Hey people of XSS,
Baloo Proxy is a lightweight anti-ddos proxy that has many many features.
-----------------------------------
link to baloo proxy:
https://github.com/41Baloo/balooProxy
Baloo Proxy is a lightweight anti-ddos proxy that has many many features.
Server Setup
To start, download the [URL='https://github.com/41Baloo/balooProxy/releases']latest version of balooProxy[/URL] balooProxy or compile it from source.If you already have a config.json drag it in the same folder in your server as the main you downloaded/compiled. If you do not, simply start balooProxy by running ./main and answer the questions the proxy asks you. After you answered those questions stop the proxy with ctrl + c.You can run the proxy as a [URL='https://abhinand05.medium.com/run-any-executable-as-systemd-service-in-linux-21298674f66f']service[/URL] or inside of a screen. To run the proxy inside a screen on ubuntu/debian first run apt update. After that is done install screen by running apt install screen and follow its installation process. To start running the proxy inside of a screen run screen -S balooProxy. This will put you inside a screen, making sure the proxy keeps running even when you log out of ssh. Now just start the proxy inside the screen by running ./main (make sure the proxy isnt running anywhere else already) and quit the screen by pressing ctrl + a + d. You can always reopen the screen by running screen -d -r-----------------------------------
Features
TLS-Fingerprinting
TLS Fingerprinting opens a whole new world of possibilities to defend against malicious attacks.On one hand you can use tls fingerprinting to whitelist specific fingerprints, take for example seo bots, blacklist unwanted fingerprints, like for example wordpress exploit crawlers, ratelimit attackers that use proxies to change their ips or just simply gain more information about a visitorStaged DDoS-Mitigation
balooProxy comes with 3 distinct challenges, in order to defend against bots/ddos attacks effectively, whilst effecting an actual users experience as little as possible. In order to archive that, balooProxy starts with the "weakest" and least notable challenge and automatically changes them when it detects one of them is being bypassedCookie Challenge
The cookie challenge is completely invisible and supported by every webbrowser, aswell as most http libraries. It is an effective method to defend against simple ddos attacksInvisible JS Challenge
The invisible js challenge allows you to reliably block slightly more advanced bots while impacting the user experience as little as possibleCustom Captcha
The custom captcha should be your last resort or be used to protect especially weak webpages.[URL='https://camo.githubusercontent.com/ed679b32e9511613f90514e21262a2ce8c2ab6ac95fb625cf4dc5fb23b4fc4d8/68747470733a2f2f63646e2e646973636f72646170702e636f6d2f6174746163686d656e74732f3834373532303536353630363631333034322f313036313736343731353537373039383235302f696d6167652e706e67'][IMG alt="Custom Captcha"]https://camo.githubusercontent.com/ed679b32e9511613f90514e21262a2ce8c2ab6ac95fb625cf4dc5fb23b4fc4d8/68747470733a2f2f63646e2e646973636f72646170702e636f6d2f6174746163686d656e74732f3834373532303536353630363631333034322f313036313736343731353537373039383235302f696d6167652e706e67[/IMG][/URL]Lightweight
balooProxy tries to be as lightweight as possible, in order to run smoothly for everyone. Everything has its limits tho.Cloudflare Mode
Not everyone can afford expensive servers, aswell as a global cdn and this is fine. That's why balooProxy supports being used along with cloudflare, although this comes at the cost of a few features, like tls fingerprinting.link to baloo proxy:
https://github.com/41Baloo/balooProxy