hi, I implemented modsecurity and clamav in a server, and used rules, modsecurity_crs_46_av_scanning.conf modsecurity_crs_45_trojans.conf
The found out during upload of php-reverse-shell.php file clamav wont detect it as a malware and modsecurity wont block it. similarly the modsecurity_crs_45_trojans.conf wont detect it. Is there any way I can detect reverse-shell files and similar malware?? Many thanks.
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
