This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
Amir_Rehman
Contributor
‎2019-02-10 09:46 AM

Custom Application Control (Check Point Signature Tool)

Hello There,

I am trying to create a custom app to block keywords  based on HTML page content. I have created the one (below screenshot) to block a keyword "Momo" in the body. 

It works for http sites  and as well as Https sites with https inspection enabled.

The problem is that it produces a lot of false positives. It blocks almost every site with https inspection enabled. Does anybody know if the app needs more fields or customization in http scenario (screen shot 2 ).

0 Kudos
Reply
1 Reply
G_W_Albrecht
Champion
Champion
‎2019-02-11 01:59 AM

That is rather easy - you are using the regular expression [momo] that will match every single little m character in source html! You can see that here: Online regex tester and debugger: PHP, PCRE, Python, Golang and JavaScript 

Look at my tests:

RegEx is RegEx - has been discussed here already, e.g. URL Filtering Policy

0 Kudos
Reply