Shadow Daemon is a collection of tools to detect, protocol and prevent attacks on web applications. Technically speaking, Shadow Daemon is a web application firewall that intercepts requests and filters out malicious parameters. It is a modular system that separates web application, analysis and interface to increase security, flexibility and expandability.

This component is the background server that handles the analysis and storage of requests.

For the full documentation please refer to shadowd.zecure.org.

Use cmake to configure and prepare the project. It is a good idea to create a separate directory for this. A typical installation might look like this:

mkdir build
cd build
cmake -DCMAKE_INSTALL_PREFIX:PATH=/usr -DCMAKE_BUILD_TYPE=Release ..

If cmake is successful it creates a makefile. Use it to compile and install the project:

make
make install

Install and configure a database server. At the moment shadowd officially supports PostgreSQL and MySQL. If you are done create a new user and database and import the correct layout, e.g.:

psql -Ushadowd shadowd < /usr/share/shadowd/pgsql_layout.sql
mysql -ushadowd -p shadowd < /usr/share/shadowd/mysql_layout.sql

The installer creates a configuration at /etc/shadowd/shadowd.ini which has to be edited. The config is annotated and should be self-explanatory.