I hereby claim:
- I am brookscunningham on github.
- I am bcunning (https://keybase.io/bcunning) on keybase.
- I have a public key ASBfia5ViKw9TWkHHTPYA__g8t0E8ti_YQ_djlwObHJC0wo
To claim this, I am signing this object:
Brooks Cunningham BrooksCunningham
BrooksCunningham
/ ngwaf_caching.vcl
Created
March 3, 2025 14:18
Fastly NGWAF is able to protect cached content with custom VCL implementation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # vcl_init | |
| # If there is a cache hit, then the request first goes to the NGWAF. | |
| # If the Fastly NGWAF returns a block via a 406, then the block will be returned back to the client. | |
| # If the Fastly NGWAF returns a block via a 567, then a VCL restart occurs | |
| # the restarted request may then be served from cache. | |
| sub vcl_recv { | |
| set req.http.Fastly-Force-Shield = "1"; | |
| } |
BrooksCunningham
/ ngwaf_openapi_spec_enforcement.yaml
Created
February 13, 2025 15:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: WAF API Spec Demo | |
| on: | |
| workflow_dispatch: | |
| jobs: | |
| ngwaf-api-spec-job: | |
| runs-on: ubuntu-latest | |
| environment: production | |
| timeout-minutes: 2 |
BrooksCunningham
/ envoy-ngwaf-ext_authz-deployment.yaml
Created
February 6, 2025 14:45
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ConfigMap: Contains the updated Envoy configuration with ext_authz integration. | |
| apiVersion: v1 | |
| kind: ConfigMap | |
| metadata: | |
| name: envoy-config | |
| data: | |
| envoy.yaml: | | |
| node: | |
| id: proxy-node | |
| cluster: proxy-cluster |
BrooksCunningham
/ ngwaf_edge_deploy.go
Created
November 9, 2023 14:41
Example of Fastly Next-Gen WAF edge deployment in go
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "log" | |
| "os" | |
| "time" | |
| sigsci "github.com/signalsciences/go-sigsci" | |
| ) |
BrooksCunningham
/ get_sigsci_raw_logs.py
Created
January 27, 2022 17:15
get logs from signal sciences
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests, calendar, os, time | |
| from datetime import datetime, timedelta | |
| # For details see | |
| # https://docs.fastly.com/signalsciences/developer/extract-your-data/ | |
| # Get environment variables | |
| SIGSCITOKEN = os.getenv('SIGSCITOKEN') | |
| SIGSCIEMAIL = os.environ.get('SIGSCIEMAIL') |
BrooksCunningham
/ edge_rate_limiting.vcl
Created
November 18, 2021 22:37
Edge Rate Limiting Response Enrichment
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Snippet rate-limiter-v1-origin_waf_response-init-init : 100 | |
| # Begin rate-limiter webbots - Next Gen WAF Response | |
| penaltybox rl_origin_waf_response_pb {} | |
| ratecounter rl_origin_waf_response_rc {} | |
| table rl_origin_waf_response_methods { | |
| "GET": "true", | |
| "PUT": "true", | |
| "TRACE": "true", | |
| "POST": "true", |
BrooksCunningham
/ get_sigsci_custom_tags.py
Created
October 12, 2021 17:01
print the custom tags for a site/workspace
BrooksCunningham
/ fastly.toml
Last active
November 22, 2021 14:38
Example fastly.toml for local compute@edge development
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [local_server] | |
| [local_server.backends] | |
| [local_server.backends.httpbin] | |
| url = "https://httpbin.org" | |
| [local_server.backends.google_dns] | |
| url = "https://dns.google" | |
BrooksCunningham
/ keybase.md
Created
December 12, 2018 18:55