include rules/crs-setup.conf include rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf include rules/REQUEST-901-INITIALIZATION.conf include rules/REQUEST-905-COMMON-EXCEPTIONS.conf include rules/REQUEST-911-METHOD-ENFORCEMENT.conf include rules/REQUEST-913-SCANNER-DETECTION.conf include rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf include rules/REQUEST-921-PROTOCOL-ATTACK.conf include rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf include rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf include rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf include rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf include rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf include rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf include rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf include rules/REQUEST-949-BLOCKING-EVALUATION.conf include rules/RESPONSE-950-DATA-LEAKAGES.conf include rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf include rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf include rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf include rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf include rules/RESPONSE-959-BLOCKING-EVALUATION.conf include rules/RESPONSE-980-CORRELATION.conf include rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf