I looked through attacks in my access logs. Here's what I found

1. NoCommandLine-Analytics

   1 1 0 5.2

   Private Analytics for Google Cloud Serverless (GAE, Cloud Run)

   

   Been doing this for Apps deployed to Google App Engine (such attacks are also common to them) and then creating firewall rules blocking those IPs.

   After awhile, I decided to automate the process i.e. build an App [1] that runs on a schedule, parses the logs, identifies such traffic (spam/bots) and automatically creates the firewall rules. Since it's already parsing the logs, it also generates analytics for the Apps

   1. https://github.com/NoCommandLine/NoCommandLine-Analytics

2. CodeRabbit

   coderabbit.ai featured

   CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.

   

3. ct-woodpecker

   2 1 183 3.6 Go

   A tool to monitor a certificate transparency log for operational problems

   

   Was looking into Certificate Transparency logs recently. Are there any convenient tools/methods for querying CT logs? i.e. search for domains within a timeframe

   Cloudflare’s Merkle Town[0] is useful for getting overviews, but I haven’t found an easy way to query CT logs. ct-woodpecker[1] seems promising, too

   [0] https://ct.cloudflare.com/

   [1] https://github.com/letsencrypt/ct-woodpecker

4. clair

   3 23 10,586 9.0 Go

   Vulnerability Static Analysis for Containers

   

   Besides pointing pentester tools like metasploit at yourself, there are some nice scanners out there.

   https://github.com/quay/clair

   https://github.com/anchore/grype/

5. grype

   4 61 9,750 9.7 Go

   A vulnerability scanner for container images and filesystems

   

   Besides pointing pentester tools like metasploit at yourself, there are some nice scanners out there.

   https://github.com/quay/clair

   https://github.com/anchore/grype/

6. aws-solutions-constructs

   5 3 1,288 9.1 TypeScript

   The AWS Solutions Constructs Library is an open-source extension of the AWS Cloud Development Kit (AWS CDK) that provides multi-service, well-architected patterns for quickly defining solutions

   

   This is helpful! I found some CDK libraries that allows for connecting a load balancer or Cloudfront to WAF with a few lines of code. I'll give it a try! [1] [2].

   --

   1: https://github.com/awslabs/aws-solutions-constructs/tree/mai...

   2: https://constructs.dev/search?q=waf&cdk=aws-cdk&cdkver=2&lan...

7. UninvitedActivity

   6 4 132 10.0 Shell

   An attempt at creating some kind of auto-updating IP address blocklist

   

Suggest a related project