global Namespace

FireWallTrial Class

Microsoft.Extensions.DependencyInjection Namespace

CookieStoreBuilderExtensions Class

DatabaseReportDesinationBuilderExtensions Class

DataToolsExtensionMethod Class

EventLogReportingExtensions Class

FireWallBuilderExtensions Class

FireWallDiskLoggingExtensions Class

HoneyPotServiceExtension Class

IFirewallDBServices Interface

IFirewallServices Interface

ILoggerReportingExtensions Class

MaxMindBuilderExtensions Class

NativeGeoExtension Class

ServiceCollectionExtension Class

SMPTLoggerBuilderExtensions Class

UserStackBuilderExtensions Class

WhoisWhoisBackGroundProcessorExtensions Class

System Namespace

MaxMindExtensionMethods Class

NativExtensionMethods Class

System.Text Namespace

StringExtensions Class

Walter Namespace

DIContainer Class

Walter.BOM Namespace

AbuseReportCommand Class

AbuseReportCommand.DataPayloads Enumeration

AbuseReportCommand.Filter Enumeration

AbuseWorkflows Enumeration

AssemblyNotFoundException Class

AuditLog Structure

BlacklistLevelHoneyPotPortAccessLevel Enumeration

BlacklistStatusCommand Class

BlaklistSource Enumeration

BlasklistDetail Class

BlockedUserRequest Class

BlockStatusState Class

ContentTypes Enumeration

CookieName Enumeration

DataLossException Class

DiskSecurityViolationException Class

EntryChangeType Enumeration

EntryNotFoundException Class

EventRecordedEventArgs Class

FallbackCashing(T) Class

FeaturesDataSource Enumeration

FirewallAllowReasons Enumeration

FirewallBlockReasonAuditEntry Class

FirewallBlockReasons Enumeration

FireWallContexts Enumeration

FireWallReportContentFeatures Enumeration

FireWallReportType Enumeration

GlossarayExtensions Class

GuardAction Enumeration

GuardResponse Enumeration

HeaderName Enumeration

HelpTopicAttribute Class

IControlledDiskIO Interface

IDBConnection Interface

IDevice Interface

IDeviceSignature Interface

IDomain Interface

IExceptionConsole Interface

IExceptionConsoleData Interface

IExceptionItem Interface

IKeyRingKey Interface

ILicense Interface

ILicensedDomain Interface

ILicenseKey(T) Interface

IncidentAssertType Enumeration

InterceptLocations Enumeration

IPAddressConverter Class

IParse(T) Interface

IParse(T1, T2) Interface

IPopulate(T) Interface

IRepositoryStorageLocation Interface

IToDoItem Interface

ITryParse(T) Interface

IUserScreen Interface

KnownIntentions Enumeration

LicensedDomain Class

LicenseStatus Enumeration

LicenseViolationErrorException(T) Class

LinkType Enumeration

Location Structure

LogEvents Class

ManagementTypes Enumeration

NotImplementedByDesignException Class

PropertyDoesNotAllowNullException Class

RecoveryData Class

RecoveryType Enumeration

ResourceNotFoundException Class

ResponceExpected Enumeration

ScreenOrientations Enumeration

SearchEngine Enumeration

ServiceInfo Class

ShouldSerializeContractResolver Class

SingletonException(T) Class

StorageLocations Enumeration

TcpPortAlias Enumeration

WorkflowReport Class

Walter.BOM.Data Namespace

Walter.BOM.ErrorCodes Namespace

ConfigurationErrors Enumeration

ConfigurationTasks Enumeration

RuntimeConfigurationErrors Enumeration

RunTimeErrors Enumeration

SecurityCode Enumeration

Walter.BOM.Geo Namespace

GeoExtensionMethods Class

GeoLocation Enumeration

GeoLocationMapping Class

IGeoBuffer Interface

IGeoResolver Interface

IISPResolver Interface

ILatLongResolver Interface

IMapLocation Interface

InMemmoryGeoBuffer Class

LocationExtensionMethods Class

SimpleLatLong Structure

SimpleMapLocation Class

Walter.BOM.Violations Namespace

IContentSecurityPolicyViolation Interface

IContentSecurityPolicyViolationsReport Interface

Walter.Casts Namespace

ObjectExtensions Class

Walter.DataTools Namespace

TableTypes Enumeration

Walter.DataTools.MsSql.Events Namespace

ExecutedEventArgs Class

FailedEventArgs Class

Walter.IO Namespace

AppDataDirectory Class

DiskViolationsExtensions Class

FileInfoExtensions Class

IDiskChanges Interface

IDiskGuard Interface

SwapDirectoryOptions Enumeration

WorkingDirectory Class

Walter.IO.Builder Namespace

IOBuilderExtensions Class

Walter.IO.CommandLine Namespace

ProcessImage Class

Walter.IO.EventArguments Namespace

DiskManipulationEventArgs Class

ServiceConfigurationException Class

Walter.Net.HoneyPot Namespace

DataOwner Enumeration

HoneyPotExtensionMethods Class

HoneyPotServerListnerOption Class

IgnoreScope Enumeration

IHoneyPotPortDetection Interface

IHoneyPotPortListner Interface

IPortAccess Interface

IPortScannerDetectionService Interface

PortAccess Class

PortAccessExtension Class

PortAliasMapper Structure

PortStatus Enumeration

Walter.Net.HoneyPot.EventArguments Namespace

HoneyPotDetectionEventArgs Class

KeyWordDetectedEventArgs Class

Walter.Net.HoneyPot.Repositories Namespace

IHoneyPotDataSource Interface

Walter.Net.LookWhosTalking Namespace

AddressResolutionProtocolWatcher Class

ArpEventArgs Class

ARPWatchData Class

ARPWatchType Enumeration

ICommandLineMethods Interface

IPAddresAndPort Class

IpEndPointDetectedEventArgs Class

ITcpProcessHistoricRecordProxy Interface

IWhosTalking Interface

LookWhosTalkingService Class

RunTimeSettings Class

TcpConnectionState Enumeration

TcpHistoryHeader Class

TcpProcessHistoricRecord Class

TcpProcessRecord Class

TcpProcessRecordProcessExtensionClass Class

Walter.Net.LookWhosTalking.Bulder Namespace

LookWhoisTalkingServiceExtension Class

Walter.Net.LookWhosTalking.Model Namespace

GetAbusePortsTriggerByIP Structure

GetTalkingByIP Structure

WhoisTalkingFileUse Class

WhoisTalkingProcessNameUse Class

Walter.Net.LookWhosTalking.Repository Namespace

ITalkingProcessesReportingDatabase Interface

ITalkingProcessesRepository Interface

Walter.Net.LookWhosTalking.Repository.Disk Namespace

DiskDetails Class

Walter.Net.Networking.Builder Namespace

NetworkingBuilderExtensions Class

Walter.Net.Networking.DNS Namespace

IPokeResponse Interface

PokeRecord Enumeration

Walter.Net.Networking.EventArg Namespace

OnISPTrustLevelChangeEventArgs Class

Walter.Net.Networking.IANA Namespace

ProtoCollNumbers Class

Walter.Net.Networking.ISP Namespace

ClientBase Class

Walter.Net.Networking.Properties Namespace

Resources Class

Walter.Net.Networking.TCP Namespace

INetwork Interface

INetworkJsonConverter Class

TCPIPNetwork Class

Walter.Net.Networking.TopLevelDomainQuery Namespace

DataExtensions Enumeration

DomainParseException Class

DomainParser Class

DomainStatusValidityTests Enumeration

IDomainStatusReport Interface

Walter.Net.Networking.Tracert Namespace

TraceEngine Class

TraceEntryArgs Class

TracertEntry Class

Walter.Vat Namespace

EuropeanVatInformationQuery Class

EuropeanVatInformationQuery.ViesReply Class

Walter.Web Namespace

DomainProfile Class

Walter.Web.FireWall Namespace

BlockingReason Enumeration

BlokingScopes Enumeration

ClearOptions Enumeration

ConcreteTypeConverter(TConcrete) Class

ContentSecurityPolicyViolation Class

ContentSecurityPolicyViolation.ContentSecurityPolicyViolationsReport Class

CookiePoisoningMethod Enumeration

DesignTimeVulnerabilityDetectedException Class

EndPointCompairs Enumeration

FireWallBase Class

FireWallDashboardUser Class

FireWallGuards Enumeration

FireWallModules Enumeration

FireWallProtectionModes Enumeration

FireWallState Enumeration

FramesPolicy Enumeration

IDiscoveryLogger Interface

IFireWall Interface

IFireWallConfig Interface

IFireWallDashboardUser Interface

IFireWallDiskGuard Interface

IFireWallRuleTrigger Interface

IGeoProvider Interface

IInstrumented Interface

ILicenseManager Interface

IModelValidationContext Interface

Interactions Structure

IPageRequest Interface

IPageRequestGroupIdValidation Interface

IPageRequestsReposiory Interface

IProxyProvider Interface

IRequester Interface

ISessionIdValidation Interface

ISiteMapLogger Interface

ISPIncident Class

ItemCompairs Enumeration

IUnblock Interface

IUriResolverDictionary Interface

IUserIdentity Interface

JavaScriptUpdatesIsUserDiscoveries Enumeration

LicenseEventArgs Class

LicenseLevelChangedEventArgs Class

LicenseSource Enumeration

LicenseViolation Class

MachineLearningIntegrationLevels Enumeration

ModelValidationErrors Structure

NetworkInformationType Enumeration

PoisonedCookie Class

RecordedInteractions Enumeration

RequestersAssociations Enumeration

RoutingEndpoint Enumeration

RuleNumber Enumeration

SecurityViolationException Class

SiteMapDiscovery Class

TrustingSites Enumeration

UserTypes Enumeration

ViolationStatusCode Enumeration

Walter.Web.FireWall.Administration Namespace

AbuseBaseController Class

AbuseReportViewModel Class

ReportStorageLocation Enumeration

Walter.Web.FireWall.Annotations Namespace

ActionProtectorAttribute Class

AddhockAttribute Class

BaseFireWallAttribute Class

BlockDurationAttribute Class

BrowserIntentionsAttribute Class

CrossSiteAttribute Class

DisableFirewallAttribute Class

FireWallAttribute Class

FireWallConfigurationAttribute Class

FireWallConfigurationElement Enumeration

GeoBlockAttribute Class

GeoIgnoreAttribute Class

HitRatioAttribute Class

HoneyPotTrapAttribute Class

IEndpointBlockRule Interface

IEndpointRule Interface

IgnoreAttribute Class

ISPTrustLevelAttribute Class

KnownBadBoysAttribute Class

LimitReffererAttribute Class

MaliciousUserAgentsAttribute Class

MinifyAttribute Class

ModelFilterAttribute Class

NoCacheAttribute Class

PageRefreshAttribute Class

PageScrubbingAttribute Class

PoisonedCookiesAttribute Class

SecureCookiesAttribute Class

SiteMapAttribute Class

UsersAttribute Class

WhiteListIPAttribute Class

WhiteListSubnetAttribute Class

WhiteListSubnetAttribute.IPRange Structure

Walter.Web.FireWall.Browser Namespace

IUABrowser Interface

IUACpu Interface

IUADevice Interface

IUAEngine Interface

IUAOperatingSystem Interface

IUAUserAgent Interface

IUserAgent Interface

UAAgentType Enumeration

UADeviceType Enumeration

UAEngineTypes Enumeration

UserAgentCounters Class

Walter.Web.FireWall.DefaultEndpoints Namespace

ContentSecurityPolicyViolationDetectedException Class

ReportingController Class

Walter.Web.FireWall.Destinations Namespace

FireWallLoggerDestination Class

IAsyncDatabaseReportDestination Interface

IDatabaseReportDestination Interface

IEventLogReporting Interface

IFireWallDiskLoggerDestination Interface

ILoggerReportDesination Interface

IPhishyVisitStatsLogger Interface

IReportDestination Interface

IReportFlowDestination Interface

RazorTemplateOptions Class

Walter.Web.FireWall.Destinations.Email Namespace

EMailAddress Class

EmailAudit Class

EmailBufferDiskLocation Class

EmailBufferLocation Class

EmailBufferSqlServerLocation Class

EMailConfiguration Class

EmailReportDesination Class

EMailRoles Enumeration

IEmailBufferDiskLocation Interface

IEmailBufferLocation Interface

IEmailBufferSqlServerLocation Interface

IEMailConfiguration Interface

IEmailReportDesination Interface

IMailAttachmentFactory Interface

Walter.Web.FireWall.DiskLogger Namespace

FireWallDiskLoggerOptions Class

PowerShellFilesOption Enumeration

Walter.Web.FireWall.EventArguments Namespace

EndpointsCreatedEventArgs Class

ExceptionCaughtEventArgs Class

FireWallCookieIncidentEventArgs Class

FireWallCreatedEventArgs Class

FireWallDiskManipulationEventArgs Class

FireWallIncidentEventArgs Class

FireWallIncidentEventArgs Members

FireWallIncidentEventArgs Properties

FireWallResetEventArgs Class

GuardActionEventArgs Class

InterceptChangedEventArgs Class

PageCreatedEventArgs Class

PageSendEventArgs Class

PhishyRequestEventArgs Class

RootPageDisposedEventArgs Class

RulesCreatedEventArgs Class

UserTypeChangedEventArgs Class

Walter.Web.FireWall.Filters Namespace

BlockBotsFilter Class

BlockMaliciousUserFilter Class

CrossSiteFilter Class

FireWallGuardActions Enumeration

FishingFilter Class

PrivacyPreferencesFilter Class

ProtectorBase Class

SecureCookiesFilter Class

SiteMapSearchResultFilter Enumeration

Walter.Web.FireWall.GDPR Namespace

P3POptions Class

Walter.Web.FireWall.GDPR.P3P Namespace

Categories Enumeration

PolicyAcceptance Enumeration

Purposes Enumeration

Recipients Enumeration

Remedies Enumeration

Retentions Enumeration

Walter.Web.FireWall.Geo Namespace

ContentType Enumeration

GeoBlockingPolicy Class

GeoBlockingPolicyBuilder Class

GeoDataDetailLevels Enumeration

GeoFreeAccess Class

GeoFreeAccessReason Enumeration

GeoMethod Enumeration

IAsyncMiddleware Interface

IGeoAPIFactory Interface

IGeoFactory Interface

ILatLongRepository Interface

Walter.Web.FireWall.Geo.MaxMind Namespace

MaxMindApiRepository Class

MaxMindRepository Class

Walter.Web.FireWall.Headers Namespace

HeaderSimulations Enumeration

HeadersPolicies Enumeration

ISecurityHeadersBuilder Interface

ISecurityHeadersPolicy Interface

ServerSimulation Enumeration

StackSimulation Enumeration

Walter.Web.FireWall.ILoggerReporting Namespace

ILogSettings Class

Walter.Web.FireWall.Infrastructure.Authentication Namespace

IFireWallAuthResult Interface

IRefreshToken Interface

JwtTokenConfig Class

Walter.Web.FireWall.Infrastructure.Factory Namespace

IUserAgentReporting Interface

IUserAgentsRepository Interface

UserAgentDatabase Class

Walter.Web.FireWall.Infrastructure.Repositories Namespace

ICookieFactory Interface

IFireWallUserCollection Interface

IResetRepository Interface

IWhoisBackGroundProcessor Interface

ResetReason Enumeration

Walter.Web.FireWall.Middleware Namespace

HttpStatusCodeExceptionMiddleware Class

Walter.Web.FireWall.Models Namespace

Walter.Web.FireWall.Properties Namespace

Resources Class

Walter.Web.FireWall.Reporting Namespace

EmailReportData Class

EmailReportData.ReportDetails Class

FireWallReportingModel Class

HealthReportingData Class

HealthReportingData.DiskChange Class

HealthReportingData.Incident Class

HealthReportingData.ReportDetails Class

HealthReportingData.ToDo Class

HealthReportingData.Visits Class

IFireWallReportingModel Interface

ReportFormat Enumeration

ReportTypes Enumeration

Walter.Web.FireWall.RequestTracking Namespace

FixPathBehavior Enumeration

IFailedRequestTracker Interface

INotFoundRequest Interface

INotFoundRequestRepository Interface

NotFoundMiddlewareOptions Class

NotFoundRequest Class

Walter.Web.FireWall.RuleEngine Namespace

DefaultRules Class

FireWallRule Class

FrequencyRule Class

IFireWallRule Interface

IFirewallViolations Interface

IIncidentDatabase Interface

IncidentDatataManagment Enumeration

IRuntimeRulesEngine Interface

KnownRule Enumeration

PatternLocations Enumeration

RegExRule Class

RuleFilters Enumeration

RuleGroups Enumeration

RulesCollection Class

UrlValidatedResult Enumeration

Walter.Web.FireWall.RuleEngine.Rules Namespace

ActionModelNotValidRule Class

EncryptionManipulationDetectedRule Class

GeoBlockingRule Class

IRuntimeRules Interface

OtherBlockingRule Class

PenetrationDetectedRule Class

UserBlockingRule Enumeration

WrongUserTypeRule Class

Walter.Web.FireWall.SearchEngines Namespace

ISearchEngineNetworkMapper Interface

ISearchEngineRepository Interface

Walter.Web.FireWall.Specialized Namespace

GeoFactory Class

IFireWallConfigurationBuilder Interface

LookupProtectorBase Class

LookupProtectorKeyRingBase Class

PersonalDataProtectorBase Class

Walter.Web.FireWall.TagHelpers Namespace

BrowserIntentionsTagHelper Class

FirewallUserValidationScript Class

GeoTagHelper Class

NonceTagHelper Class

RolesTagHelper Class

UserTypeRenderTagHelper Class

Walter.Web.FireWall.UserAgent.UsersStack Namespace

CrawlerType Enumeration

DeviceType Enumeration

IBrowser Interface

ICrawler Interface

IDevice Interface

IOperatingSystem Interface

IUserstackUserAgent Interface

UserStackBuilderExtensions Class

UserStackEntryTypes Enumeration

UserStackSettings Class

Walter.Web.FireWall.ViewModels Namespace

AbuseReportMetaData Class

FireWallDiskViolation Class

IUserIncidentStats Interface

IUserVisitStats Interface

Walter.Web.FireWall.WindowsEventLog Namespace

EventLogReportingSettings Class

EventLogState Enumeration

FireWallIncidentEventArgs Class

The Guard event that's being raised by the firewall when the firewall is about to create an incident allowing you to intervene

Namespace: Walter.Web.FireWall.EventArguments
Assembly: Walter.Web.FireWall (in Walter.Web.FireWall.dll)

Syntax

public class FireWallIncidentEventArgs

Examples

You can use the firewall to test and see if you are using routs that would cause your application to block valid requests. This way you can update your blocking patterns to match valid and invalid rules.

It is always recommended to not use default routs as all bot's are scripted to use those and the fastest way to detect a malicious user is by having a honey pot or a default not implemented

C#

private void FireWall_OnIncident(object sender, FireWallIncidentEventArgs e)
   {
       switch (e.StackEntry.Reason)
       {
           case Walter.BOM.FirewallBlockReasons.PenetrationAttempt:
               if (Enum.TryParse<Walter.Web.FireWall.RuleEngine.UrlValidatedResult>(e.Data[IncidentAssertType.RuleNr], out var list))
               {
                   _logger?.Lazy().LogCritical("Url triggered {pattern} in {location} in Configuration.Rules.blockedPatterns.{list}"
                       , e.Data[IncidentAssertType.Pattern]
                       , e.Data[IncidentAssertType.Location]
                       , list);
                   LogTodo<ConfigurationTasks>(ConfigurationTasks.UrlNotValid
                       , $"Update Configuration.Rules.blockedPatterns.{list} on {e.Data[IncidentAssertType.Pattern]} at the {e.Data[IncidentAssertType.Location]} in URL{e.Page.OriginalUrl}"
                       , false);
               }

               break;
           default:
               base.LogTodo<ConfigurationTasks>(ConfigurationTasks.Setup, message: $"Test Rule \"{e.StackEntry.Rule}\" on {e.Page.OriginalUrl}", optional: true);
               break;
       }
   }

See Also

FireWallIncidentEventArgs Members

Walter.Web.FireWall.EventArguments Namespace