26 Resources
Golang firewall Libraries
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
Open Source API Firewall API Firewall is a high-performance proxy with API request and response validation based on OpenAPI/Swagger schema. It is desi
CetusGuard is a tool that allows to protect the Docker daemon socket by filtering the calls to its API endpoints.
CetusGuard CetusGuard is a tool that allows to protect the Docker daemon socket by filtering the calls to its API endpoints. Some highlights: It is wr
Use Terraform to build and deploy configurations for Juniper SRX firewalls.
Juniper Terraform - SRX Overview The goal of this project is to provide an example method to interact with Juniper SRX products with Terraform. 📋 Ter
NetTrust is a Dynamic Firewall Authorizer
NetTrust is a Dynamic Firewall Authorizer. It uses a DNS as a source of truth to allow/deny outbund requests
SailFirewall - Linux firewall powered by eBPF and XDP
SailFirewall Linux firewall powered by eBPF and XDP Requirements Go 1.16+ Linux
Quick and simple parser for PFSense XML configuration files, good for auditing firewall rules
pfcfg-parser version 0.0.1 : 13 January 2022 A quick and simple parser for PFSense XML configuration files to generate a plain text file of the main c
UFW-Autoblacklist - Script that allow you to ban-ip all spammers
Setup: go build main.go tcptrack -i interface | ./main
Middleware for Blocking IP ranges by inserting CIDR Blocks and searching IPs through those blocks
firewall Middleware for Blocking IP ranges by inserting CIDR Blocks and searching IPs through those blocks. Features Easy to use Efficient and Fast Co
A controller(CES) for controlling container egress traffic. Working with F5 AFM.
Container Egress Services (CES) Kubernetes is piloting projects transition to enterprise-wide application rollouts, companies must be able to extend t
A Declarative Cloud Firewall Reverse Proxy Solution with Companion Mobile App
A declarative Cloud firewall reverse proxy solution with inbuilt DDoS protection and alerting mechanism to protect your servers and keeping an eye on those malicious requests
The rest api that can manage the iptables rules of the remote host
fiewall-api firewall api是基于firewalld来远程管理iptables规则的rest-api,无需部署agent Features 指定一个主机ip,让这个主机上的iptables增加一个规则 处理单个IP或CIDR范围(xx.xx.xx.xx/mask,mac,inte
Akuma Scan comes with the purpose of scanning/detecting WAF (Web Application Firewall) on a certain website. Made to be easy, accurate and agile.
.m. ,_ ' ;M; ,;m ` ;M;.
4chain is a simple、fast reverse proxy to help you expose a local server behind a NAT or firewall to the Internet.
4Chain What is 4chain? 4chain is a simple、fast reverse proxy to help you expose a local server behind a NAT or firewall to the Internet. Using the ssh
Coraza WAF is a golang modsecurity compatible web application firewall library
Coraza Web Application Firewall, this project is a Golang port of ModSecurity with the goal to become the first enterprise-grade Open Source Web Application Firewall, flexible and powerful enough to serve as the baseline for many projects.
CrowdSec - an open-source massively multiplayer firewall able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global IP reputation database to protect the user network.
📚 Documentation 💠 Configuration Hub 💬 Discourse (Forum) 💬 Gitter (Live chat) 💃 This is a community driven project, we need your feedback. TL;DR
Packiffer is a lightweight cross-platform networking toolkit that let you sniff/analyze/inject/filter packets.
Packiffer is a lightweight cross-platform networking toolkit that let you sniff/analyze/inject/filter packets.
Certificate authority and access plane for SSH, Kubernetes, web applications, and databases
Teleport is an identity-aware, multi-protocol access proxy which understands SSH, HTTPS, Kubernetes API, MySQL and PostgreSQL wire protocols.
rconn is a multiplatform program for creating generic reverse connections. Lets you consume services that are behind firewall or NAT without opening ports or port-forwarding.
rconn (r[everse] conn[ection]) is a multiplatform program for creating reverse connections. It lets you consume services that are behind NAT and/or fi
A web-based testing platform for WAF (Web Application Firewall)'s correctness
WAFLab 🐾 WAFLab is a web-based platform for testing WAFs. Live Demo https://waflab.org/ Architecture WAFLab contains 2 parts: Name Description Langua
Cloud Native Tunnel
inlets is a Cloud Native Tunnel written in Go Expose your local endpoints to the Internet or within a remote network, without touching firewalls. Foll
Package for controlling the Windows firewall (aka Windows Filtering Platform, WFP)
wf What This is a package for controlling the Windows Filtering Platform (WFP), also known as the Windows firewall. See its docs: https://godoc.org/in
一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发,可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面,内网dns解析、内网socks5代理等等……,并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal.
NPS README|中文文档 NPS is a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal. Feature C
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
frp README | 中文文档 What is frp? frp is a fast reverse proxy to help you expose a local server behind a NAT or firewall to the Internet. As of now, it s
Open Source Web Application Firewall
DEPRECATED This repository started as a good idea but I didn't have enough time or desire to work on it. So, it's left here for historical / education
zero-trust remote firewall instrumentation
ShieldWall embraces the zero-trust principle and instruments your server firewall to block inbound connections from every IP on any port, by default.