There are 7 repositories under netfilter topic.
Insert trace-points into the running configuration to observe the path of packets through the iptables chains.
⚔️🧱🔥🛑IP BAN Block Allow GEOIP country traffic limit server input/output to IP countries with iptables+xt_geoip, auto db-ip update, firewall fail2ban gfw ufw cidr blacklist netfilter rules persistent restrict netaddr xtables linux debian ubuntu apache nginx web server anti hack ddos firewalld ipblocks ipdeny ip ranges MaxMind ipset
Bash script to create nftables sets of country specific IP address ranges for use with firewall rulesets. The project provides a simple and flexible way to implement geolocation filtering with nftables. It can be a useful tool to reduce the chance of malware, ransomware and phishing attempts as well as mitigating the effects of DDoS attacks.
A Linux kernel IPC firewall and logger for Android and Binder
Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
Geographical host protection for Linux/FreeBSD
A very simple script that uses special iptables rules and sysctl tweaks that protects your server(s) against many different network attacks.
Allow/deny traffic in nftables using country specific IP blocks
Aggregated AbuseIPDB blocklists with worst IPv4 & IPv6 offenders (~100% confidence)
Docker container for intercepting packets with scapy from a netfilter queue (nfqueue)
c-binding free API for golang to communicate with the queue subsystem of netfilter
Netfilter Conntrack Stats Exporter
Transparent TLS and HTTP proxy serve and operate on all 65535 ports, with domain regex whitelist and rest api control
TeaVPN2 - An open source VPN Software (currently supported platform is only Linux).
Opensvp is a security tool implementing "attacks" to be able to test the resistance of firewall to protocol level attack.
The Linux netfilter conntrack-based connection flows pretty printer.
Firegex is an application firewall created for CTF Attack-Defence competitions by Pwnzer0tt1
ARP spoofing, HTTP redirection, DNS spoofing and DNS forging using pcap library
A plugin of netfilter-persistent in debian/ubuntu to make ipset rules persistent, especially on reboot.
UPPERSAFE Open Source Firewall
generating problems on RTP streams : latency, delay, jitter
nfsinkhole is a Python library and scripts for setting up a Linux server as a sinkhole (monitor, log/capture, and drop all traffic to a secondary interface).
An encryption trial with AES-128 on Linux kernel subsystem Netfilter
Netfilter iptables on IPv4 & IPv6, 1st Edition: It's a collaborative book on Netfilter iptables and its programming.
A Network access firewall for Unix like OS and specifically supports Raspberry Pi 3 .
A repository used to store my test Linux kernel modules I make while I'm learning.