secubox-openwrt

gandalf/secubox-openwrt

Fork 0

Commit Graph

Author	SHA1	Message	Date
CyberMind-FR	c69ae43961	feat(interceptor,ddos): Add Insider WAF pillar and DDoS hardening profile InterceptoR Insider WAF (6th pillar): - RPCD: get_insider_waf_status() tracking LAN client threats - Dashboard: 🔒 Insider WAF card with threat stats - CrowdSec scenarios for insider threats: - C2 beacon, exfiltration, DNS tunneling, lateral movement - Cryptominer, IoT botnet, suspicious TLDs, high volume DDoS Protection Hardening: - Config Advisor: 8 DDoS checks (SYN cookies, conntrack, RP filter, ICMP rate, CrowdSec http-dos, HAProxy maxconn, mitmproxy WAF, Vortex) - ANSSI rules: New "ddos" category with remediation steps - Documentation: DOCS/DDOS-PROTECTION.md with full guide Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-02-12 10:46:16 +01:00
CyberMind-FR	1fb2b11d4a	feat(crowdsec+haproxy): Dashboard refactor, custom parsers & scenarios CrowdSec Dashboard: - Refactor all views (alerts, bouncers, decisions, overview, settings) - Add soc.css for Security Operations Center styling - Remove 3000+ lines of redundant code CrowdSec Custom Parsers & Scenarios: - Add secubox-gitea parser and bruteforce scenario - Add secubox-haproxy parser and bruteforce scenario - Add secubox-streamlit parser and bruteforce scenario - Add secubox-webapp parser and bruteforce scenario - Update Makefile for new parser/scenario files HAProxy: - Update api.js, backends.js view improvements - Update luci.haproxy RPCD backend - Update haproxyctl helper script Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-27 11:16:17 +01:00
CyberMind-FR	3e52444a73	feat(crowdsec): Add custom CrowdSec scenarios package for SecuBox - Add secubox-app-crowdsec-custom package with: - HTTP auth bruteforce detection - Path scanning detection - LuCI/uhttpd auth monitoring - Trusted IP whitelist for private networks - Fix Lyrion Docker image path to ghcr.io/lms-community/lyrionmusicserver:stable Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-22 14:50:36 +01:00

Author

SHA1

Message

Date

CyberMind-FR

c69ae43961

feat(interceptor,ddos): Add Insider WAF pillar and DDoS hardening profile

InterceptoR Insider WAF (6th pillar):
- RPCD: get_insider_waf_status() tracking LAN client threats
- Dashboard: 🔒 Insider WAF card with threat stats
- CrowdSec scenarios for insider threats:
  - C2 beacon, exfiltration, DNS tunneling, lateral movement
  - Cryptominer, IoT botnet, suspicious TLDs, high volume

DDoS Protection Hardening:
- Config Advisor: 8 DDoS checks (SYN cookies, conntrack, RP filter,
  ICMP rate, CrowdSec http-dos, HAProxy maxconn, mitmproxy WAF, Vortex)
- ANSSI rules: New "ddos" category with remediation steps
- Documentation: DOCS/DDOS-PROTECTION.md with full guide

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-02-12 10:46:16 +01:00

CyberMind-FR

1fb2b11d4a

feat(crowdsec+haproxy): Dashboard refactor, custom parsers & scenarios

CrowdSec Dashboard:
- Refactor all views (alerts, bouncers, decisions, overview, settings)
- Add soc.css for Security Operations Center styling
- Remove 3000+ lines of redundant code

CrowdSec Custom Parsers & Scenarios:
- Add secubox-gitea parser and bruteforce scenario
- Add secubox-haproxy parser and bruteforce scenario
- Add secubox-streamlit parser and bruteforce scenario
- Add secubox-webapp parser and bruteforce scenario
- Update Makefile for new parser/scenario files

HAProxy:
- Update api.js, backends.js view improvements
- Update luci.haproxy RPCD backend
- Update haproxyctl helper script

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-27 11:16:17 +01:00

CyberMind-FR

3e52444a73

feat(crowdsec): Add custom CrowdSec scenarios package for SecuBox

- Add secubox-app-crowdsec-custom package with:
  - HTTP auth bruteforce detection
  - Path scanning detection
  - LuCI/uhttpd auth monitoring
  - Trusted IP whitelist for private networks
- Fix Lyrion Docker image path to ghcr.io/lms-community/lyrionmusicserver:stable

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-22 14:50:36 +01:00

3 Commits