Critical-risk tools in Remnawave
23 of the 153 tools in Remnawave are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
api_tokens_deleteDestructiveDelete an API token
-
billing_history_deleteDestructiveDelete a billing history entry
-
billing_node_deleteDestructiveDelete a billing node
-
billing_provider_deleteDestructiveDelete a billing provider
-
config_profiles_deleteDestructiveDelete a config profile
-
external_squads_deleteDestructiveDelete an external squad
-
hosts_bulk_deleteDestructiveBulk delete selected hosts
-
hosts_deleteDestructiveDelete a host from Remnawave
-
hwid_device_deleteDestructiveDelete a specific HWID device
-
hwid_devices_delete_allDestructiveDelete all HWID devices for a user
-
node_plugins_deleteDestructiveDelete a node plugin
-
node_plugins_torrent_truncateDestructiveTruncate all torrent blocker reports
-
nodes_deleteDestructiveDelete a node from Remnawave
-
nodes_reset_trafficDestructiveReset traffic counter for a node
-
snippets_deleteDestructiveDelete a snippet
-
squads_deleteDestructiveDelete an internal squad
-
squads_remove_usersDestructiveRemove users from an internal squad
-
sub_page_configs_deleteDestructiveDelete a subscription page configuration
-
users_bulk_all_reset_trafficDestructiveReset traffic counters for ALL users
-
users_bulk_deleteDestructiveBulk delete selected users
-
users_bulk_delete_by_statusDestructiveBulk delete users by status
-
users_bulk_revoke_subscriptionDestructiveBulk revoke subscriptions for selected users
-
users_deleteDestructivePermanently delete a Remnawave user
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.