diff --git a/docker-compose.yml b/docker-compose.yml
index 843c911..e0facf6 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -12,16 +12,29 @@ services:
         - RUNNER_DB=runner_db #db for runner
     ports:
       - '5432:5432' #meant for script to add/update challs
-  nginx:
-    container_name: nginx
-    hostname: nginx
-    build: ./docker-misc/nginx/
+
+  caddy:
+    image: caddy:latest
     restart: always
     ports:
       - "80:80"
       - "443:443"
     links:
       - "webapp"
+    volumes:
+      - ./docker-misc/caddy/Caddyfile:/etc/caddy/Caddyfile
+
+
+#    nginx:
+#      container_name: nginx
+#      hostname: nginx
+#      build: ./docker-misc/nginx/
+#      restart: always
+#      ports:
+#        - "80:80"
+#        - "443:443"
+#      links:
+#        - "webapp"
   webapp:
     build:
       context: ./
diff --git a/docker-misc/caddy/Caddyfile b/docker-misc/caddy/Caddyfile
new file mode 100644
index 0000000..4da8286
--- /dev/null
+++ b/docker-misc/caddy/Caddyfile
@@ -0,0 +1,7 @@
+https://dunhack.me {
+    @sectool {
+        header_regexp User-Agent ^w3af.sourceforge.net|dirbuster|nikto|SF|sqlmap|fimap|nessus|whatweb|Openvas|jbrofuzz|libwhisker|webshag
+    }
+    respond @sectool 403
+    reverse_proxy http://webapp:3000
+}