Raptor is a Web application firewall made in C, uses DFA to block SQL injection, Cross site scripting and path traversal.
To Run
$ git clone https://github.com/CoolerVoid/raptor_waf
$ cd raptor_waf; make; bin/raptor
Note: Don’t execute with “cd bin; ./raptor” use full path “bin/raptor” look detail https://github.com/CoolerVoid/raptor_waf/issues/4
Need lib pcre to compile.
Also Read – SilkETW : Tool To Abstract Away The Complexities Of ETW
Example
Up some HTTPd server at port 80 redirect with its port 8883
$ bin/Raptor -h localhost -p 80 -r 8883 -w 4 -o loglog.txt
Copy vulnerable PHP code to your web server directory
$ cp doc/test_dfa/test.php /var/www/html
Now you can test xss attacks at http://localhost:8883/test.php
Other option to run(now with regex, look file config/regex_rules.txt to edit rules):
$ bin/Raptor -h 127.0.0.1 -p 80 -r 8883 -w 0 -o resultwaf -m pcre
Introduction Google Dorking is a technique where advanced search operators are used to uncover information…
Introduction In cybersecurity and IT operations, logging fundamentals form the backbone of monitoring, forensics, and…
What is Networking? Networking brings together devices like computers, servers, routers, and switches so they…
Introduction In the world of Open Source Intelligence (OSINT), anonymity and operational security (OPSEC) are…
Introduction As cyber threats grow more sophisticated, organizations need more than just firewalls and antivirus…
Introduction When it comes to cybersecurity and ethical hacking, one of the most effective ways…