Longjing is Chinese green tea with a lot of antioxiants which can prevent you from getting cancer. Longjing Web Application Firewall (WAF) is deep learning driven and it is designed to protect your web application from being attacked by SQL Injection (SQLi).
Longjing WAF is developed in Python 3 and Scikit-Learn Python Library. It uses a simple neural network to build the model. It is not designed for high performance and it supports Linux systems only.
SQLi is one of the top 10 vulnerabilities in OWASP Top 10 2017. SQLi leads to data leakage and system compromised. It is a critical vulnerability for web applications.
Longjing WAF is easy to install and deploy on modern Linux systems. The higher performance of the CPU, the higher efficiency of the Longjing WAF. The accuracy of the detection rate of SQLi is over 99%.
Longjing WAF's training data and modelling code are not open sourced. However, the running python code and model built are open sourced, which is released under GPLv3 by Samiux.
Longjing is the next generation Web Application Firewall! Fetch and try!
pip install mitmproxy --upgrade
(D) Install Longjing
tar -xvzf longjing-0.10.2.tar.gz
- NET_INF is the network interface of the mitmproxy to be listening
- PORT is port number of the mitmproxy to be listening, e.g. 8080
- CERT is the location path of the private key TLS/SSL certificate of the domain when available. It should be starting with --certs.