7/30/2020 Appendix B: Matrix of all f5 WAF Tester Attacks

F5 Web Application Firewall Solutions (../../../index.html) > Class 6: AWAF in a CI/CD Pipeline (../../class6.html) > Module 2: Policy
testing - Intro to f5 WAF Tester (secops engineer) (../module2.html) Source (../../../_sources/class6/module2/lab5/lab5.rst.txt) |

Appendix B: Matrix of all f5 WAF Tester Attacks¶

Signature
Test ID Attack Type Name System Type ID
100000001 XSS HTML Tag Injection - All Signature 200000097
script Systems
Signature 200001088

Signature 200000099

100000002 XSS HTML Attribute Injection All Signature 200101163

- onmouseover Systems
Signature 200101162

Signature 200101164

100000003 XSS HTML Attribute Injection All Signature 200001406

- onmouseover Systems
Signature 200001405

Signature 200001404

100000004 SQL Injection SQL-Injection - integer General Signature 200002554

eld UNION Database
Signature 200002611

Signature 200002495

100000005 SQL Injection Blind SQL-Injection General Signature 200002546

Database
Signature 200002045

https://clouddocs.f5.com/training/community/waf/html/class6/module2/lab5/lab5.html 1/4
7/30/2020 Appendix B: Matrix of all f5 WAF Tester Attacks

Signature
Test ID Attack Type Name System Type ID
Signature 200001404

100000006 SQL Injection Authentication Bypass General Signature 200002836

SQL Injection Database
Signature 200002835

Signature 200002837

100000007 NoSQL MongoDB Injection - MongoDB Signature 200002784

Injection db.getCollectionNames()
Signature 200002783

Signature 200002785

100000008 Command Linux Command Unix/Linux Signature 200003412

Execution Execution - uname()
Signature 200003921

Signature 200100315

100000009 Command Windows Command Microsoft Signature 200003574

Execution Exeuction - powershell Windows
Signature 200003573

Signature 200003575

100000010 Path Traversal Path Traversal All Signature 200003055

Systems
Signature 200003054

100000011 Predictable Predictable Resource All Signature 200001404

Resource Location Systems
Location
https://clouddocs.f5.com/training/community/waf/html/class6/module2/lab5/lab5.html 2/4
7/30/2020 Appendix B: Matrix of all f5 WAF Tester Attacks

Signature
Test ID Attack Type Name System Type ID
100000012 HTTP Protocol Null in request All Violation HTTP
Compliance Systems protocol
compliance
- Null in
request
100000013 Detection Alternative Datastream Microsoft Signature 200001404
Evasion Access Windows
100000014 Insecure Insecure Deserialization node.js Signature 200004283
Deserialization - node.js
Signature 200004282

Signature 200004284

100000015 Insecure Insecure Deserialization PHP Signature 200004189

Deserialization - PHP
Signature 200004188

Signature 200004190

100000016 Information Illegal Method TRACE All Violation Illegal

Leakage systems Method
100000017 JSON Parser Malformed JSON All Violation Malformed
Attack systems JSON data
100000018 XML Parser Malformed XML All Violation Malformed
Attack systems XML data
100000019 HTTP Parser Cookie not RFC- All Violation Cookies -
Attack compliant systems not RFC-
compliant
100000020 HTTP Parser Cookie not RFC- All Violation Cookies -
Attack compliant systems not RFC-
compliant
100000021 HTTP Parser Wrong HTTP Protocol All Violation HTTP
Attack Version systems protocol
compliance
failed
100000022 HTTP Request HTTP Desync Attack All Signature 200018061
Smuggling Attempt systems

https://clouddocs.f5.com/training/community/waf/html/class6/module2/lab5/lab5.html 3/4
7/30/2020 Appendix B: Matrix of all f5 WAF Tester Attacks

Signature
Test ID Attack Type Name System Type ID
100000023 Server Side SSRF attempt (AWS All Signature 200018040
Request Metadata Server) systems
Forgery
100000024 Server Side SSRF attempt - Local All Signature 200020201
Request network IP range 10.x.x.x systems
Forgery

https://clouddocs.f5.com/training/community/waf/html/class6/module2/lab5/lab5.html 4/4