Tempesta WebShield

Automatic detection and blocking bad bots (DDoS, shopping bots, scrappers, booking bots and others) by TLS and HTTP fingerprints or IP based on Tempesta FW access logs stored in the Clickhouse database.

The current version 0.1 is experimental and should not be used in production.

Wiki

Requirements

Python 3.12 <=
Tempesta FW 0.8.0 <=
Clickhouse 25.6.0 <=

Install

git clone https://github.com/tempesta-tech/webshield.git
cd webshield
sudo setup.sh

Prepare

Before running the application, you need to prepare Tempesta FW:

Configure Tempesta Logger.
Modify your Tempesta FW configuration and add the tfh and tft include directories
Start Tempesta FW with Tempesta Logger enabled
Start ClickHouse DB and ensure the access_log table exists.

Run

systemctl start tempesta-webshield.service

See logs

journalctl -f -u tempesta-webshield

Run tests

To run the tests you need to copy GeoLite2-City.mmdb to tests/ directory.

# run all tests with a logging level INFO
pytest

Format project

black .
isort .

Name		Name	Last commit message	Last commit date
Latest commit History 17 Commits
blockers		blockers
core		core
deployment		deployment
detectors		detectors
tests		tests
utils		utils
.gitignore		.gitignore
README.md		README.md
app.py		app.py
cli.py		cli.py
config.py		config.py
example.env		example.env
pytest.ini		pytest.ini
requirements.txt		requirements.txt
setup.sh		setup.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Tempesta WebShield

Wiki

Requirements

Install

Prepare

Run

See logs

Run tests

Format project

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Tempesta WebShield

Wiki

Requirements

Install

Prepare

Run

See logs

Run tests

Format project

About

Topics

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages