From 61599e739370e0de5b5a91ceb3d5d2d5d3557292 Mon Sep 17 00:00:00 2001
From: 0xInfection <theinfecteddrake@gmail.com>
Date: Tue, 2 Apr 2019 20:43:16 +0530
Subject: [PATCH] New modsecurity fingerprints

---
 README.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/README.md b/README.md
index 79787d7..41ab988 100644
--- a/README.md
+++ b/README.md
@@ -1014,8 +1014,11 @@ Wanna fingerprint WAFs? Lets see how.
                             <li><code>This error was generated by Mod_Security</code> text snippet.</li>
                             <li><code>One or more things in your request were suspicious</code> text snippet.</li>
                             <li><code>rules of the mod_security module</code> text snippet.</li>
+                            <li><code>mod_security rules triggered</code> text snippet.</li>
+                            <li>Reference to <code>/modsecurity-errorpage/</code> directory.</li>
                         </ul>
                     <li><code>Server</code> header may contain <code>Mod_Security</code> or <code>NYOB</code> keywords.</li>
+                    <li>Sometimes, the response code to an attack is <code>403</code> while the response phrase is <code>ModSecurity Action</code>.
                 </ul>
             </ul>
         </td>