Accepts incoming events and correctly parses them into events. GeoLite2 integration complete"
This commit is contained in:
Dan Milne
28
README.md
28
README.md
@@ -1,6 +1,6 @@
|
||||
# Baffle Hub
|
||||
|
||||
**Rails 8 WAF analytics and automated rule management system**
|
||||
**Rails 8 WAF analytics and automated rule management system** ⚠️ **Experimental**
|
||||
|
||||
Baffle Hub provides intelligent Web Application Firewall (WAF) analytics with automated rule generation. It combines real-time threat detection with SQLite-based local storage for ultra-fast request filtering.
|
||||
|
||||
@@ -12,12 +12,36 @@ Baffle Hub provides intelligent Web Application Firewall (WAF) analytics with au
|
||||
- **Forward Auth Integration** - Compatible with Caddy, Traefik, and NGINX
|
||||
- **Docker Ready** - Containerized deployment with Kamal
|
||||
|
||||
## Status
|
||||
|
||||
### ✅ Complete
|
||||
- Event ingestion API with DSN authentication
|
||||
- Comprehensive data normalization (hosts, paths, IPs)
|
||||
- Basic analytics dashboard
|
||||
- Background job processing system
|
||||
- Docker deployment setup
|
||||
|
||||
### 🚧 In Progress
|
||||
- Rule management framework
|
||||
- IP range blocking rules
|
||||
- Country-based blocking (via IP ranges)
|
||||
- Forward auth endpoint implementation
|
||||
|
||||
### 📋 TODO
|
||||
- Advanced pattern analysis and threat detection
|
||||
- Automatic rule generation algorithms
|
||||
- Rate limiting engine
|
||||
- Challenge/redirect mechanisms
|
||||
- Unix socket support for ultra-low latency
|
||||
- Multi-node rule synchronization
|
||||
- Advanced analytics visualizations
|
||||
- Real-time rule updates
|
||||
|
||||
## Quick Start
|
||||
|
||||
### Prerequisites
|
||||
|
||||
- Ruby 3.x
|
||||
- PostgreSQL 14+
|
||||
- Docker (optional)
|
||||
|
||||
### Installation
|
||||
|
||||
Reference in New Issue
Block a user