{"id":4299,"date":"2016-10-04T01:56:06","date_gmt":"2016-10-03T17:56:06","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=4299"},"modified":"2016-10-04T02:01:39","modified_gmt":"2016-10-03T18:01:39","slug":"raptor-waf-c-based-web-application-firewall","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2016\/10\/raptor-waf-c-based-web-application-firewall\/","title":{"rendered":"Raptor WAF &#8211; C Based Web Application Firewall"},"content":{"rendered":"<p>Raptor WAF is a Web Application Firewall made in C, using DFA to block SQL Injection, Cross Site Scripting (XSS) and Path Traversal.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2016\/10\/Raptor-WAF-C-Based-Web-Application-Firewall-640x398.png\" alt=\"Raptor WAF - C Based Web Application Firewall\" width=\"640\" height=\"398\" class=\"aligncenter size-medium wp-image-4300\" srcset=\"https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2016\/10\/Raptor-WAF-C-Based-Web-Application-Firewall-640x398.png 640w, https:\/\/www.darknet.org.uk\/wp-content\/uploads\/2016\/10\/Raptor-WAF-C-Based-Web-Application-Firewall.png 974w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>DFA stands for Deterministic Finite Automaton also known as a Deterministic Finite State Machine.<\/p>\n<p>It&#8217;s essentially a simple web application firewall made in C, using the KISS principle, making polls using the select() function, it&#8217;s not better than epoll() or kqueue() from *BSD but it is portable.<\/p>\n<h3>Features<\/h3>\n<p>WAF stands for Web Application Firewall. It is widely used nowadays to detect and defend against most commonly SQL Injections and XSS attacks.<\/p>\n<ul>\n<li>Block XSS, SQL Injection attacks and path traversal<\/li>\n<li>Blacklist IPs to block users using config\/blacklist ip.txt<\/li>\n<li>Supports IPv6 and IPv4 for communication<\/li>\n<\/ul>\n<script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3033787195489589\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<!-- Darknet Responsive Post Ad Links [previously link ad unit] -->\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-client=\"ca-pub-3033787195489589\"\r\n     data-ad-slot=\"5456620019\"\r\n     data-ad-format=\"auto\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script>\n<h4>Coming in the Future<\/h4>\n<ul>\n<li>DoS protection<\/li>\n<li>Request limits<\/li>\n<li>Rule interpreter<\/li>\n<li>Malware detection for uploads<\/li>\n<li>SSL\/TLS Support<\/li>\n<\/ul>\n<p>Do bear in mind this is an early stage almost PoC tool and not really production tested or ready, I think it&#8217;d be a great project to contribute to and most people don&#8217;t need a super complex WAF &#8211; just something REALLY reliable, stable, performant and blocks 80-90% of the common attacks.<\/p>\n<p>Other options for a WAF:<\/p>\n<p>&#8211; <a href=\"https:\/\/www.darknet.org.uk\/2016\/03\/naxsi-open-source-waf-nginx\/\">NAXSI \u2013 Open-Source WAF For Nginx<\/a><br \/>\n&#8211; <a href=\"https:\/\/www.darknet.org.uk\/2015\/10\/amazon-aws-web-application-firewall-waf-launched\/\">Amazon AWS Web Application Firewall (WAF ) Launched<\/a><br \/>\n&#8211; <a href=\"https:\/\/www.darknet.org.uk\/2015\/11\/modsecurity-open-source-web-application-firewall\/\">ModSecurity \u2013 Open Source Web Application Firewall<\/a><\/p>\n<p>You can download Raptor WAF here:<\/p>\n<p><a href=\"https:\/\/github.com\/CoolerVoid\/raptor_waf\/archive\/0.2.zip\">raptor_waf-0.2.zip<\/a><\/p>\n<p>Or read more <a href=\"https:\/\/github.com\/CoolerVoid\/raptor_waf\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Raptor WAF is a Web Application Firewall made in C, using DFA to block SQL Injection, Cross Site Scripting (XSS) and Path Traversal. DFA stands for Deterministic Finite Automaton also known as a Deterministic Finite State Machine. It&#8217;s essentially a simple web application firewall made in C, using the KISS principle, making polls using the [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"Raptor WAF is a Web Application Firewall made in C, using DFA to block SQL Injection, Cross Site Scripting (XSS) and Path Traversal.","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[12,11],"tags":[8724,4784],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/4299"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=4299"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/4299\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=4299"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=4299"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=4299"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}