcgY29uZmlndXJhdGlvbiAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCgojIFRoZSBsb2NhdGlvbiB3aGVyZSBNb2RTZWN1cml0eSBzdG9yZXMgaW50ZXJjZXB0ZWQgdXBsb2FkZWQgZmlsZXMuIFRoaXMKIyBsb2NhdGlvbiBtdXN0IGJlIHByaXZhdGUgdG8gTW9kU2VjdXJpdHkuIFlvdSBkb24ndCB3YW50IG90aGVyIHVzZXJzIG9uCiMgdGhlIHNlcnZlciB0byBhY2Nlc3MgdGhlIGZpbGVzLCBkbyB5b3U/CiMKI1NlY1VwbG9hZERpciAvb3B0L21vZHNlY3VyaXR5L3Zhci91cGxvYWQvCgojIEJ5IGRlZmF1bHQsIG9ubHkga2VlcCB0aGUgZmlsZXMgdGhhdCB3ZXJlIGRldGVybWluZWQgdG8gYmUgdW51c3VhbAojIGluIHNvbWUgd2F5IChieSBhbiBleHRlcm5hbCBpbnNwZWN0aW9uIHNjcmlwdCkuIEZvciB0aGlzIHRvIHdvcmsgeW91CiMgd2lsbCBhbHNvIG5lZWQgYXQgbGVhc3Qgb25lIGZpbGUgaW5zcGVjdGlvbiBydWxlLgojCiNTZWNVcGxvYWRLZWVwRmlsZXMgUmVsZXZhbnRPbmx5CgojIFVwbG9hZGVkIGZpbGVzIGFyZSBieSBkZWZhdWx0IGNyZWF0ZWQgd2l0aCBwZXJtaXNzaW9ucyB0aGF0IGRvIG5vdCBhbGxvdwojIGFueSBvdGhlciB1c2VyIHRvIGFjY2VzcyB0aGVtLiBZb3UgbWF5IG5lZWQgdG8gcmVsYXggdGhhdCBpZiB5b3Ugd2FudCB0bwojIGludGVyZmFjZSBNb2RTZWN1cml0eSB0byBhbiBleHRlcm5hbCBwcm9ncmFtIChlLmcuLCBhbiBhbnRpLXZpcnVzKS4KIwojU2VjVXBsb2FkRmlsZU1vZGUgMDYwMAoKCiMgLS0gRGVidWcgbG9nIGNvbmZpZ3VyYXRpb24gLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQoKIyBUaGUgZGVmYXVsdCBkZWJ1ZyBsb2cgY29uZmlndXJhdGlvbiBpcyB0byBkdXBsaWNhdGUgdGhlIGVycm9yLCB3YXJuaW5nCiMgYW5kIG5vdGljZSBtZXNzYWdlcyBmcm9tIHRoZSBlcnJvciBsb2cuCiMKI1NlY0RlYnVnTG9nIC9vcHQvbW9kc2VjdXJpdHkvdmFyL2xvZy9kZWJ1Zy5sb2cKI1NlY0RlYnVnTG9nTGV2ZWwgMwoKCiMgLS0gQXVkaXQgbG9nIGNvbmZpZ3VyYXRpb24gLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQoKIyBMb2cgdGhlIHRyYW5zYWN0aW9ucyB0aGF0IGFyZSBtYXJrZWQgYnkgYSBydWxlLCBhcyB3ZWxsIGFzIHRob3NlIHRoYXQKIyB0cmlnZ2VyIGEgc2VydmVyIGVycm9yIChkZXRlcm1pbmVkIGJ5IGEgNXh4IG9yIDR4eCwgZXhjbHVkaW5nIDQwNCwgIAojIGxldmVsIHJlc3BvbnNlIHN0YXR1cyBjb2RlcykuCiMKU2VjQXVkaXRFbmdpbmUgUmVsZXZhbnRPbmx5ClNlY0F1ZGl0TG9nUmVsZXZhbnRTdGF0dXMgIl4oPzo1fDQoPyEwNCkpIgoKIyBMb2cgZXZlcnl0aGluZyB3ZSBrbm93IGFib3V0IGEgdHJhbnNhY3Rpb24uClNlY0F1ZGl0TG9nUGFydHMgQUJJSkRFRkhaCgojIFVzZSBhIHNpbmdsZSBmaWxlIGZvciBsb2dnaW5nLiBUaGlzIGlzIG11Y2ggZWFzaWVyIHRvIGxvb2sgYXQsIGJ1dAojIGFzc3VtZXMgdGhhdCB5b3Ugd2lsbCB1c2UgdGhlIGF1ZGl0IGxvZyBvbmx5IG9jYXNzaW9uYWxseS4KIwpTZWNBdWRpdExvZ1R5cGUgU2VyaWFsClNlY0F1ZGl0TG9nIC92YXIvbG9nL21vZHNlY19hdWRpdC5sb2cKCiMgU3BlY2lmeSB0aGUgcGF0aCBmb3IgY29uY3VycmVudCBhdWRpdCBsb2dnaW5nLgojU2VjQXVkaXRMb2dTdG9yYWdlRGlyIC9vcHQvbW9kc2VjdXJpdHkvdmFyL2F1ZGl0LwoKCiMgLS0gTWlzY2VsbGFuZW91cyAtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQoKIyBVc2UgdGhlIG1vc3QgY29tbW9ubHkgdXNlZCBhcHBsaWNhdGlvbi94LXd3dy1mb3JtLXVybGVuY29kZWQgcGFyYW1ldGVyCiMgc2VwYXJhdG9yLiBUaGVyZSdzIHByb2JhYmx5IG9ubHkgb25lIGFwcGxpY2F0aW9uIHNvbWV3aGVyZSB0aGF0IHVzZXMKIyBzb21ldGhpbmcgZWxzZSBzbyBkb24ndCBleHBlY3QgdG8gY2hhbmdlIHRoaXMgdmFsdWUuCiMKU2VjQXJndW1lbnRTZXBhcmF0b3IgJgoKIyBTZXR0bGUgb24gdmVyc2lvbiAwICh6ZXJvKSBjb29raWVzLCBhcyB0aGF0IGlzIHdoYXQgbW9zdCBhcHBsaWNhdGlvbnMKIyB1c2UuIFVzaW5nIGFuIGluY29ycmVjdCBjb29raWUgdmVyc2lvbiBtYXkgb3BlbiB5b3VyIGluc3RhbGxhdGlvbiB0bwojIGV2YXNpb24gYXR0YWNrcyAoYWdhaW5zdCB0aGUgcnVsZXMgdGhhdCBleGFtaW5lIG5hbWVkIGNvb2tpZXMpLgojClNlY0Nvb2tpZUZvcm1hdCAwCgojIFNwZWNpZnkgeW91ciBVbmljb2RlIENvZGUgUG9pbnQuCiMgVGhpcyBtYXBwaW5nIGlzIHVzZWQgYnkgdGhlIHQ6dXJsRGVjb2RlVW5pIHRyYW5zZm9ybWF0aW9uIGZ1bmN0aW9uCiMgdG8gcHJvcGVybHkgbWFwIGVuY29kZWQgZGF0YSB0byB5b3VyIGxhbmd1YWdlLiBQcm9wZXJseSBzZXR0aW5nCiMgdGhlc2UgZGlyZWN0aXZlcyBoZWxwcyB0byByZWR1Y2UgZmFsc2UgcG9zaXRpdmVzIGFuZCBuZWdhdGl2ZXMuCiMKU2VjVW5pY29kZU1hcEZpbGUgdW5pY29kZS5tYXBwaW5nIDIwMTI3CgojIEltcHJvdmUgdGhlIHF1YWxpdHkgb2YgTW9kU2VjdXJpdHkgYnkgc2hhcmluZyBpbmZvcm1hdGlvbiBhYm91dCB5b3VyCiMgY3VycmVudCBNb2RTZWN1cml0eSB2ZXJzaW9uIGFuZCBkZXBlbmRlbmNpZXMgdmVyc2lvbnMuCiMgVGhlIGZvbGxvd2luZyBpbmZvcm1hdGlvbiB3aWxsIGJlIHNoYXJlZDogTW9kU2VjdXJpdHkgdmVyc2lvbiwKIyBXZWIgU2VydmVyIHZlcnNpb24sIEFQUiB2ZXJzaW9uLCBQQ1JFIHZlcnNpb24sIEx1YSB2ZXJzaW9uLCBMaWJ4bWwyCiMgdmVyc2lvbiwgQW5vbnltb3VzIHVuaXF1ZSBpZCBmb3IgaG9zdC4KU2VjU3RhdHVzRW5naW5lIE9uCgo=",
-	"php-config-directives.data":                           "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",
-	"php-errors.data":                                      "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",
-	"php-function-names-933150.data":                       "X19oYWx0X2NvbXBpbGVyCmFwYWNoZV9jaGlsZF90ZXJtaW5hdGUKYmFzZTY0X2RlY29kZQpiemRlY29tcHJlc3MKY2FsbF91c2VyX2Z1bmMKY2FsbF91c2VyX2Z1bmNfYXJyYXkKY2FsbF91c2VyX21ldGhvZApjYWxsX3VzZXJfbWV0aG9kX2FycmF5CmNvbnZlcnRfdXVkZWNvZGUKZmlsZV9nZXRfY29udGVudHMKZmlsZV9wdXRfY29udGVudHMKZnNvY2tvcGVuCmdldF9jbGFzc19tZXRob2RzCmdldF9jbGFzc192YXJzCmdldF9kZWZpbmVkX2NvbnN0YW50cwpnZXRfZGVmaW5lZF9mdW5jdGlvbnMKZ2V0X2RlZmluZWRfdmFycwpnemRlY29kZQpnemluZmxhdGUKZ3p1bmNvbXByZXNzCmluY2x1ZGVfb25jZQppbnZva2VhcmdzCnBjbnRsX2V4ZWMKcGNudGxfZm9yawpwZnNvY2tvcGVuCnBvc2l4X2dldGN3ZApwb3NpeF9nZXRwd3VpZApwb3NpeF9nZXR1aWQKcG9zaXhfdW5hbWUKUmVmbGVjdGlvbkZ1bmN0aW9uCnJlcXVpcmVfb25jZQpzaGVsbF9leGVjCnN0cl9yb3QxMwpzeXNfZ2V0X3RlbXBfZGlyCndwX3JlbW90ZV9mb3Blbgp3cF9yZW1vdGVfZ2V0CndwX3JlbW90ZV9oZWFkCndwX3JlbW90ZV9wb3N0CndwX3JlbW90ZV9yZXF1ZXN0CndwX3NhZmVfcmVtb3RlX2dldAp3cF9zYWZlX3JlbW90ZV9oZWFkCndwX3NhZmVfcmVtb3RlX3Bvc3QKd3Bfc2FmZV9yZW1vdGVfcmVxdWVzdAp6bGliX2RlY29kZQo=",
-	"php-function-names-933151.data":                       "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",
-	"php-variables.data":                                   "JEdMT0JBTFMKJEhUVFBfQ09PS0lFX1ZBUlMKJEhUVFBfRU5WX1ZBUlMKJEhUVFBfR0VUX1ZBUlMKJEhUVFBfUE9TVF9GSUxFUwokSFRUUF9QT1NUX1ZBUlMKJEhUVFBfUkFXX1BPU1RfREFUQQokSFRUUF9SRVFVRVNUX1ZBUlMKJEhUVFBfU0VSVkVSX1ZBUlMKJF9DT09LSUUKJF9FTlYKJF9GSUxFUwokX0dFVAokX1BPU1QKJF9SRVFVRVNUCiRfU0VSVkVSCiRfU0VTU0lPTgokYXJnYwokYXJndgo=",
-	"restricted-files.data":                                "IyBBcGFjaGUKIyAobm8gc2xhc2g7IGFsc28gZ3VhcmRzIGFnYWluc3Qgb2xkLmh0YWNjZXNzLCBvbGQuaHRwYXNzd2QsIGV0Yy4pCi5odGFjY2VzcwouaHRkaWdlc3QKLmh0cGFzc3dkCiMgaG9tZSBsZXZlbCBkb3RmaWxlcyAoa2VlcCBpbiBzeW5jIHdpdGggbGZpLW9zLWZpbGVzLmRhdGEpCi5hcHRpdHVkZS9jb25maWcKLmJhc2hfY29uZmlnCi5iYXNoX2hpc3RvcnkKLmJhc2hfbG9nb3V0Ci5iYXNoX3Byb2ZpbGUKLmJhc2hyYwouY2FjaGUvbm90aWZ5LW9zZC5sb2cKLmNvbmZpZy9vZGVzay9vZGVzayB0ZWFtLmNvbmYKLmNzaHJjCi5kcnVzaC8KLmdpdGNvbmZpZwouZ251cGcvCi5ocGxpcC9ocGxpcC5jb25mCi5rc2hfaGlzdG9yeQoubGVzc2hzdAoubGZ0cC8KLmxoaXN0b3J5Ci5sbGRiLWhpc3RvcnkKLmxvY2FsL3NoYXJlL21jLwoubXkuY25mCi5teXNxbF9oaXN0b3J5Ci5uYW5vX2hpc3RvcnkKLm5vZGVfcmVwbF9oaXN0b3J5Ci5uc3IKLnBlYXJyYwoucGhwX2hpc3RvcnkKLnBraS8KLnByb2ZpbGUKLnBzcWxfaGlzdG9yeQoucHl0aG9uX2hpc3RvcnkKLnJlZGlzY2xpX2hpc3RvcnkKLlJoaXN0b3J5Ci5zaF9oaXN0b3J5Ci5zcWxpdGVfaGlzdG9yeQouc3NoL2F1dGhvcml6ZWRfa2V5cwouc3NoL2NvbmZpZwouc3NoL2lkX2RzYQouc3NoL2lkX2RzYS5wdWIKLnNzaC9pZF9yc2EKLnNzaC9pZF9yc2EucHViCi5zc2gvaWRlbnRpdHkKLnNzaC9pZGVudGl0eS5wdWIKLnNzaC9rbm93bl9ob3N0cwouc3VidmVyc2lvbi9hdXRoCi5zdWJ2ZXJzaW9uL2NvbmZpZwouc3VidmVyc2lvbi9zZXJ2ZXJzCi50Y29ubi90Y29ubi5jb25mCi50Y3NocmMKLnZpZGFsaWEvdmlkYWxpYS5jb25mCi52aW1pbmZvCi52aW1yYwoueGF1dGhvcml0eQouemhpc3RvcnkKLnpzaHJjCi56c2hfaGlzdG9yeQoubnNjb25maWcKIyBWZXJzaW9uIGNvbnRyb2wKLy5naXQvCi8uZ2l0aWdub3JlCi8uaGcvCi8uaGdpZ25vcmUKLy5zdm4vCiMgV29yZHByZXNzCndwLWNvbmZpZy5waHAKd3AtY29uZmlnLmJhawp3cC1jb25maWcub2xkCndwLWNvbmZpZy50ZW1wCndwLWNvbmZpZy50bXAKd3AtY29uZmlnLnR4dAojIFN5bWZvbnkKL2NvbmZpZy9jb25maWcueW1sCi9jb25maWcvY29uZmlnX2Rldi55bWwKL2NvbmZpZy9jb25maWdfcHJvZC55bWwKL2NvbmZpZy9jb25maWdfdGVzdC55bWwKL2NvbmZpZy9wYXJhbWV0ZXJzLnltbAovY29uZmlnL3JvdXRpbmcueW1sCi9jb25maWcvc2VjdXJpdHkueW1sCi9jb25maWcvc2VydmljZXMueW1sCiMgRHJ1cGFsCi9zaXRlcy9kZWZhdWx0L2RlZmF1bHQuc2V0dGluZ3MucGhwCi9zaXRlcy9kZWZhdWx0L3NldHRpbmdzLnBocAovc2l0ZXMvZGVmYXVsdC9zZXR0aW5ncy5sb2NhbC5waHAKIyBNYWdlbnRvCi9hcHAvZXRjL2xvY2FsLnhtbAojIFN1YmxpbWUgVGV4dAovc2Z0cC1jb25maWcuanNvbgojIEFTUC5ORVQKL1dlYi5jb25maWcKIyBOb2RlCi9wYWNrYWdlLmpzb24KL3BhY2thZ2UtbG9jay5qc29uCi9ncnVudGZpbGUuanMKL25wbS1kZWJ1Zy5sb2cKL29ybWNvbmZpZy5qc29uCi90c2NvbmZpZy5qc29uCi93ZWJwYWNrLmNvbmZpZy5qcwoveWFybi5sb2NrCiMgQ29tcG9zZXIKL2NvbXBvc2VyLmpzb24KL2NvbXBvc2VyLmxvY2sKL3BhY2thZ2VzLmpzb24KIyBkb3RlbnYKLy5lbnYKIyBPU1gKLy5EU19TdG9yZQojIFdTIEZUUAovLndzX2Z0cC5pbmkKIyBjb21tb24sIG9sZCBuZXR3b3JrIGNvbmZpZyBmaWxlCi5uZXRyYwojIE5ldyBUb3AgTGV2ZWwgZG90ZmlsZXMKLnRodW5kZXJiaXJkLwoudm13YXJlLwoua3ViZS8KLmphdmEvCi5hbnlkZXNrLwouZG9ja2VyLwoubnBtLwoubnZtLwoubWluaWt1YmUvCi5hdG9tLwouYXdzL2NvbmZpZwouYXdzL2NyZWRlbnRpYWxzCi5jdXBzLwouZGJ1cy8KLmJvdG8KLmdlbS8KLmdub25tZS8KLmdzdXRpbC8KIyBOZXcgUGVyLVByb2plY3QgRmlsZXMKLmlkZWEKbmJwcm9qZWN0Lwpib3dlci5qc29uCi5ib3dlcnJjCi5lc2xpbnRyYwouanNoaW50cmMKLmdpdGxhYi1jaS55bWwKLnRyYXZpcy55bWwKZGF0YWJhc2UueW1sCkRvY2tlcmZpbGUK",
-	"restricted-upload.data":                               "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",
-	"scanners-headers.data":                                "YWN1bmV0aXgtcHJvZHVjdAooYWN1bmV0aXggd2ViIHZ1bG5lcmFiaWxpdHkgc2Nhbm5lcgphY3VuZXRpeC1zY2FubmluZy1hZ3JlZW1lbnQKYWN1bmV0aXgtdXNlci1hZ3JlZW1lbnQKbXl2YXI9MTIzNAp4LXJhdHByb3h5LWxvb3AKYnl0ZXM9MC0sNS0wLDUtMSw1LTIsNS0zLDUtNCw1LTUsNS02LDUtNyw1LTgsNS05LDUtMTAsNS0xMSw1LTEyLDUtMTMsNS0xNAp4LXNjYW5uZXIK",
-	"scanners-urls.data":                                   "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",
-	"scanners-user-agents.data":                            "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",
-	"scripting-user-agents.data":                           "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",
-	"sql-errors.data":                                      "TXlTcWxDbGllbnQuClNlcnZlciBtZXNzYWdlClNRTCBlcnJvcgpPcmFjbGUgZXJyb3IKSkVUIERhdGFiYXNlIEVuZ2luZQpQcm9jZWR1cmUgb3IgZnVuY3Rpb24gClNRTGl0ZS5FeGNlcHRpb24KW0lCTV1bQ0xJIERyaXZlcl1bREIyLzYwMDBdCnRoZSB1c2VkIHNlbGVjdCBzdGF0ZW1lbnRzIGhhdmUgZGlmZmVyZW50IG51bWJlciBvZiBjb2x1bW5zCm9yZy5wb3N0Z3Jlc3FsLnV0aWwuUFNRTEV4Y2VwdGlvbgpBY2Nlc3MgRGF0YWJhc2UgRW5naW5lCkluY29ycmVjdCBzeW50YXggbmVhcgpTeW50YXggZXJyb3IgaW4gc3RyaW5nIGluIHF1ZXJ5IGV4cHJlc3Npb24KU1FMaXRlRXhjZXB0aW9uCicgZG9lc24ndCBleGlzdApDTEkgRHJpdmVyCm9uIE15U1FMIHJlc3VsdCBpbmRleApzeWJhc2UKY29tLmluZm9ybWl4LmpkYmMKW015U1FMXVtPREJDCkVycm9yCmhhcyBvY2N1cnJlZCBpbiB0aGUgdmljaW5pdHkgb2Y6ClNpbnRheGlzIGluY29ycmVjdGEgY2VyY2EgZGUKTXlTUUwgc2VydmVyIHZlcnNpb24gZm9yIHRoZSByaWdodCBzeW50YXggdG8gdXNlCmNvbS5teXNxbC5qZGJjLmV4Y2VwdGlvbnMKWW91IGhhdmUgYW4gZXJyb3IgaW4geW91ciBTUUwgc3ludGF4IG5lYXIKWW91IGhhdmUgYW4gZXJyb3IgaW4geW91ciBTUUwgc3ludGF4OwpBbiBpbGxlZ2FsIGNoYXJhY3RlciBoYXMgYmVlbiBmb3VuZCBpbiB0aGUgc3RhdGVtZW50CnBnX3F1ZXJ5KCkgWzoKc3VwcGxpZWQgYXJndW1lbnQgaXMgbm90IGEgdmFsaWQgTXlTUUwKbXNzcWxfcXVlcnkoKQpteXNxbF9mZXRjaF9hcnJheSgpCkV4Y2VwdGlvbgpqYXZhLnNxbC5TUUxFeGNlcHRpb24KQ29sdW1uIGNvdW50IGRvZXNuJ3QgbWF0Y2ggdmFsdWUgY291bnQgYXQgcm93ClN5YmFzZSBtZXNzYWdlCiBTUUwgU2VydmVyClBvc3RncmVTUUwgcXVlcnkgZmFpbGVkOgpEeW5hbWljIFNRTCBFcnJvcgpTeXN0ZW0uRGF0YS5TUUxpdGUuU1FMaXRlRXhjZXB0aW9uClNRTGl0ZS9KREJDRHJpdmVyClVuY2xvc2VkIHF1b3RhdGlvbiBtYXJrIGJlZm9yZSB0aGUgY2hhcmFjdGVyIHN0cmluZwpTeXN0ZW0uRGF0YS5TcWxDbGllbnQuClVuY2xvc2VkIHF1b3RhdGlvbiBtYXJrIGFmdGVyIHRoZSBjaGFyYWN0ZXIgc3RyaW5nClN5c3RlbS5EYXRhLk9sZURiLk9sZURiRXhjZXB0aW9uCltETV9RVUVSWV9FX1NZTlRBWF0KW1NxbEV4Y2VwdGlvbgpVbmV4cGVjdGVkIGVuZCBvZiBjb21tYW5kIGluIHN0YXRlbWVudAp2YWxpZCBQb3N0Z3JlU1FMIHJlc3VsdApwZ19leGVjKCkgWzoKU1FMIFNlcnZlcgpbU1FMSVRFX0VSUk9SXQpNaWNyb3NvZnQgT0xFIERCIFByb3ZpZGVyIGZvciBPREJDIERyaXZlcnMKUG9zdGdyZVNRTApvcmcuaHNxbGRiLmpkYmMKQURPREIuRmllbGQgKDB4ODAwQTBCQ0QpClNRTCBzeW50YXgKRXhjZXB0aW9uIApTeXN0ZW0uRGF0YS5TcWxDbGllbnQuU3FsRXhjZXB0aW9uCkRhdGEgdHlwZSBtaXNtYXRjaCBpbiBjcml0ZXJpYSBleHByZXNzaW9uLgpEcml2ZXIKREIyIFNRTCBlcnJvcgpTeWJhc2UgbWVzc2FnZToKT1JBLQpbTWljcm9zb2Z0XVtPREJDIFNRTCBTZXJ2ZXIgRHJpdmVyXQonODAwNDBlMTQnCk1pY3Jvc29mdCBPTEUgREIgUHJvdmlkZXIgZm9yIFNRTCBTZXJ2ZXIKIGluIHF1ZXJ5IGV4cHJlc3Npb24KTnBnc3FsLgp2YWxpZCBNeVNRTCByZXN1bHQKc3VwcGxpZWQgYXJndW1lbnQgaXMgbm90IGEgdmFsaWQgUG9zdGdyZVNRTCByZXN1bHQKZGIyXwpJbmdyZXMgU1FMU1RBVEUKQ29sdW1uIGNvdW50IGRvZXNuJ3QgbWF0Y2gKV2FybmluZwpbTWljcm9zb2Z0XVtPREJDIE1pY3Jvc29mdCBBY2Nlc3MgRHJpdmVyXQpbTWFjcm9tZWRpYV1bU1FMU2VydmVyIEpEQkMgRHJpdmVyXQo8Yj5XYXJuaW5nPC9iPjogaWJhc2VfClJvYWRob3VzZS5DbXMuCkRCMiBTUUwgZXJyb3I6Cg==",
-	"unicode.mapping":                                      "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",
-	"unix-shell.data":                                      "JHtDRFBBVEh9CiR7RElSU1RBQ0t9CiR7SE9NRX0KJHtIT1NUTkFNRX0KJHtJRlN9CiR7T0xEUFdEfQoke09TVFlQRX0KJHtQQVRIfQoke1BXRH0KJENEUEFUSAokRElSU1RBQ0sKJEhPTUUKJEhPU1ROQU1FCiRJRlMKJE9MRFBXRAokT1NUWVBFCiRQQVRICiRQV0QKYmluL2Jhc2gKYmluL2NhdApiaW4vY3NoCmJpbi9kYXNoCmJpbi9kdQpiaW4vZWNobwpiaW4vZ3JlcApiaW4vbGVzcwpiaW4vbHMKYmluL21rbm9kCmJpbi9tb3JlCmJpbi9uYwpiaW4vcHMKYmluL3JiYXNoCmJpbi9zaApiaW4vc2xlZXAKYmluL3N1CmJpbi90Y3NoCmJpbi91bmFtZQpkZXYvZmQvCmRldi9udWxsCmRldi9zdGRlcnIKZGV2L3N0ZGluCmRldi9zdGRvdXQKZGV2L3RjcC8KZGV2L3VkcC8KZGV2L3plcm8KZXRjL2dyb3VwCmV0Yy9tYXN0ZXIucGFzc3dkCmV0Yy9wYXNzd2QKZXRjL3B3ZC5kYgpldGMvc2hhZG93CmV0Yy9zaGVsbHMKZXRjL3Nwd2QuZGIKcHJvYy9zZWxmLwp1c3IvYmluL2F3awp1c3IvYmluL2Jhc2U2NAp1c3IvYmluL2NhdAp1c3IvYmluL2NjCnVzci9iaW4vY2xhbmcKdXNyL2Jpbi9jbGFuZysrCnVzci9iaW4vY3VybAp1c3IvYmluL2RpZmYKdXNyL2Jpbi9lbnYKdXNyL2Jpbi9mZXRjaAp1c3IvYmluL2ZpbGUKdXNyL2Jpbi9maW5kCnVzci9iaW4vZnRwCnVzci9iaW4vZ2F3awp1c3IvYmluL2djYwp1c3IvYmluL2hlYWQKdXNyL2Jpbi9oZXhkdW1wCnVzci9iaW4vaWQKdXNyL2Jpbi9sZXNzCnVzci9iaW4vbG4KdXNyL2Jpbi9ta2ZpZm8KdXNyL2Jpbi9tb3JlCnVzci9iaW4vbmMKdXNyL2Jpbi9uY2F0CnVzci9iaW4vbmljZQp1c3IvYmluL25tYXAKdXNyL2Jpbi9wZXJsCnVzci9iaW4vcGhwCnVzci9iaW4vcGhwNQp1c3IvYmluL3BocDcKdXNyL2Jpbi9waHAtY2dpCnVzci9iaW4vcHJpbnRmCnVzci9iaW4vcHNlZAp1c3IvYmluL3B5dGhvbgp1c3IvYmluL3B5dGhvbjIKdXNyL2Jpbi9weXRob24zCnVzci9iaW4vcnVieQp1c3IvYmluL3NlZAp1c3IvYmluL3NvY2F0CnVzci9iaW4vdGFpbAp1c3IvYmluL3RlZQp1c3IvYmluL3RlbG5ldAp1c3IvYmluL3RvcAp1c3IvYmluL3VuYW1lCnVzci9iaW4vd2dldAp1c3IvYmluL3dobwp1c3IvYmluL3dob2FtaQp1c3IvYmluL3hhcmdzCnVzci9iaW4veHhkCnVzci9iaW4veWVzCnVzci9sb2NhbC9iaW4vYmFzaAp1c3IvbG9jYWwvYmluL2N1cmwKdXNyL2xvY2FsL2Jpbi9uY2F0CnVzci9sb2NhbC9iaW4vbm1hcAp1c3IvbG9jYWwvYmluL3BlcmwKdXNyL2xvY2FsL2Jpbi9waHAKdXNyL2xvY2FsL2Jpbi9weXRob24KdXNyL2xvY2FsL2Jpbi9weXRob24yCnVzci9sb2NhbC9iaW4vcHl0aG9uMwp1c3IvbG9jYWwvYmluL3JiYXNoCnVzci9sb2NhbC9iaW4vcnVieQp1c3IvbG9jYWwvYmluL3dnZXQK",
-	"windows-powershell-commands.data":                     "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",
-}