web-application-firewall

There are 27 repositories under web-application-firewall topic.

• chaitin / SafeLine

  一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术，作为反向代理接入，保护你的网站不受黑客攻击。 A free WAF that is sufficiently simple, effective, and powerful. Utilizing industry-leading semantic engine detection technology, it operates as a reverse proxy to protect your website from hacker attacks.

  aclccfirewallhttp-floodsecuritysecurity-toolssql-injectionwafweb-application-firewallweb-securityxsscaptchadockermodsecuritynginx
  Language:C++ 8950

• 0xInfection / Awesome-WAF

  🔥 Web-application firewalls (WAFs) from security standpoint.

  wafweb-application-firewallfirewallawesome-listawesomewaf-bypasswaf-detectionwaf-testwaf-testingwaf-fingerprintsbypass-wafinfosecsecurity
  Language:Python 5962

• EnableSecurity / wafw00f

  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

  waffingerprintwaffitweb-application-firewall
  Language:Python 4911
• bunkerweb

  bunkerity / bunkerweb

  🛡️ Make your web services secure by default !

  nginxmodsecuritydockersecuritydnsblreverse-proxybunkerized-nginxhardeningweb-securitysecurity-tuningcybersecuritydevsecopsantibotletsencryptswarmkubernetesdevopshostingwafweb-application-firewall
  Language:Python 3515

• Ekultek / WhatWaf

  Detect and bypass web application firewalls and protection systems

  bypassfirewallweb-applicationdetectionwaffingerprintingweb-application-firewall-bypassingweb-application-firewall
  Language:Python 2528
• coraza

  corazawaf / coraza

  OWASP Coraza WAF is a golang modsecurity compatible web application firewall library

  corazawafcoraza-wafowasp-crsmodsecuritycorerulesetowaspgolanggohttpweb-application-firewallhacktoberfest
  Language:Go 1853

• ADD-SP / ngx_waf

  Handy, High performance, ModSecurity compatible Nginx firewall module & 方便、高性能、兼容 ModSecurity 的 Nginx 防火墙模块

  nginxnginx-modulesweb-application-firewallwafmodsecuritymodsecurity-nginxopenrestycaptchahcaptcharecaptcha
  Language:C 1454

• wallarm / gotestwaf

  An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

  owaspapi-securitysecuritybugbountysecurity-toolswafweb-application-securityweb-application-firewallsecurity-testinggraphql-securitygrpc-securityrest-security
  Language:Go 1419

• Janusec / janusec

  JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server Load Balance, and Cookie Compliance etc. JANUSEC应用网关，提供安全的接入，包括反向代理、K8S Ingress Controller、自动化ACME证书、WAF、5秒盾、CC防御、OAuth2身份认证、GSLB负载均衡与Cookie合规等。

  wafweb-application-firewallapplication-gatewayload-balancegatewayapplication-securitygolangsecurityweb-application-securitysql-injectionjanusec-application-gatewayweb-sshjanusecport-forwardingacmek8s-ingress-controllercookie-bannergslbcookie-compliance
  Language:Go 1109

• titansec / OpenWAF

  Web security protection system based on openresty

  wafopenrestynginxluawebnginx-luaopenwafweb-application-firewallcchttp-flood
  Language:C 744

• openappsec / openappsec

  open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

  api-securityapplication-securitykubernetesnginxweb-application-firewallappsecdevsecopskongrate-limitingsecurity-toolsthreat-preventionwafowaspowasp-top-tennginx-proxy-manager
  Language:C++ 683

• tempesta-tech / tempesta

  All-in-one solution for high performance web content delivery and advanced protection against DDoS and web attacks

  web-application-firewalllinux-kernelhigh-performancehttp-acceleratorload-balancerdatabasetlshttp2securitybotsddos-protectionweb-performanceweb-security
  Language:C 604

• leohearts / awd-watchbird

  A powerful PHP WAF for AWD

  phpawdawd-frameworkweb-application-firewallctfwaf
  Language:PHP 579
• api-firewall

  wallarm / api-firewall

  Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.

  proxyfirewallwafapi-gatewayapigatewayapi-wrappersecurity-toolssecurityapi-securityapiapi-firewallopenapi-specificationopenapiswaggeropenapi-securityrest-securityapi-wafweb-application-securityweb-application-firewallopenapi-spec
  Language:Go 539
• uuWAF

  Safe3 / uuWAF

  A industry-leading free, high-performance, AI and semantic technology web application and API security protection product - uuWAF. 一款工业级免费、高性能、高扩展，支持AI和语义引擎的Web应用和API安全防护产品-南墙。Web应用防火墙、WAF、WAAP

  wafapplication-securityweb-application-firewallmodsecurityweb-security-gatewayapi-gatewayapi-securitywaapsecurityuuwafddoshttp-floodowasp
  Language:C 515

• casbin / caswaf

  HTTP & OAuth Gateway and Web Application Firewall (WAF) based on ModSecurity, online demo: https://door.caswaf.com

  firewallgatewayhttpoauthproxywafweb-application-firewallmodsecuritymodsecurity-core-rule-set
  Language:Go 298

• nmmapper / dnsdumpster

  A tool to perform DNS reconnaissance on target networks. Among the DNS information got from include subdomains, mx records, web application firewall detection and more fingerprinting and lookups

  detectiondns-fingerprintingdns-reconnaissancednsdumpsternetworknmmapperreconnaissancescannerscannerssubdomainsubdomain-finderweb-application-firewall
  Language:Python 246

• wafpassproject / wafpass

  Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.

  analysing-parametersbypass-methodspayloadwafweb-application-firewall
  Language:Python 206

• AvalZ / WAF-A-MoLE

  A guided mutation-based fuzzer for ML-based Web Application Firewalls

  webweb-securityweb-application-firewallmachine-learningadversarial-machine-learning
  Language:Python 155
• blacklists

  fabriziosalmi / blacklists

  Hourly updated domains blacklist 🚫

  adguardadguard-blocklistblacklistblacklist-domainsblacklist-managementblacklistingblacklistsblocklistblocklist-aggregatorblocklistsdns-blacklistdns-blockingdns-blocklistsdns-filteringdomain-blockerdomain-blocklistdomains-listpi-holepihole-blocklistsweb-application-firewall
  Language:Shell 103

• Alemalakra / xWAF

  xWAF 3.0 - Free Web Application Firewall, Open-Source.

  applicationblockvulnsfirewallphpprotectwebsitesqlivulns-fixedwafwebweb-application-firewallxss
  Language:PHP 70

• corazawaf / coraza-spoa

  EXPERIMENTAL: A wrapper around the OWASP Coraza WAF for HAProxy's SPOE filters

  corazahaproxyhaproxy-spoawafweb-application-firewall
  Language:Go 67

• aaPanel / BT-WAF

  堡塔云WAF，宝塔免费(free)的私有云网站应用防火墙(firewall)，基于docker/nginx/lua开发

  aclcaptchacc-attackddosddos-attacksddos-defenseddos-protectiondockerfirewallhttp-floodmodsecuritynginxsecuritysecurity-toolssqli-injectionwafweb-application-firewallweb-securityxss
  43
• ML-based-WAF

  vladan-stojnic / ML-based-WAF

  Simple machine learning based web application firewall (WAF) created in python

  sqlixsspath-traversalsql-injectioncross-site-scriptingcmdicommand-injectionparameter-tamperinghttpmlmachine-learningsvmtf-idfdecision-treeswafweb-application-firewallpythonsklearnscapydash
  Language:Jupyter Notebook 41

• kitabisa / teler-proxy

  🔐 teler Proxy enabling seamless integration with teler WAF 🛡️ to protect locally running web service against a web-based attacks. 🥷

  firewallintrusion-detectionintrusion-preventionproxy-serverreverse-proxysecure-by-defaulttelerteler-waftunnel-serverwafweb-application-firewallweb-application-securityteler-proxy
  Language:Go 37

• Janusec / janusec-admin

  The Unified Web Administration Portal for Janusec Application Gateway (an application security solution which provides Web Application Firewall, unified web administration portal, private key protection, web routing and scalable load balancing).

  application-gatewaygateway-wafwafweb-application-firewallweb-application-security
  Language:TypeScript 31

• nemesida-waf / nemesida_waf_free

  Nemesida WAF Community Edition

  community-editionfree-waf-for-nginxnemesida-wafnemesida-waf-cengin-free-wafnginxnwaf-dynwafweb-application-firewall
  29

• wallarm / docker-wallarm-node

  ⚡️ Docker official image for Wallarm Node. API security platform agent.

  nginxwafsecurity-toolssecurityweb-application-firewallapi-securityrest-securityopenapi-securityenvoyproxysecurity-automationapi-firewallapplication-firewallsecurity-scannersecurity-audit
  Language:Shell 28

• riverside / php-waf

  :guardsman: PHP Web Application Firewall

  firewallweb-application-firewallphpphp-firewallwafwebapp-firewall
  Language:PHP 26

• timokoessler / easy-waf

  An easy-to-use Web Application Firewall (WAF) for Node.js. Can be used with Express, Fastify, NextJS, NuxtJS ... or plain Node.js http.

  javascriptmit-licensenodejssecuritytypescriptwafweb-application-firewallweb-application-security
  Language:TypeScript 26

• numanozdemircom / webcop-firewall

  WebCOP Firewall is advanced and PHP based web application firewall. Doesnt ask for root privileges.

  web-application-firewallphpsecuritywaf
  Language:PHP 24

• paulveillard / cybersecurity-ethical-hacking

  An ongoing collection of awesome ethical hacking tools, software, libraries, learning tutorials, frameworks, academic and practical resources

  hackathonhackinghackingtoolshackerrank-solutionshacking-toolpentestvulnerability-detectionvulnerabilitiessecurity-toolssecurity-auditcybersecuritycybersecurity-incidentswebapplicationweb-application-securityweb-application-security-scannerweb-application-firewall
  Language:Python 22

• f5devcentral / f5-agility-labs-waf

  F5 Agility Labs for Web Application Firewall Use Cases

  documentationtraining-labsf5-agility-labsf5-asmweb-application-firewallweb-application-securityapplication-securityddos-mitigationhttp-proxysecurity
  Language:Shell 19

• jackaduma / AI-WAF

  AI driven Web Application Firewall

  aicyber-securitycybersecuritydeep-learningmachine-learningneural-networknlptext-classificationtextcnnwafweb-application-firewallwebapplicationfirewallclassification-algorithmnatural-language-processingnlp-deep-learningnlp-machine-learning
  Language:Python 16

• reinforchu / NachtWal

  Reinforced Mitigation Security Filter

  csharpiiswindows-serverasp-netweb-application-firewallxsssecurity
  Language:C# 16

• bunkerity / bunkerweb-plugins

  Official plugins for BunkerWeb.

  bunkerwebclamavcorazacrowdsecdiscordsecurityslackvirustotalwafweb-application-firewall
  Language:HTML 15