All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

SHIBUYA WAF: Open-Source Web Application Firewall with Machine Learning and eBPF Security

By

germainluperto

3mo ago· 2 min readenNews
Bagel score 65 of 100
65/100
Toasty
Bagelometer

Plain bagel done well. Pleasantly substantive.

Score65TypenewsSentimentpositive

Summary

SHIBUYA WAF is a next-generation open-source web application firewall that combines traditional rule-based security with machine learning and eBPF kernel-level blocking. It features a dual ML engine with explainable AI using SHAP to detect and classify attacks across 10 categories including SQLi, XSS, RCE, and others. The system includes 615+ OWASP CRS rules, GraphQL/API protection, WASM plugins, and a built-in attack lab for testing.

Key quotes

· 4 pulled
Dual ML Engine with SHAP Explainability: Two independent ML models run in parallel: an IsolationForest (via ONNX runtime) detects anomalies, and a Random Forest classifies attacks across 10 classes
SHAP-like explainability shows exactly which top-5 features triggered the alert. Human-in-the-loop feedback loop. A/B model testing. Data drift detection
Next-gen open-source WAF. ML detection with explainability. eBPF kernel blocking. 615+ CRS rules. GraphQL/API protection. WASM plugins. Built-in attack lab
Cloudflare doesn't want you to have this
Snippet from the RSS feed
Next-gen open-source WAF. ML detection with explainability. eBPF kernel blocking. 615+ CRS rules. GraphQL/API protection. WASM plugins. Built-in attack lab. Cloudflare doesn't want you to have this.

You might also wanna read

IronClaw: Secure Open-Source Alternative to OpenClaw for AI Credential Protection

IronClaw is presented as a secure, open-source alternative to OpenClaw that addresses security vulnerabilities in AI credential management.

Product Hunt·3mo ago

Volatility 3: Open-Source Framework for Memory Forensics and Digital Artifact Extraction

Volatility 3 is a widely used open-source framework for extracting digital artifacts from volatile memory (RAM) samples. The framework opera

github.com·3mo ago

Pangolin: Open-Source Identity-Based VPN and Remote Access Platform

Pangolin is an open-source, identity-based VPN and remote access platform that serves as an alternative to traditional VPNs. It uses WireGua

Product Hunt·3mo ago

Malicious Backdoor Discovered in XZ Utils Compression Software Affecting Linux Systems

The article details the discovery of a sophisticated backdoor in the XZ Utils compression software, a critical open-source component used in

en.wikipedia.org·5mo ago

PhantomCollect: Advanced Stealth Web Data Collection Framework for Security

PhantomCollect is an advanced stealth web data collection framework designed for security purposes. It's a GitHub repository that provides t

github.com·6mo ago

Analyzing How Better Git and Debian Packaging Practices Could Have Detected the XZ Backdoor

This article analyzes the 2024 XZ Utils backdoor incident and examines whether improved Git and Debian packaging practices could have detect

optimizedbyotto.com·7mo ago