The latest BitNinja 3.12.3 release brings meaningful enhancements across various modules. This release introduces customizable connection monitoring for DosDetection, optimizes logging in WAF Pro, and simplifies system maintenance by removing the Backup module. These improvements aim to boost usability, transparency, and overall system stability for better server protection.
BitNinja 3.12.3
Backup:
BitNinja no longer includes the Backup module. This decision streamlines the system and reduces overhead, ensuring your server resources focus solely on active defense modules.
CaptchaHttp:
Fixed an issue related to response body validation. This update provides smoother interaction within the CaptchaHttp workflow.
DosDetection:
We’ve refactored the DosDetection module to improve performance. More importantly, we added new configuration options for greater customization:
- Connection states: You can now specify which connection states the module monitors (e.g., ESTABLISHED, SYN_SENT, SYN_RECV), allowing for granular control based on traffic patterns and risk levels.
- Under Attack mode: When enabled, this feature allows automatic blocking of incoming IPs during attack periods.
- Under Attack Time: Defines the duration that the Under Attack mode remains active.
MalwareDetection:
We added new reporting functionality to the API when a file is restored.
This update makes incident audits and recovery tracking easier and more transparent.
SqlScanner:
Similar to MalwareDetection, the SqlScanner now reports to the API when SQL data is restored. Better visibility means improved security management.
WAF Manager:
Resolved an issue affecting the toggling functionality of the WAF Manager. This fix ensures reliable activation and deactivation of the module as needed.
WAF Pro – Version 1.0.3:
We implemented several logging and behavior optimizations to enhance transparency and operability:
- We optimized redirection handling, improving URL-based rules and responses.
- Log files have been optimized and are now written in a human-readable format, mimicking Apache-style logs.
- The
--status command now displays redirection status, making diagnostics and monitoring easier.
This release also resolves a memory-related issue tied to reading the Virtual Hosts JSON file, contributing to improved system stability during data parsing processes.
Changelog:
- Backup
- Backup module removed from BitNinja.
- CaptchaHttp
- Fixed an issue that caused invalid response body given issues.
- DosDetection
- Refactored the module for improved efficiency.
- Added new configuration options:
- Connection states (e.g. ESTABLISHED, SYN_SENT, SYN_RECV).
- Under Attack mode to block IPs proactively.
- Under Attack Time – configurable duration of Under Attack mode.
- MalwareDetection
- Added reporting to the API when a file is restored.
- SqlScanner
- Added reporting to the API when SQL data is restored.
- WAF Manager
- Fixed an issue that caused problems with switching the module on and off.
- WAF Pro – 1.0.3
- Optimized redirection handling.
- Optimized logging.
- Implemented human-readable request logs (Apache-style).
--status command now displays redirection status.
- Core
- Fixed a memory issue when reading the collected Virtual Hosts JSON file.
To ensure you’re running the latest version, check your update channel settings in the BitNinja Console using RAU. If you have specific configurations or applications preventing automatic updates, please refer to our documentation for instructions on manual updates and RAU configuration.
If you'd like to read more about previous releases, check the Changelog anytime.
Alternatively, if you would like to see your feature request show up here, don't forget to cast your vote.
