Is it possible to add a javascript challenge to test for legitimate browsers, ideally before any other rule is run? but after IPTable blocks. Much like commercial WAFs and CDNs do.
Suricata can’t do that.
1 Like