https://github.com/vstanchev/wafty

Simple firewall that prevents XSS, SQLi, filters by IP and blocks file uploads
https://github.com/vstanchev/wafty

go golang libinjection security waf

Last synced: 6 months ago
JSON representation

Simple firewall that prevents XSS, SQLi, filters by IP and blocks file uploads

• Host: GitHub
• URL: https://github.com/vstanchev/wafty
• Owner: vstanchev
• Created: 2019-06-15T10:43:58.000Z (about 7 years ago)
• Default Branch: master
• Last Pushed: 2020-07-03T14:13:43.000Z (almost 6 years ago)
• Last Synced: 2024-06-20T03:45:22.677Z (about 2 years ago)
• Topics: go, golang, libinjection, security, waf
• Language: C
• Homepage:
• Size: 3.61 MB
• Stars: 3
• Watchers: 1
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
## Simple Web Application Firewall

## Features

 - XSS and SQL injection detection and blocking

 - Whitelist/blacklist of IP Addresses

 - Block file uploads by file extension

## Configuration

Configuration is in `config.toml`

```toml

# Forward requests to this URL

Upstream = "http://127.0.0.1:8000"

# Listen for requests on this address

ListenAddress = ":8080"

# Block or allow only these IP addresses, allowed modes are "whitelist" and "blacklist"

IpFilterMode = "whitelist"

# Array of IP Addresses that are whitelisted/blacklisted

IpAddresses = [

    "127.0.0.1"

]

# Block file uploads by extension

DenyExtensions = [

    "php",

    "aspx",

    "sh",

    "html",

    "jsp"

]

```

### To run

```bash

$ make run

```

### Execute test scripts with

```bash

$ make run-tests

```