Forum Discussion
samstep
Aug 25, 2018Cirrocumulus
Yes, it is possible. The signatures are stored in internal MySQL database and F5 provides a way to access it described in the knowledgebase article K11680.
See my detailed answer on DevCentral here:
https://devcentral.f5.com/questions/copying-system-supplied-attack-signatures-for-modification-49449
Hope this is useful (I get this question asked a lot).
Sam