Skip to content

nethoxa/maruja

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
bin
bin
 
 
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
maruja
maruja
 
 

Repository files navigation

Maruja

NOTE: this was wrote in 2023 during my second year at collegue, the new commits are updates to the README mostly to make it more "pretty" for ppl that does not know me (you)

A lightweight Linux kernel module for runtime IP blocking using Netfilter. Intercepts incoming IPv4 packets at NF_INET_PRE_ROUTING and drops those matching a user-defined blocklist. Rules are managed at runtime through the maruja CLI. The device node (/dev/maruja) is created automatically via udev.

Demo

POC.mp4

Prerequisites

  • Linux kernel headers (linux-headers-$(uname -r))
  • Make
  • GCC

Usage

# Build the module
./maruja compile

# Load (default max 10 rules)
./maruja install

# Load with custom rule limit
./maruja install 50

# Block an IP
./maruja block 192.168.1.100

# Unblock an IP
./maruja unblock 192.168.1.100

# List active rules
./maruja list

# View kernel log
./maruja log

# Unload
./maruja uninstall

About

A linux driver that allows blacklisting IP addresses

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Contributors

Languages