Home

Awesome

<p align="center"> <img src="/images/banner.png" width="400" /> </p> <h4 align="center"> SafeLine - Make your web apps secure </h4> <p align="center"> <a target="_blank" href="https://waf.chaitin.com/">๐Ÿ  Website</a> &nbsp; | &nbsp; <a target="_blank" href="https://docs.waf.chaitin.com/">๐Ÿ“– Docs</a> &nbsp; | &nbsp; <a target="_blank" href="https://demo.waf.chaitin.com:9443/">๐Ÿ” Live Demo</a> &nbsp; | &nbsp; <a target="_blank" href="https://discord.gg/SVnZGzHFvn">๐Ÿ™‹โ€โ™‚๏ธ Discord</a> &nbsp; | &nbsp; <a target="_blank" href="/README_CN.md">ไธญๆ–‡็‰ˆ</a> </p>

๐Ÿ‘‹ INTRODUCTION

SafeLine is a self-hosted WAF(Web Application Firewall) to protect your web apps from attacks and exploits.

A web application firewall helps protect web apps by filtering and monitoring HTTP traffic between a web application and the Internet. It typically protects web apps from attacks such as SQL injection, XSS, code injection, os command injection, CRLF injection, ldap injection, xpath injection, RCE, XXE, SSRF, path traversal, backdoor, bruteforce, http-flood, bot abused, among others.

๐Ÿ’ก How It Works

<img src="/images/how-it-works.png" width="800" />

By deploying a WAF in front of a web application, a shield is placed between the web application and the Internet. While a proxy server protects a client machineโ€™s identity by using an intermediary, a WAF is a type of reverse-proxy, protecting the server from exposure by having clients pass through the WAF before reaching the server.

A WAF protects your web apps by filtering, monitoring, and blocking any malicious HTTP/S traffic traveling to the web application, and prevents any unauthorized data from leaving the app. It does this by adhering to a set of policies that help determine what traffic is malicious and what traffic is safe. Just as a proxy server acts as an intermediary to protect the identity of a client, a WAF operates in similar fashion but acting as an reverse proxy intermediary that protects the web app server from a potentially malicious client.

its core capabilities include:

โšก๏ธ Screenshots

<img src="./images/screenshot-1.png" width=370 /><img src="./images/screenshot-2.png" width=370 />
<img src="./images/screenshot-3.png" width=370 /><img src="./images/screenshot-4.png" width=370 />

Get Live Demo

๐Ÿ”ฅ FEATURES

List of the main features as follows:

๐Ÿงฉ Showcases

Legitimate UserMalicious User
Block Web Attacks<img src="./images/skeleton.png" width=270 /><img src="./images/blocked-for-attack-detected.png" width=270 />
Rate Limiting<img src="./images/skeleton.png" width=270 /><img src="./images/blocked-for-access-too-fast.png" width=270 />
Anti-Bot Challenge<img src="./images/captcha-1.gif" width=270 /><img src="./images/captcha-2.gif" width=270 />
Auth Challenge<img src="./images/auth-1.gif" width=270 /><img src="./images/auth-2.gif" width=270 />
HTML Dynamic Protection<img src="./images/dynamic-html-1.png" width=270 /><img src="./images/dynamic-html-2.png" width=270 />
JS Dynamic Protection<img src="./images/dynamic-js-1.png" width=270 /><img src="./images/dynamic-js-2.png" width=270 />

๐Ÿš€ Quickstart

[!WARNING] ไธญๅ›ฝๅคง้™†็”จๆˆทๅฎ‰่ฃ…ๅ›ฝ้™…็‰ˆๅฏ่ƒฝไผšๅฏผ่‡ดๆ— ๆณ•่ฟžๆŽฅไบ‘ๆœๅŠก๏ผŒ่ฏทๆŸฅ็œ‹ ไธญๆ–‡็‰ˆๅฎ‰่ฃ…ๆ–‡ๆกฃ

๐Ÿ“ฆ Installing

Information on how to install SafeLine can be found in the Install Guide

โš™๏ธ Protecting Web Apps

to see Configuration

๐Ÿ“‹ More Informations

Effect Evaluation

MetricModSecurity, Level 1CloudFlare, FreeSafeLine, BalanceSafeLine, Strict
Total Samples33669336693366933669
Detection69.74%10.70%71.65%76.17%
False Positive17.58%0.07%0.07%0.22%
Accuracy82.20%98.40%99.45%99.38%

Is SafeLine Production-Ready?

Yes, SafeLine is production-ready.

๐Ÿ™‹โ€โ™‚๏ธ Community

Join our Discord to get community support, the core team members are identified by the STAFF role in Discord.

Several contact options exist for our community, the primary one being Discord. These are in addition to GitHub issues for creating a new issue.

<p align="left"> <a target="_blank" href="https://discord.gg/SVnZGzHFvn"><img src="https://img.shields.io/badge/Discord-5865F2?style=flat&logo=discord&logoColor=white"></a> &nbsp; <a target="_blank" href="https://x.com/safeline_waf"><img src="https://img.shields.io/badge/X.com-000000?style=flat&logo=x&logoColor=white"></a> &nbsp; <a target="_blank" href="/images/wechat.png"><img src="https://img.shields.io/badge/WeChat-07C160?style=flat&logo=wechat&logoColor=white"></a> </p>

๐Ÿ’ช PRO Edition

Coming soon!

๐Ÿ“ License

See LICENSE for details.