8000 Update Exploit Prevention's compatibility table by Julio-Guerra · Pull Request #29325 · DataDog/documentation · GitHub
[go: up one dir, main page]
Skip to content

Update Exploit Prevention's compatibility table #29325

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 1 commit into from
Closed

Update Exploit Prevention's compatibility table #29325

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
17 changes: 12 additions & 5 deletions content/en/security/application_security/threats/exploit-prevention.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -60,13 +60,14 @@ AAP Exploit Prevention intercepts all SQL queries to determine if a user paramet

### Library Compatibility

The table below outlines the minimum required versions of Datadog libraries needed for Exploit Prevention.

| Exploit Type | .NET | Python | Go | Java | Node.js | PHP | Ruby |
| Exploit Type | [.NET][5] | [Python][6] | [Go][7] | [Java][8] | [Node.js][9] | [PHP][10] | [Ruby][11] |
|------------------------------------|------------------|------------------|-------------------------|------------------|------------------|------------------|-------------------|
| Server-side Request Forgery (SSRF) | v3.3.0 | v2.15.0 | v1.70.1 | v1.42.0 | v5.20.0, v4.44.0 | Avail. in Q1 '25 | Avail. in Q1 '25 |
| Local File Inclusion (LFI) | v3.5.0 | v2.15.0 | [orchestrion][3] v1.0.0 | v1.42.0 | v5.24.0, v4.48.0 | Avail. in Q1 '25 | Avail. in Q1 '25 |
| SQL Injection (SQLi) | v3.4.0 | v2.16.0 | v1.70.1 | v1.42.0 | v5.25.0, v4.49.0 | Avail. in Q1 '25 | Avail. in Q4 '24 |
| Command Injection | v3.4.0 | v2.15.0 | Avail. in Q4 '24 | v1.45.0 | v5.25.0, v4.49.0 | Avail. in Q1 '25 | Avail. in Q1 '25 |
| Server-side Request Forgery (SSRF) | v3.3.0 | v2.15.0 | v1.70.1 | v1.42.0 | v5.20.0, v4.44.0 | v1.7.0 | v2.15.0 |
| Local File Inclusion (LFI) | v3.5.0 | v2.15.0 | [orchestrion][3] v1.0.0 | v1.42.0 | v5.24.0, v4.48.0 | v1.6.0 | Not supported |
| SQL Injection (SQLi) | v3.4.0 | v2.16.0 | v1.70.1 | v1.42.0 | v5.25.0, v4.49.0 | v1.9.0 | v2.15.0 |
| Command Injection | v3.4.0 | v2.15.0 | Not supported | v1.45.0 | v5.25.0, v4.49.0 | Not supported | Not supported |

## Enabling Exploit Prevention

Expand Down Expand Up @@ -106,3 +107,9 @@ In addition, AAP also generates a signal correlating all the blocked traces and
[2]: /agent/remote_config/?tab=configurationyamlfile#enabling-remote-configuration
[3]: /tracing/trace_collection/automatic_instrumentation/dd_libraries/go/#overview
[4]: https://app.datadoghq.com/security/appsec/in-app-waf
[6]: https://github.com/DataDog/dd-trace-dotnet
[7]: https://github.com/DataDog/dd-trace-go
[8]: https://github.com/DataDog/dd-trace-py
[9]: https://github.com/DataDog/dd-trace-js
[10]: https://github.com/DataDog/dd-trace-php
[11]: https://github.com/DataDog/dd-trace-rb
Loading
0