🔥Open source RASP solution
General changes
--rasp-id (PHP) / -rasp-id (JAVA)
parameter during installationManagement panel
Java agent
Plugin system
General fix
Java Agent
PHP Agent
General changes
Plugin system
PHP agent
Java agent
RASP Installer
Java agent
General changes
PHP agent
Java agent
JRockit JDK
.
export JAVA_VENDOR=Sun
JavaScript plugin system
General changes
Java agent
General changes
toml
to yaml
Management panel
PHP agent
--enable-fswatch
to enable it.rapidjson
library with nlohmann/json
Java agent
rasp-log4j.xml
from startup command-line argumentsGeneral changes
PHP agent
Java agent
Management panel
Security baseline
SQLi
SSRF
File Upload
WebShell
Deserialization
Java agent
General improvements
sql
, ssrf
, readFile
, writeFile
hooks onlyPHP agent
Command injection
Java agent
PHP agent
openrasp-dubbo-X
to dubbo-X
request_method
field in alarm logsNo modifications are allowed to a locked ParameterMap
error in certain Tomcat versionsRename
rename_webshell
algorithmDeserialization
commons.collections4
payloadJava Agent
block.url
renamed to block.redirect_url
and added template supportPHP agent
openrasp.block_url
renamed to openrasp.block_redirect_url
and added template supportwebshell_include
hookJS API
RASP.sql_tokenize
methodappBasePath
now point to application deployment folder, e.g /tomcat/webapps/vulns
Java agent
/jmx-console/HTMLAdaptor
is enabledblock.content_xml
and block.content_json
plugin.filter
include/rename/readFile
hooks onlyclient_ip
in alarm logs
X-Client-IP
clientip.header
PHP agent
openrasp.hooks_ignore=all
in php.iniclient_ip
in alarm logs, similar to Java agent
openrasp.clientip_header
openrasp.plugin_filter
, similar to Java agentopenrasp.block_content_json
and openrasp.block_content_xml
, similar to Java agentSSRF
SQLi
Path traversal
XXE
.dtd/.xml
extensionRename
File write
SQL slow query
PHP agent
array_filter
hook does not process the parameter correctly