All Projects → CoolerVoid → Raptor_waf

CoolerVoid / Raptor_waf

Licence: gpl-2.0
Raptor - WAF - Web application firewall using DFA [ Current version ] - Beta

Programming Languages

c
50402 projects - #5 most used programming language

Projects that are alternatives of or similar to Raptor waf

Collection Document
Collection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+463.82%)
Mutual labels:  hacking, waf
Regex For Regular Folk
🔍💪 Regular Expressions for Regular Folk — A visual, example-based introduction to RegEx [BETA]
Stars: ✭ 242 (-1.63%)
Mutual labels:  regular-expressions
Lost Nds Tv
The Lost Nintendo DS Television Output, brought back to life
Stars: ✭ 221 (-10.16%)
Mutual labels:  hacking
Mercury
Mercury is a hacking tool used to collect information and use the information to further hurt the target
Stars: ✭ 236 (-4.07%)
Mutual labels:  hacking
Caldera
Automated Adversary Emulation Platform
Stars: ✭ 3,126 (+1170.73%)
Mutual labels:  hacking
Reverse Shell Generator
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
Stars: ✭ 238 (-3.25%)
Mutual labels:  hacking
Autosqli
An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.
Stars: ✭ 222 (-9.76%)
Mutual labels:  waf
Caesar
An HTTP based RAT (Remote Administration Tool) that allows you to remotely control devices from your browser
Stars: ✭ 240 (-2.44%)
Mutual labels:  hacking
Juice Shop Ctf
Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop
Stars: ✭ 238 (-3.25%)
Mutual labels:  hacking
Bugbountyscanner
A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
Stars: ✭ 229 (-6.91%)
Mutual labels:  hacking
Phishmailer
Generate Professional Phishing Emails Fast And Easy
Stars: ✭ 227 (-7.72%)
Mutual labels:  hacking
Cameradar
Cameradar hacks its way into RTSP videosurveillance cameras
Stars: ✭ 2,775 (+1028.05%)
Mutual labels:  hacking
Payloads
Git All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+1063.41%)
Mutual labels:  hacking
Secbox
🖤 网络安全与渗透测试工具导航
Stars: ✭ 222 (-9.76%)
Mutual labels:  waf
Hatch
Hatch is a brute force tool that is used to brute force most websites
Stars: ✭ 242 (-1.63%)
Mutual labels:  hacking
Cl Ppcre
Common Lisp regular expression library
Stars: ✭ 224 (-8.94%)
Mutual labels:  regular-expressions
Rubyfu
Rubyfu, where Ruby goes evil!
Stars: ✭ 228 (-7.32%)
Mutual labels:  hacking
Tangalanga
Tangalanga: the Zoom conference scanner hacking tool
Stars: ✭ 236 (-4.07%)
Mutual labels:  hacking
Thechoice
The linux choice collection tools
Stars: ✭ 245 (-0.41%)
Mutual labels:  hacking
Icg Autoexploiterbot
Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥
Stars: ✭ 242 (-1.63%)
Mutual labels:  hacking

Alt text

raptor_waf

Raptor is a Web application firewall made in C, uses DFA to block SQL injection, Cross-site scripting, and path traversal. http://funguscodes.blogspot.com.br/

THis is PoC version

Alt text

to follow these commands:

$ git clone https://github.com/CoolerVoid/raptor_waf

$ cd raptor_waf; make; bin/raptor

#Note: Don't execute with "cd bin; ./raptor" use full path "bin/raptor" look detail https://github.com/CoolerVoid/raptor_waf/issues/4

Need lib pcre to compile.

Example

Up some HTTPd server at port 80 redirect with raptor to port 8883

$ bin/Raptor -h localhost -p 80 -r 8883 -w 4 -o loglog.txt

Copy vulnerable PHP code to your webserver directory

$ cp doc/test_dfa/test.php /var/www/html

Now you can test XSS attacks at http://localhost:8883/test.php

Other option to run(now with regex, look file config/regex_rules.txt to edit rules):

$ bin/Raptor -h 127.0.0.1 -p 80 -r 8883 -w 0 -o resultwaf -m pcre

Check sec test

Alt text

Look at the docs

https://github.com/CoolerVoid/raptor_waf/blob/master/doc/raptor.pdf

Please look at this other WAF, if you need more performance and no race conditions https://github.com/CoolerVoid/OctopusWAF

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].