Skip to content
/ wafty Public

Simple firewall that prevents XSS, SQLi, filters by IP and blocks file uploads

3 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

vstanchev/wafty

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
lib
lib
 
 
.gitignore
.gitignore
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
config.toml
config.toml
 
 
contact.php
contact.php
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
index.php
index.php
 
 
main.go
main.go
 
 
run-tests.sh
run-tests.sh
 
 
run.sh
run.sh
 
 

Repository files navigation

Simple Web Application Firewall

Features

  • XSS and SQL injection detection and blocking
  • Whitelist/blacklist of IP Addresses
  • Block file uploads by file extension

Configuration

Configuration is in config.toml

# Forward requests to this URL
Upstream = "http://127.0.0.1:8000"

# Listen for requests on this address
ListenAddress = ":8080"

# Block or allow only these IP addresses, allowed modes are "whitelist" and "blacklist"
IpFilterMode = "whitelist"

# Array of IP Addresses that are whitelisted/blacklisted
IpAddresses = [
    "127.0.0.1"
]

# Block file uploads by extension
DenyExtensions = [
    "php",
    "aspx",
    "sh",
    "html",
    "jsp"
]

To run

$ make run

Execute test scripts with

$ make run-tests

About

Simple firewall that prevents XSS, SQLi, filters by IP and blocks file uploads

Topics

go golang security waf libinjection

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages