1.3.9 • Published 1 year ago

mitigation v1.3.9

Weekly downloads
-
License
ISC
Repository
-
Last release
1 year ago

Mitigation

A somewhat advanced layer 7 IP filtering mechanism designed to block bad actors

1.3.5 - Change Log | Updated Actor Detection

Security Options

The securityOptions object allows you to customize the protection mechanisms according to your requirements. Here are the available security options

blockBadHostname : Blocks requests with a suspicious or malformed hostname.

blockRequestFromServers : Blocks requests coming from known server IPs.

blockRequestFromVPN : Blocks requests coming from VPNs.

blockRequestFromWebProxy : Blocks requests coming from web proxies.

blockRequestFromTOR : Blocks requests coming from the TOR network.

blockPublicProxy : Blocks requests coming from public proxy servers.

blockSearchEngineRobot : Blocks requests coming from search engine robots.

blockHostname : Blocks requests with a specific hostname.

blockNoProxyIssues : Blocks requests if no proxy-related issues are detected.

blockNoProxyIssues : Blocks requests if no proxy-related issues are detected.

whitelist : (set) Whitelist given ip's bypassing actor detection.

logging : Enables live logs of ip addresses actively being blocked.

throttling : Enables only a certain amount of concurrent requests to access your site

throttleAmount : If throttling is enabled, you can set the allowed concurrent requests here.

Usage

Here's how you can use the mitigation middleware in your Express.js application:

const express = require('express');
const mitigation = require('mitigation');

const app = express();
const port = 3000;

const securityOptions = {
  blockRequestFromServers: true,
  blockRequestFromVPN: true,
  blockRequestFromWebProxy: true,
  blockRequestFromTOR: true,
  blockPublicProxy: true,
  blockSearchEngineRobot: true,
  blockHostname: true,
  blockNoProxyIssues: true,
  whitelist: new Set(['192.168.1.1', '10.0.0.1']), // Example whitelist IP addresses
  throttling: true, // Enable throttling
  throttleAmount: 100, // Specify the throttle amount
  logging: true //Enables Logging
};

app.use(mitigation(securityOptions));

app.get('/', (req, res) => {
  res.send('Hello World!');
});

app.listen(port, () => {
  console.log(`Express server is listening on port ${port}`);
});
ddosbbosDDoS protectionmitigation systemload balancerIP filteringVPN detectorVPN detectIP detectproxy detectproxy detectorbad IP detectIP scorefirewallsecuritynetwork securityintrusion detectionintrusion preventionnetwork monitoringanomaly detectionattack preventiontraffic analysisthreat intelligencemalicious traffic detectionapplication securityweb securitynetwork defensecybersecurityIT securitycyber defenserate limitingAPI protectionbot protectionWAFweb application firewallantivirusanti-malwarephishing protectionemail securityencryptiondata protectionaccess controlauthenticationauthorizationidentity managementendpoint securitysandboxingvulnerability scanningpatch managementsecurity operationsincident responsethreat huntingsecurity compliancecompliance auditingSIEMsecurity analyticslog management
@types/nodeaxioschild_processexpresslevelnode-cachewssemaphore
1.3.9

1 year ago

1.3.7

1 year ago

1.3.6

1 year ago

1.3.5

1 year ago

1.3.8

1 year ago

1.3.4

1 year ago

1.3.3

1 year ago

1.3.2

1 year ago

1.3.1

1 year ago

1.3.0

1 year ago

1.2.8

1 year ago

1.2.7

1 year ago

1.2.6

1 year ago

1.2.5

1 year ago

1.2.4

1 year ago

1.2.3

1 year ago

1.2.2

1 year ago

1.2.0

1 year ago

1.2.1

1 year ago

1.1.9

1 year ago

1.1.8

1 year ago

1.1.7

1 year ago

1.1.6

1 year ago

1.1.5

1 year ago

1.1.4

1 year ago

1.1.3

1 year ago

1.1.2

1 year ago

1.1.1

1 year ago

1.1.0

1 year ago

1.0.9

1 year ago

1.0.8

1 year ago

1.0.7

1 year ago

1.0.6

1 year ago

1.0.5

1 year ago

1.0.4

1 year ago

1.0.3

1 year ago

1.0.2

1 year ago

1.0.1

1 year ago

1.0.0

1 year ago