vfreex/hijackfilter vfreex/hijackfilter

  • Stars
    star
    191
  • Rank 202,877 (Top 4 %)
  • Language
    C
  • License
    GNU General Publi...
  • Created over 8 years ago
  • Updated over 8 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
vfreex/hijackfilter
github

vfreex

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

a set of free software to protect you from Internet hijacking

VFREE HijackFilter

VFREE HijackFilter is a free software to protect you from unwanted Internet hijacking.

Copyright (C) 2016 Rayson Zhu [email protected]

If you encountered Internet hijacking, call your ISP to stop it! This software should be your last choice for preventing Internet hijacking.

1. Installation

1.1 Build

  • Ubuntu / Debian
apt install make gcc iptables-dev linux-headers-`uname -r` pkg-config
make
  • Fedora
dnf install make gcc iptables-devel kernel-devel-`uname -r` pkgconfig
make
  • RHEL / CentOS
yum install make gcc iptables-devel kernel-devel-`uname -r` pkgconfig
make

1.2 Install

make install
depmod

1.3. Uninstall

make uninstall
depmod

2. Usage

2.1 DNSFilter

DNSFilter is a Netfilter extension to help you match and filter proofed DNS responses.

Suppose your ISP redirects nonexistent domain names to 192.0.2.1 and 198.51.100.1. To match and drop those spoofed DNS responses, we can use following commands:

# for IPv4 network
iptables -t mangle -A PREROUTING -p udp --sport 53 -m vfree_dns \
  --a 192.0.2.1,198.51.100.1\
  -j DROP
# for IPv6 network
ip6tables -t mangle -A PREROUTING -p udp --sport 53 -m vfree_dns \
  --a 192.0.2.1,198.51.100.1\
  -j DROP

Use -h option for help.

iptables -m vfree_dns -h

3. TO-DO

  • HTTPFilter: a netfilter module to match and filter proofed HTTP messages

4. LICENSE

This program is distributed under GNU GENERAL PUBLIC LICENSE Version 3.

More Repositories

1

mdns-reflector

a lightweight and performant multicast DNS (mDNS) reflector with modern design, supports zone based reflection and IPv6
C
135
star
2

gones

Yet Another NES Emulator Written in Go
Go
123
star
3

docker-cowrie

Dockerfile and docker-compose file to run Cowrie in Docker.
30
star
4

docker-netease-cloud-music

Docker image of Netease Cloud Music (网易云音乐) for Linux.
Shell
26
star
5

kube-nextcloud

Containerized Nextcloud tailored for Kubernetes / OpenShift
Dockerfile
19
star
6

procslink

ProcsLink provides API for cross-namespace inter-process communication (IPC) over netlink socket.
Python
7
star
7

vimrc

Vimrc for Programmers using Vundle as plugin manager.
Vim Script
6
star
8

rime-zhengma

Zhengma support for RIME IME
5
star
9

ddns6

DDNS6 - One dynamic DNS client for multiple hosts
Rust
5
star
10

dockernet

With Dockernet, you can add custom interfaces, configure static IP addresses, and adding static routes to a Linux container in a simple way.
Shell
5
star
11

release-apiserver

Go
2
star
12

teamtalk-cloud

experimental cloud-native TeamTalk distribution
TSQL
2
star
13

performance-ci

This Jenkins plugin allows to run Apache Jmeter performance testing tool and monitor hardware resource of target servers using Jenkins. It can also generate various kinds of performance testing reports using perfcharts (https://github.com/vfreex/perfcharts) for performance analysis.
JavaScript
2
star
14

pyatfork

PyAtfork provides API to register fork handlers. PyAtfork is a wrapper for the POSIX Pthreads API pthread_atfork(3). I wrote this module because Python's ctypes library cannot handle this function correctly.
C
2
star
15

docker-spigot

Docker container image of Spigot Minecraft server
1
star
16

docker-spongevanilla

Shell
1
star