CyberMind-FR
e58f479cd4
Add detection patterns for latest actively exploited vulnerabilities: - CVE-2025-55182 (React2Shell, CVSS 10.0) - CVE-2025-8110 (Gogs RCE), CVE-2025-53770 (SharePoint) - CVE-2025-52691 (SmarterMail), CVE-2025-40551 (SolarWinds) - CVE-2024-47575 (FortiManager), CVE-2024-21887 (Ivanti) - CVE-2024-3400, CVE-2024-0012, CVE-2024-9474 (PAN-OS) New attack categories based on OWASP Top 10 2025: - HTTP Request Smuggling (TE.CL/CL.TE conflicts) - AI/LLM Prompt Injection (ChatML, instruction markers) - WAF Bypass techniques (Unicode normalization, double encoding) - Supply Chain attacks (CI/CD poisoning, dependency confusion) - Extended SSTI (Jinja2, Freemarker, Velocity, Thymeleaf) - API Abuse (BOLA/IDOR, mass assignment) CrowdSec scenarios split into 11 separate files for reliability. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| .github/workflows | ||
| demo | ||
| htdocs/luci-static/resources | ||
| root | ||
| Makefile | ||
| README.md | ||
Auth Guardian for OpenWrt
Version: 0.4.0
Last Updated: 2025-12-28
Status: Active
Comprehensive authentication and session management system.
Features
🎨 Captive Portal
- Customizable splash pages
- Logo and branding support
- Terms of service acceptance
🔑 OAuth Integration
- Google Sign-In
- GitHub Authentication
- Facebook Login
- Twitter/X Login
🎟️ Voucher System
- Generate access codes
- Time-limited validity
- Bandwidth restrictions
🍪 Session Management
- Secure cookies (HttpOnly, SameSite)
- Session timeout control
- Concurrent session limits
⏭️ Bypass Rules
- MAC whitelist
- IP whitelist
- Domain exceptions
Installation
opkg update
opkg install luci-app-auth-guardian
License
MIT License - CyberMind Security