feat(mitmproxy): Add modular WAF rules with CVE patterns and autoban fixes
- Add waf-rules.json with 46 patterns across 8 categories:
- sqli, xss, lfi, rce (OWASP Top 10)
- cve_2024 (recent CVE exploits)
- scanners, webmail, api_abuse
- Add waf_loader.py dynamic rules loader module
- Add mitmproxy-waf-sync UCI to JSON config sync script
- Fix GeoIP: install geoip2 package in container
- Fix autoban: add cron job, lower min_severity to "high"
- Enable WAF for webmail (mail.secubox.in)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
CyberMind-FR
e31e43b8d7