synapse-waf 0.9.0

High-performance WAF and reverse proxy with embedded intelligence — built on Cloudflare Pingora
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65

[
    {
        "id": 1,
        "description": "SQL Injection - OR condition",
        "risk": 80.0,
        "blocking": true,
        "matches": [
            {"type": "uri", "match": {"type": "regex", "match": "(?i)'\\s*or\\s*'"}}
        ]
    },
    {
        "id": 2,
        "description": "SQL Injection - UNION SELECT",
        "risk": 90.0,
        "blocking": true,
        "matches": [
            {"type": "uri", "match": {"type": "regex", "match": "(?i)union\\s+select"}}
        ]
    },
    {
        "id": 3,
        "description": "XSS - Script tag",
        "risk": 70.0,
        "blocking": true,
        "matches": [
            {"type": "uri", "match": {"type": "regex", "match": "(?i)<script"}}
        ]
    },
    {
        "id": 4,
        "description": "XSS - Event handler",
        "risk": 70.0,
        "blocking": true,
        "matches": [
            {"type": "uri", "match": {"type": "regex", "match": "(?i)on\\w+\\s*="}}
        ]
    },
    {
        "id": 5,
        "description": "Path Traversal",
        "risk": 85.0,
        "blocking": true,
        "matches": [
            {"type": "uri", "match": {"type": "regex", "match": "\\.\\./"}}
        ]
    },
    {
        "id": 6,
        "description": "Command Injection - Backticks",
        "risk": 95.0,
        "blocking": true,
        "matches": [
            {"type": "uri", "match": {"type": "regex", "match": "`[^`]+`"}}
        ]
    },
    {
        "id": 7,
        "description": "Command Injection - Subshell",
        "risk": 95.0,
        "blocking": true,
        "matches": [
            {"type": "uri", "match": {"type": "regex", "match": "\\$\\([^)]+\\)"}}
        ]
    }
]