We consult on the implementation and conception of Modsecurity as a Web Application Firewall (WAF). Typical installations employ the OWASP ModSecurity Core Rule Set (CRS). The CRS is a generic set of rules for detecting attacks. It offers protection against many common attack categories such as SQL injection, cross-site scripting and local file inclusion. However, we also have experience in creating a custom rule set as well as successfully implementing a white box approach for ModSecurity as a WAF.
We consult on various technical IT and security management topics. Choosing the right security control and implementing it can prove difficult. Beeing it a technical security control, a certification process issue or implementation obstacle in security management, we can help.
As a security consulting service provider we offer short-term support. We are your experts helping your team out, instead of staffing up your team for a longer time period. We are not the type of consultants who work full-time in your offices over the course of several months. The binsec team is there to provide advice and short-term support. Our services are remunerated on an hourly or daily rate.