CyberMind-FR
e58f479cd4
Add detection patterns for latest actively exploited vulnerabilities: - CVE-2025-55182 (React2Shell, CVSS 10.0) - CVE-2025-8110 (Gogs RCE), CVE-2025-53770 (SharePoint) - CVE-2025-52691 (SmarterMail), CVE-2025-40551 (SolarWinds) - CVE-2024-47575 (FortiManager), CVE-2024-21887 (Ivanti) - CVE-2024-3400, CVE-2024-0012, CVE-2024-9474 (PAN-OS) New attack categories based on OWASP Top 10 2025: - HTTP Request Smuggling (TE.CL/CL.TE conflicts) - AI/LLM Prompt Injection (ChatML, instruction markers) - WAF Bypass techniques (Unicode normalization, double encoding) - Supply Chain attacks (CI/CD poisoning, dependency confusion) - Extended SSTI (Jinja2, Freemarker, Velocity, Thymeleaf) - API Abuse (BOLA/IDOR, mass assignment) CrowdSec scenarios split into 11 separate files for reliability. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| htdocs/luci-static/resources/view/dnsguard | ||
| root/usr | ||
| Makefile | ||
| README.md | ||
SecuBox DNS Guard
Privacy DNS manager with curated provider feed and DoH/DoT support.
Installation
opkg install luci-app-dnsguard
Access
LuCI menu: SecuBox -> Security -> DNS Guard
Features
- Curated list of privacy-focused DNS providers (FDN, Quad9, Mullvad, Cloudflare, AdGuard, etc.)
- One-click provider switching with automatic dnsmasq configuration
- DNS-over-HTTPS (DoH) and DNS-over-TLS (DoT) support
- Smart config recommendations based on category (privacy, security, adblock, family)
- Built-in DNS resolution tester
RPCD Methods
Backend: luci.dnsguard
| Method | Description |
|---|---|
status |
Current DNS mode, active provider, and primary/secondary servers |
get_providers |
List all available DNS providers |
get_config |
Get dnsmasq and AdGuard Home configuration |
set_provider |
Switch to a specific DNS provider |
smart_config |
Get smart configuration recommendations |
test_dns |
Test DNS resolution against a server |
apply |
Apply pending DNS changes |
Dependencies
luci-base
License
Apache-2.0