Meet teler-waf: Security-focused HTTP middleware for the Go framework

the teler-waf tool offers software developers a means to uncover web-based vulnerabilities in Go-based applications

[Vulnerabilities] [Open Source Software] [Hacking Tools]

A developer has released a new tool for Go applications that is designed to combat web-based attacks.

Developer and security engineer Dwi Siswanto revealed the open source teler-waf software on January 2. The 24-year-old said on Twitter that the technology was designed to “improve the security of Go-based web applications”.

Available on GitHub, teler-waf acts as HTTP middleware, with an interface for integrating intrusion detection system (IDS) functionality into existing applications.

Teler-waf’s security functions include protection against common web-based threats, such as cross-site scripting (XSS) attacks and SQL injections.

Furthermore, the tool will detect bad IP addresses linked to known threat actors and botnets; malicious HTTP referers, crawlers, and scrapers suspected of causing performance issues or performing illicit data scraping; and locations associated with directory-based brute-force attacks.

More

More From Author

Exclusive: CISA’s Jen Easterly wants to protect US hospitals following spate of ransomware attacks

Alert: Hackers Actively Exploiting Critical “Control Web Panel” RCE Vulnerability

Leave a Reply