ModSecurity Trustwave

Contact

ModSecurity for Apache is a product developed by Trustwave's SpiderLabs Team and made available under an open source licence. SpiderLabs is engaged to popularise web application firewall technologies and make them widely accessible.

Community User Support Community support for ModSecurity is available on the mod-security-users mailing list. You must subscribe first in order to post. The list archives are available as News (NNTP), Threaded HTTP, Bloggy HTTP, and RSS.

NOTE: Support for the Core Rule Set has moved to a the owasp-modsecurity-core-rule-set mail list.
Community Developer Support Community developer support for ModSecurity is available on the mod-security-developers mailing list. You must subscribe first in order to post. The list archives are available as Developer Archives,
Commercial Services SpiderLabs recently announced a new program entitled "360 Application Security Program" which provides a holistic approach to identifying and remediating web application vulnerabilities. Services include custom virtual patching rules development using ModSecurity.
General Questions, Comments and Bug Reports If you believe you have encountered a bug in ModSecurity, please first check in our Issues (which tracks both defects and requested/planned improvements, starting with version 2.5.6).

If you have a general question or comment about the website or other hosted applications please submit it to support/modsecurity.org.
Security We take security very seriously! If you need to report a security problem please write to security/modsecurity.org

Support Request Checklist

There is a detailed Support request checklist document, which lists all the information that may be needed to successfully resolve your problem.