How to log custom http headers in ModSecurity Warning while using OWASP Core Rule Set

I have three custom HTTP headers called X-Username, X-Role and X-Realm, I want to log the content of this header in the warning logs when some of the the rules are matched for a HTTP request.
I have edited one rule to log the header values… Continue reading How to log custom http headers in ModSecurity Warning while using OWASP Core Rule Set

Where can I learn the complete architecture of Modsecurity WAF and how it works in depth ? This is for a research on current WAF technologies [closed]

I am currently working on a security research project on WAF.
To understand the complete working of a WAF, I am planning to get started with Modsecurity WAF; its architecture and how it works to protect web servers. But all I can find is g… Continue reading Where can I learn the complete architecture of Modsecurity WAF and how it works in depth ? This is for a research on current WAF technologies [closed]