Create test for block page on non-existent path

Question

Hello
I am trying to build an attack signature that will allow our team to visit a URL that does not exist on any of our websites to ensure the ASM is blocking for that site.  This will also be used to test changes to the Response pages.
Is there any known way to create an attack signature that will block traversal to a path that does not exist on the server?  This is the rudimentary testing signature that I put together from some documentation, but I don't seem to be getting the block\response page.
uricontent:"cmd.exe"; nocase; objonly;

Any help would be greatly appreciated.
Thanks.

iaine · Answer

Hi&nbsp;
Your custom signature looks good to block requests with cmd.exe in the path.  Is your signature still in staging and so therefore won't block the request?  Have you enforced the signature on your policy so that it blocks these requests?&nbsp;

Forum Discussion

Create test for block page on non-existent path

1 Reply

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

Create a DevCentral account

Block traffic

DNS NXDOMAIN Handler - No More Non-Existent Domain

domain blocking

Block IP after a number of ASM Blocks