Simplewall | Awesome Repository

Simplewall is an application firewall manager and network traffic filter that provides a graphical interface for the Windows Filtering Platform. It controls inbound and outbound network access for individual programs and services by intercepting and filtering traffic at the kernel level.

The project identifies specific binaries using file hashes to prevent spoofing and allows users to define custom firewall rules based on IP addresses, CIDR ranges, and port numbers. It includes a system for blocking operating system telemetry and managing blocklists of known malicious IP addresses.

The tool provides observability through packet logging and real-time notifications when applications attempt unauthorized connections. It also includes capabilities for auditing application changes, managing security profiles, and caching DNS resolutions to optimize event processing.

Features

Network Access Control - Defines and enforces security policies to regulate inbound and outbound traffic for specific applications.
Packet Filtering Engines - Utilizes the Windows Filtering Platform for kernel-level network traffic interception and filtering.
Traffic Filtering Rules - Implements a system for defining and applying rules to permit or deny network connections.
Traffic Filters - Inspects and controls network packets using global and application-specific rules to manage traffic flow.

Features

Network Access Control - Defines and enforces security policies to regulate inbound and outbound traffic for specific applications.
Packet Filtering Engines - Utilizes the Windows Filtering Platform for kernel-level network traffic interception and filtering.
Traffic Filtering Rules - Implements a system for defining and applying rules to permit or deny network connections.
Traffic Filters - Inspects and controls network packets using global and application-specific rules to manage traffic flow.