Update of ZENEDGE WAF script

2025-12-09 06:01:29 +00:00 · 2018-08-30 15:56:13 +02:00
parent 62a3618353
commit 287371337d
3 changed files with 5 additions and 4 deletions
--- a/waf/zenedge.py
+++ b/waf/zenedge.py
@@ -16,8 +16,9 @@ def detect(get_page):
    retval = False

    for vector in WAF_ATTACK_VECTORS:
-        _, headers, code = get_page(get=vector)
+        page, headers, code = get_page(get=vector)
        retval = code >= 400 and re.search(r"\AZENEDGE", headers.get(HTTP_HEADER.SERVER, ""), re.I) is not None
+        retval |= all(_ in (page or "") for _ in ("Your request has been blocked", "Incident ID", "/__zenedge/assets/"))
        if retval:
            break