Added toggleWaf.sh

This commit is contained in:
Mariusz B. / mgeeky 2020-05-05 15:03:36 +02:00
parent c1df22ba32
commit 1138751330
2 changed files with 41 additions and 0 deletions

View File

@ -9,3 +9,5 @@ $ ./find-nessus-plugin.sh 62940
- **`openvas-automate.sh`** - A simple OpenVAS scanner automation script. If you want to use your custom defined scan type - you'll need to edit script's code, especially `targets` array and `if` decision statement in lines 111-137. [gist](https://gist.github.com/mgeeky/a038f809dff4d308db94f5f657908da7)
- **`prepare-kali.sh`** - A script that supplies fresh Kali installation with set of initial packages, configurations, wordlists (`/root/data`) and a big repository of tools I've found useful (located in `/root/tools`). ([gist](https://gist.github.com/mgeeky/39d1681e44804f089d1553cc7597e628))
- **`toggleWaf.sh`** - Simple script used to quickly enable/disable ModSecurity on Apache2

39
linux/toggleWaf.sh Normal file
View File

@ -0,0 +1,39 @@
#!/bin/bash
modname=security2
friendlyname=WAF
if [ $# -ne 1 ]; then
echo "Usage: ./toggleWaf <on|off|status>"
exit 1
fi
case $1 in
"on")
if [ $EUID -ne 0 ]; then
echo "[!] This function must be run as root. Use sudo."
exit 1
fi
a2enmod $modname > /dev/null
systemctl reload apache2
echo "[+] $friendlyname enabled."
;;
"off")
if [ $EUID -ne 0 ]; then
echo "[!] This function must be run as root. Use sudo."
exit 1
fi
a2dismod $modname > /dev/null
systemctl reload apache2
echo "[-] $friendlyname disabled."
;;
"status")
if a2query -m $modname 2> /dev/null | grep -q 'enabled' ; then
echo "[+] $friendlyname is enabled."
else
echo "[-] $friendlyname is disabled."
fi
;;
esac