home / skills / jeremylongshore / claude-code-plugins-plus-skills / waf-rule-creator
This skill guides you through waf rule creator tasks, generating production-ready configurations and best-practice guidance for secure rules.
npx playbooks add skill jeremylongshore/claude-code-plugins-plus-skills --skill waf-rule-creatorReview the files below or copy the command above to add this skill to your agents.
---
name: "waf-rule-creator"
description: |
Create waf rule creator operations. Auto-activating skill for Security Advanced.
Triggers on: waf rule creator, waf rule creator
Part of the Security Advanced skill category. Use when working with waf rule creator functionality. Trigger with phrases like "waf rule creator", "waf creator", "waf".
allowed-tools: "Read, Write, Edit, Bash(cmd:*), Grep"
version: 1.0.0
license: MIT
author: "Jeremy Longshore <[email protected]>"
---
# Waf Rule Creator
## Overview
This skill provides automated assistance for waf rule creator tasks within the Security Advanced domain.
## When to Use
This skill activates automatically when you:
- Mention "waf rule creator" in your request
- Ask about waf rule creator patterns or best practices
- Need help with advanced security skills covering penetration testing, compliance frameworks, threat modeling, and enterprise security.
## Instructions
1. Provides step-by-step guidance for waf rule creator
2. Follows industry best practices and patterns
3. Generates production-ready code and configurations
4. Validates outputs against common standards
## Examples
**Example: Basic Usage**
Request: "Help me with waf rule creator"
Result: Provides step-by-step guidance and generates appropriate configurations
## Prerequisites
- Relevant development environment configured
- Access to necessary tools and services
- Basic understanding of security advanced concepts
## Output
- Generated configurations and code
- Best practice recommendations
- Validation results
## Error Handling
| Error | Cause | Solution |
|-------|-------|----------|
| Configuration invalid | Missing required fields | Check documentation for required parameters |
| Tool not found | Dependency not installed | Install required tools per prerequisites |
| Permission denied | Insufficient access | Verify credentials and permissions |
## Resources
- Official documentation for related tools
- Best practices guides
- Community examples and tutorials
## Related Skills
Part of the **Security Advanced** skill category.
Tags: pentesting, compliance, soc2, gdpr, threat-modeling
This skill automates creation and guidance for WAF rule authoring within advanced security workflows. It helps generate production-ready rules, validate configurations, and recommend patterns aligned with industry best practices. Use it to accelerate WAF deployments and reduce manual errors.
The skill inspects your request for WAF rule intents and activates when phrases like "waf rule creator" or "waf creator" are present. It provides step-by-step guidance, produces rule code or configuration snippets, and runs validation checks against common standards. Outputs include actionable rules, deployment notes, and remediation suggestions.
Which WAF platforms does this skill support?
It can generate rules and examples for common platforms like ModSecurity, AWS WAF, and Nginx ModSecurity patterns; adapt snippets as needed for other engines.
Can it test rules against live traffic?
The skill provides validation checks and test payloads but does not execute tests against live systems; use your staging environment and traffic replay tools for live validation.
How do I avoid blocking legitimate users?
Start with log-only mode, review logged matches, tune rule specificity, and add allowlists for known good traffic before enforcing blocks.