Fortinet black logo

CLI Reference

waf signature-rules

waf signature-rules

Use this command to list the IDs, names, and descriptions of signature rules.

You specify signatures in the config waf signature command using the signature ID only. This command allows you to view the names and descriptions of the IDs.

Syntax

get waf signature-rules

Example

get waf signature-rules

This example output is the first four entries that the CLI displays when FortiWeb is configured with the default signatures only.

rule id : 110000009

main class id : 110000000

main class name : Bad Robot

sub class id : 000000000

sub class name : Bad Robot

rule description : This signature prevents Google Skipfish scanner from exploiting a vulnerability to include an arbitrary remote file with malicious PHP code and executing it in the context of the webserver process.

This attack can be achieved in HTTP request arguments.

rule id : 110000010

main class id : 110000000

main class name : Bad Robot

sub class id : 000000000

sub class name : Bad Robot

rule description : This signature checks whether the request came from Google Skipfish Web scanner.

The signature check region: user-agent field in http request header.

rule id : 110000011

main class id : 110000000

main class name : Bad Robot

sub class id : 000000000

sub class name : Bad Robot

rule description : This signature checks whether the request contains a string of a content scraper, which could be a part of virus.

The signature check region: user-agent field in http request header.

rule id : 110000012

main class id : 110000000

main class name : Bad Robot

sub class id : 000000000

sub class name : Bad Robot

rule description : This signature checks whether the request came from Acunetix Web Vulnerability Scanner.

The signature check region: http request url.

Related topics

waf signature-rules

Use this command to list the IDs, names, and descriptions of signature rules.

You specify signatures in the config waf signature command using the signature ID only. This command allows you to view the names and descriptions of the IDs.

Syntax

get waf signature-rules

Example

get waf signature-rules

This example output is the first four entries that the CLI displays when FortiWeb is configured with the default signatures only.

rule id : 110000009

main class id : 110000000

main class name : Bad Robot

sub class id : 000000000

sub class name : Bad Robot

rule description : This signature prevents Google Skipfish scanner from exploiting a vulnerability to include an arbitrary remote file with malicious PHP code and executing it in the context of the webserver process.

This attack can be achieved in HTTP request arguments.

rule id : 110000010

main class id : 110000000

main class name : Bad Robot

sub class id : 000000000

sub class name : Bad Robot

rule description : This signature checks whether the request came from Google Skipfish Web scanner.

The signature check region: user-agent field in http request header.

rule id : 110000011

main class id : 110000000

main class name : Bad Robot

sub class id : 000000000

sub class name : Bad Robot

rule description : This signature checks whether the request contains a string of a content scraper, which could be a part of virus.

The signature check region: user-agent field in http request header.

rule id : 110000012

main class id : 110000000

main class name : Bad Robot

sub class id : 000000000

sub class name : Bad Robot

rule description : This signature checks whether the request came from Acunetix Web Vulnerability Scanner.

The signature check region: http request url.

Related topics