Export waf owasp managed rulesets for analysis

Razzi29 331 Reputation points
2024-04-04T13:06:59+00:00

I have a couple of application gateways, each having its own waf rulesets. I am trying to export the rules to a CSV so I can compare the differences between them, is there a good way to do this either software tool, CLI/PS or GUI? Any assistance is appreciated. Cheers

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,069 questions
Azure Web Application Firewall
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. ChaitanyaNaykodi-MSFT 26,106 Reputation points Microsoft Employee
    2024-04-04T19:19:10.9666667+00:00

    @Razzi29

    Thank you for reaching out.

    Based on my understanding of your question above,

    Are you trying to compare the differences between the configuration of these managed rules for the WAFs? If yes you can run this REST API call which will retrieve the WAF policy with specified name within a resource group. The API call will list the disabled Managed rules for the WAF, custom rules set-up and exclusions.

    OR

    If you just wish to compare Managed rules like DRS 2.1, OWASP 3.2 etc. These rules are listed here

    User's image

    Thanks

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.