Rack Attack

Rack Attack - throttle HTTP requests and bloc… | Awesome Repos

Features

Request Rate Limiting - Controls the number of requests a client can make within a specific timeframe to prevent system overload.
Request Interception Middleware - Intercepts incoming HTTP requests in a middleware pipeline to evaluate security rules before application processing.
External State Stores - Integrates with external state stores to maintain ban records and request counts across distributed instances.
Distributed Rate Limit Stores - Provides external cache backend integration to synchronize rate limiting state across distributed application instances.
Traffic Throttling - Limits request rates based on unique identifiers to prevent system overload and mitigate DoS attacks.
Automated IP Banning - Automatically blocks clients for a set duration after they exceed thresholds for forbidden requests or failures.
Malicious Traffic Blocking - Identifies and rejects requests from banned IP addresses or abusive clients before they reach application logic.
IP Blocking Middleware - Ships middleware that rejects traffic from forbidden IP addresses and subnets to protect the application.
Predicate-Based Request Filtering - Evaluates incoming requests against custom truthy logic blocks to determine safelisting, blocking, or throttling.
IP-Based Rate Limiting - Tracks request frequency using unique identifiers like IP addresses to apply granular per-user quotas.
Middleware Rate Limiters - Provides a middleware layer for the Rack interface to throttle HTTP requests and block abusive clients.
IP Address Blocklists - Maintains blocklists to identify and reject traffic from specific banned IP addresses.
API Rate Limiting - Provides tools for managing API request quotas and communicating limits via standard HTTP headers.
Rack Request Filters - Implements a filtering mechanism for Rack applications to evaluate requests against security rules and safelists.
Quota Status Headers - Implements HTTP response headers that communicate remaining request quotas and retry delays to API clients.
Throttled Response Customization - Allows defining custom HTTP response objects, status codes, and headers for blocklisted or throttled requests.
DDoS Protections - Protects Rack-based web applications from DDoS attacks by managing request rates and blocking abusive clients.
Request Safelisting - Permits trusted clients or specific requests to bypass all security filters and rate limits.
Layered Throttle Compositions - Implements layered throttle composition to apply multiple time-window limits for exponential backoff strategies.
Server-Side Backoff Enforcement - Implements layered throttles that progressively increase the wait time between requests for abusive clients.
Pipeline Short-Circuiting - Immediately returns custom HTTP responses when a request matches a blocklist, terminating the pipeline early.

Open-source alternatives to Rack Attack

Similar open-source projects, ranked by how many features they share with Rack Attack.

kickstarter/rack-attack
kickstarter/rack-attack
5,744View on GitHub
This project is a Rack middleware rate limiter and application layer firewall for Ruby web applications. It serves as a security layer to throttle and block HTTP requests based on custom rules, protecting web servers from abusive traffic. The system provides capabilities for IP blocking and the banning of malicious clients. It implements request safelisting to bypass restrictions for trusted users and uses time-windowed rate limiting to control request frequency. The middleware covers traffic management and monitoring, including the ability to track request patterns and instrument traffic ev
Ruby
View on GitHub5,744
anjoy8/blog.core
anjoy8/Blog.Core
5,288View on GitHub
Blog.Core is a production-ready backend boilerplate for building enterprise APIs and microservices using ASP.NET Core. It provides a foundational infrastructure for distributed systems, including tools for database-first scaffolding and the implementation of multi-tenant API frameworks. The project distinguishes itself through automated data layer generation, which produces entity models and repository layers directly from database schemas. It implements a centralized identity management system using standard identity server protocols to handle authentication and authorization across multiple
C#aopautofacautomapper
View on GitHub5,288
denji/nginx-tuning
denji/nginx-tuning
2,692View on GitHub
This project is a collection of technical guides and configuration patterns for tuning Nginx server performance, managing traffic flow, and implementing protocol-aware routing. It provides a curated set of parameters and best practices to optimize request handling, memory usage, and CPU efficiency. The project includes a method for sharing a single port between different protocols by inspecting initial packets to route traffic to the correct backend. It also provides configuration patterns for implementing request rate limiting and range request restrictions to mitigate denial of service atta
best-practicesdetailsnginx
View on GitHub2,692
grpc-ecosystem/go-grpc-middleware
grpc-ecosystem/go-grpc-middleware
6,749View on GitHub
go-grpc-middleware is a gRPC middleware framework for Go designed to handle cross-cutting concerns, reliability, and observability. It provides a collection of interceptors that can be used to modify inbound and outbound calls to enforce system-wide policies. The framework distinguishes itself through specialized toolkits for service reliability, including automatic retry logic for failed client calls and panic recovery mechanisms that translate runtime crashes into standard error responses. It also features an observability suite for collecting performance metrics and recording request activ
Goauthenticationgeneric-functionsgolang
View on GitHub6,749

See all 30 alternatives to Rack Attack

rackrack-attack

Features

Open-source alternatives to Rack Attack

kickstarter/rack-attack

anjoy8/Blog.Core

denji/nginx-tuning

grpc-ecosystem/go-grpc-middleware

Star history

Open-source alternatives to Rack Attack

kickstarter/rack-attack

anjoy8/Blog.Core

denji/nginx-tuning

grpc-ecosystem/go-grpc-middleware