OpenAPI Log Cat is an Nginx log analyzer based on OpenAPI. It analyzes abnormal requests in Nginx requests by calling OpenAPI definition documents, so as to achieve early warning analysis and other purposes.

OpenAPI is a specification for defining the API structure, in Java we can useswaggerfor automatic generation. Other languages ​​are also available (golangWait). Through this zero-cost tool for developers, we can efficiently obtain description information such as business structure, reasonable input and output of open API services.

Combining this description information with the actual access logs, we can effectively filter malicious access, such as common scanning access (scanning access services through common management pages, login pages, etc., to achieve the purpose of obtaining service vulnerabilities ).

go install gitee.com/bjf-fhe/apicat