Share via

Updates to WAF OWASP 3.2 signatures

Russ Crosbie 40 Reputation points
21 Mar 2025, 22:08

We are using OWASP 3.2 and we've been noticing a number of false positives occurring where they have not happened in the past, but we have not made changes to our application. This article states "These rule sets, managed by Azure, receive updates as necessary to guard against new attack signatures."

https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/application-gateway-crs-rulegroups-rules

Please can you confirm if existing rules within OWASP 3.2 receive updates to their signatures, or are these changes rolled up into newer versions of OWASP, e.g. 3.3?

Thanks.

Azure Web Application Firewall
Accepted answer
  1. Rohith Vinnakota 3,570 Reputation points Microsoft External Staff
    22 Mar 2025, 00:14

    Hi @Russ Crosbie,

    Please can you confirm if existing rules within OWASP 3.2 receive updates to their signatures, or are these changes rolled up into newer versions of OWASP, e.g. 3.3?

    Yes, these changes are rolled up into a new version of OWASP.

    If you're noticing more false positives, consider reviewing the specific rules that are triggering these alerts. You can fine-tune or disable individual rules to better match your application's requirements.
    User's image

    refer this link: https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/application-gateway-crs-rulegroups-rules?tabs=drs21%2Cowasp30#tuning-of-managed-rule-sets

    Hope the above answer helps! Please let us know do you have any further queries.

    Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.