waf signature-rules
Use this command to list the IDs, names, and descriptions of signature rules.
You specify signatures in the config waf signature
command using the signature ID only. This command allows you to view the names and descriptions of the IDs.
Syntax
get waf signature-rules
Example
get waf signature-rules
This example output is the first four entries that the CLI displays when FortiWeb is configured with the default signatures only.
rule id : 110000009
main class id : 110000000
main class name : Bad Robot
sub class id : 000000000
sub class name : Bad Robot
rule description : This signature prevents Google Skipfish scanner from exploiting a vulnerability to include an arbitrary remote file with malicious PHP code and executing it in the context of the webserver process.
This attack can be achieved in HTTP request arguments.
rule id : 110000010
main class id : 110000000
main class name : Bad Robot
sub class id : 000000000
sub class name : Bad Robot
rule description : This signature checks whether the request came from Google Skipfish Web scanner.
The signature check region: user-agent field in http request header.
rule id : 110000011
main class id : 110000000
main class name : Bad Robot
sub class id : 000000000
sub class name : Bad Robot
rule description : This signature checks whether the request contains a string of a content scraper, which could be a part of virus.
The signature check region: user-agent field in http request header.
rule id : 110000012
main class id : 110000000
main class name : Bad Robot
sub class id : 000000000
sub class name : Bad Robot
rule description : This signature checks whether the request came from Acunetix Web Vulnerability Scanner.
The signature check region: http request url.