Block XSS in ASM

Import it into ESXi
Login through Console
L: root
P: default
# cat /etc/network/interfaces
#iface eth0 inet dhcp
iface eth0 inet static
address 10.0.20.60
netmask 255.255.255.0
gateway 10.0.20.1
Without rebooting, we can do these
# ifconfig eth0 10.0.20.60/24
# route add default gw 10.0.20.1
# cat /etc/resolv.conf
nameserver     8.8.8.8
nameserver     8.8.4.4
# apt-get update
# apt-get upgrade
Before we protect using F5, we can login using XSS
Type “‘ or 1=1#” (without double quotes) in login
Image
Now we configure F5 to protect from XSS

-Create Pool PoolAuction

Image

-Create Virtual Server VsAuction

VsAuction
Destination Address: 10.0.15.60
Service Port: 443 HTTPS
Protocol: TCP
Protocol Profile (Client): tcp
Protocol Profile (Server): (Use Client Profile)
HTTP Profile: http
VLAN and Tunnel Traffic: All VLANs and Tunnels
Source Address Translation: Auto Map
click Resources
Default Pool: PoolAuction

-Create VsAuction Security Policy
go to Security/Application Security/Security Policies/Active Policies
click Create

Image

-Configure Attack Signature
Go to Security/Application Security/Attack Signature/Attack Signature Configuration
Image

-Test
In your browser, go to https://10.0.15.60
and Type “‘ or 1=1#” (without double quotes” in login
the result is

Image
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s