https://github.com/one2r/modsecurity-audit-agent
modsecurity 审计代理
https://github.com/one2r/modsecurity-audit-agent
Last synced: 9 days ago
JSON representation
modsecurity 审计代理
- Host: GitHub
- URL: https://github.com/one2r/modsecurity-audit-agent
- Owner: One2r
- License: apache-2.0
- Created: 2023-05-30T06:02:23.000Z (about 3 years ago)
- Default Branch: main
- Last Pushed: 2023-12-07T06:28:56.000Z (over 2 years ago)
- Last Synced: 2025-02-22T04:26:22.373Z (over 1 year ago)
- Language: Go
- Size: 70.3 KB
- Stars: 3
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# modsecurity-audit-agent
modsecurity 审计代理
## 功能
- 接收 modsecurity 审计日志,存入 elasticsearch
- IP 黑白名单添加、删除接口
## 依赖
- modsecurity 3.0.x
- redis with RedisBloom
- elasticsearch
## 使用
1. 编译项目
```
cd /path/to/modsecurity-audit-agent
make
```
2. 修改配置
```
cd /path/to/modsecurity-audit-agent
cp ./config.yaml.example ./configs/config.yaml
vim ./configs/config.yaml
```
3. 启动
```
cd /path/to/modsecurity-audit-agent
./modsecurity-audit-agent
```
4. 配置 modsecurity
```
vim modsecurity.conf
## 修改如下配置
SecAuditLogType HTTPS
SecAuditLog http://127.0.0.1:8080/waf/audit-log
```