Skip to content
/ WebGuard Public

WebGuard是根据 风起师傅的RedGuard 和 mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配

License

Apache-2.0 license
29 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sairson/WebGuard

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
example
example
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
WebGuard.go
WebGuard.go
 
 
cfg.yml
cfg.yml
 
 
fileter_test.go
fileter_test.go
 
 
filter.go
filter.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
location.go
location.go
 
 
locaton_test.go
locaton_test.go
 
 
parse.go
parse.go
 
 
proxy.go
proxy.go
 
 
request.go
request.go
 
 

Repository files navigation

WebGuard

WebGuard是根据风起师傅的RedGuard和mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配

  • 例子:
package main

import (
	"fmt"
	"github.com/sairson/WebGuard"
	"net/http"
)

func main() {
	guard := WebGuard.New("cfg.yml", true, handler)
	http.HandleFunc("/", guard.RunGuard())
	http.ListenAndServe(":8555", nil)
}

func handler(w http.ResponseWriter, r *http.Request) {
	fmt.Println("ok")
}
  • 满足用户定义规则

image

  • 不满足用户定义规则,跳转到用户定义的360.net网址

image

程序会根据用户在cfg.yml进行规则匹配,当http或https请求流量传入后,会走WebGuard的规则匹配,如果满足则放行继续走我们的handler控制函数,否则的话,会根据配置进行流量drop或者反代到指定域名。以扰乱溯源人员分析

About

WebGuard是根据 风起师傅的RedGuard 和 mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配

Resources

Readme

License

Apache-2.0 license
Activity

Stars

29 stars

Watchers

4 watching

Forks

4 forks
Report repository

Releases 2

小bug,解决一下 Latest
Jun 15, 2022
+ 1 release

Packages

No packages published

Languages