Posts

Modern web applications face a wide range of attack vectors, from SQL injection and XSS to remote code execution. A Web Application Firewall (WAF) inspects and filters HTTP traffic before it reaches your app, adding a safety net alongside secure coding, patching, and least-privilege deployments. It helps reduce exploit windows (virtual patching) while you remediate upstream. Here you’ll build a lightweight proof-of-concept with Docker Compose that layers ModSecurity v3 and the OWASP Core Rule Set (CRS) in front of a simple Node.js backend. The goal is to stand up a fast, tweakable lab: run CRS defaults, add one custom rule, observe logs, and understand how to move between DetectionOnly and blocking. ...

A Web Application Firewall (WAF) is a security solution that protects web applications by filtering and monitoring HTTP/HTTPS traffic between clients and the application. Unlike traditional firewalls that operate at the network level, a WAF focuses on the application layer, enabling it to detect and block threats targeting the specific logic of web applications. This includes inspecting and filtering URLs, form inputs, cookies, and other user-generated content. In addition to basic (rule based) filtering, many WAFs offer advanced features such as IP white- and blacklisting, which allow administrators to explicitly permit or block traffic from specific IP addresses or ranges. ...

Deadloop is my technical blog focused on cybersecurity, system administration, and software development. Welcome to a space where I share practical how-tos, code examples, and reproducible labs for developers, students, and security professionals. My goal is to share knowledge and highlight important topics I’ve encountered during 25 years working in IT and security architecture. My writing style is straightforward, fact-based, and hands-on. About Me I’m a cybersecurity architect working in government and run my own consulting business. I’ve programmed in many languages including C/C++, Python, PHP, C#, and also PL/I. ...