Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for web application firewall
web-application-firewall
x
543 search results found
Safeline
⭐
7,795
一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术,作为反向代理接入,保护你的网站不受黑客攻击。
Modsecurity
⭐
7,187
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
Awesome Waf
⭐
5,899
🔥 Web-application firewalls (WAFs) from security standpoint.
Wafw00f
⭐
4,964
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
Naxsi
⭐
4,739
NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
Ngx_lua_waf
⭐
3,668
ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防
Htrace.sh
⭐
3,514
My simple Swiss Army knife for http/https troubleshooting and profiling.
Bunkerweb
⭐
3,410
🛡️ Make your web services secure by default !
Padrino Framework
⭐
3,356
Padrino is a full-stack ruby framework built upon Sinatra.
Burpsuite Collections
⭐
2,914
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解 of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Openrasp
⭐
2,638
🔥Open source RASP solution
Whatwaf
⭐
2,508
Detect and bypass web application firewalls and protection systems
Cloudflare Docs
⭐
2,394
Cloudflare’s documentation
Termbox
⭐
1,738
Library for writing text-based user interfaces
Vxscan
⭐
1,730
python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释
Coraza
⭐
1,629
OWASP Coraza WAF is a golang modsecurity compatible web application firewall library
Collection Document
⭐
1,416
Collection of quality safety articles. Awesome articles.
Ngx_waf
⭐
1,413
Handy, High performance, ModSecurity compatible Nginx firewall module & 方便、高性能、兼容 ModSecurity 的 Nginx 防火墙模块
Roxy Wi
⭐
1,359
Web interface for managing Haproxy, Nginx, Apache and Keepalived servers
Gotestwaf
⭐
1,354
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
Xash3d Fwgs
⭐
1,325
Xash3D FWGS engine.
Modsecurity Nginx
⭐
1,246
ModSecurity v3 Nginx Connector
Waf
⭐
1,246
使用Nginx+Lua实现的WAF(版本v1.0)
Cloudflare Go
⭐
1,235
Go library for the Cloudflare v4 API
Lua Resty Waf
⭐
1,105
High-performance WAF built on the OpenResty stack
Janusec
⭐
1,082
JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server Load Balance, and Cookie Compliance etc. JANUSEC应用网关,提供安全的接入,包括反向代理、K8S Ingress Controller、自动化ACME证书、WAF、5秒盾、CC防御、OAuth2身份认证、GSLB负
Jxwaf
⭐
1,007
JXWAF(锦衣盾)是一款开源web应用防火墙
Openstar
⭐
990
lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx
Waf Bypass
⭐
970
Check your WAF before an attacker does
Aws
⭐
921
A collection of bash shell scripts for automating various tasks with Amazon Web Services using the AWS CLI and jq.
Source Engine
⭐
895
Modified source engine (2017) developed by valve and leaked in 2020. Not for commercial purporses
Edgeadmin
⭐
871
CDN & WAF集群管理系统。
Laravel Firewall
⭐
824
Web Application Firewall (WAF) package for Laravel
Code Audit Challenges
⭐
790
Code-Audit-Challenges
Shieldon
⭐
753
Web Application Firewall (WAF) for PHP.
Openwaf
⭐
743
Web security protection system based on openresty
Build
⭐
741
TeaWeb-可视化的Web代理服务。DEMO: http://teaos.cn:7777
Awsls
⭐
735
A list command for AWS resources
Curiefense
⭐
693
Curiefense is a unified, open source platform protecting cloud native applications.
Burpfastjsonscan
⭐
683
一款基于BurpSuite的被动式FastJson检测插件
Waf
⭐
680
Win Application Framework (WAF) is a lightweight Framework that helps you to create well structured XAML Applications.
Burpsuitehttpsmuggler
⭐
680
A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
Waf
⭐
643
🚦Web Application Firewall or API Gateway(应用防火墙/API网关)
Auto Earn
⭐
621
一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具
Tempesta
⭐
592
All-in-one solution for high performance web content delivery and advanced protection against DDoS and web attacks
Nginx Autoinstall
⭐
583
Compile NGINX from source with custom modules and patches on Debian and Ubuntu
Openappsec
⭐
557
open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.
Atlas
⭐
545
Quick SQLMap Tamper Suggester
Awesome Lua
⭐
527
A curated list of awesome Lua frameworks, libraries and software.
Awesome Cloud Security
⭐
527
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
Identywaf
⭐
518
Blind WAF identification tool
Awd Watchbird
⭐
515
A powerful PHP WAF for AWD
Api Firewall
⭐
515
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
Sec Dev In Action Src
⭐
498
《白帽子安全开发实战》配套代码
X Waf
⭐
444
适用于中小企业的云waf
Uuwaf
⭐
425
一款社区驱动的免费、高性能、高扩展顶级Web应用和API安全防护产品-南墙
Hawkscan
⭐
417
Security Tool for Reconnaissance and Information Gathering on a website. (python 3.x)
Wscan
⭐
415
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
Protect
⭐
390
Proactively protect your Node.js web services
Awsweeper
⭐
381
A tool for cleaning your AWS account
Secbox
⭐
377
🖤 网络安全与渗透测试工具导航
Fenjing
⭐
375
专为CTF设计的Jinja2 SSTI全自动绕WAF脚本 | A Jinja2 SSTI cracker for bypassing WAF, design for CTF
Awesome Nginx Security
⭐
373
🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)
Ns 3 Dev Git
⭐
366
GitHub read-only mirror of ns-3-dev repository, will be kept in sync with main GitLab.com repository. Please DO NOT file pull requests here; instead, file issues and merge requests at https://gitlab.com/nsnam/ns-3-dev/
Glmark2
⭐
355
glmark2 is an OpenGL 2.0 and ES 2.0 benchmark
Kupfer
⭐
352
kupfer, smart, quick launcher. `master' is kupfer's release branch.
Webpwn3r
⭐
350
WebPwn3r - Web Applications Security Scanner.
Cloudbunny
⭐
342
CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.
Always Learning
⭐
341
404 Not Found的知识库:计算机理论基础、计算机技术基础、底层研究、安全技术、安全研究、人工智能、企业安全
Poly2tri
⭐
310
Automatically exported from code.google.com/p/poly2tri
Weighttp
⭐
296
weighttp on github for easier collaboration - main repo still on lighttpd.net
Ai Security Learning
⭐
291
自身学习的安全数据科学和算法的学习资料
Raptor_waf
⭐
281
Raptor - WAF - Web application firewall using DFA [ Current version ] - Beta
Caswaf
⭐
280
HTTP & OAuth Gateway and Web Application Firewall (WAF) based on ModSecurity, online demo: https://door.caswaf.com
Bypasswaf
⭐
273
Add headers to all Burp requests to bypass some WAF products
Securetea Project
⭐
260
The OWASP SecureTea Project provides a one-stop security solution for various devices (personal computers / servers / IoT devices)
Ns3 Mmwave
⭐
258
ns-3 module for simulating mmWave-based cellular systems. See https://ieeexplore.ieee.org/document/8344116/ (open access) as a reference.
Fomalhaut
⭐
254
🚀 A Simple API Gateway for Building Security and Flexible Microservices.
Autosqli
⭐
252
An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.
Fuzzdb Collect
⭐
248
网络上安全资源的搜集
Cerberus
⭐
246
一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产 bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQ XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
Myblog
⭐
236
记录和分享学习的旅程!
Docker Waf
⭐
236
An NGINX and ModSecurity based Web Application Firewall for Docker
Ntpsec
⭐
232
The Network Time Protocol suite, refactored GitHub is a mirror of https://gitlab.com/NTPsec/ntpsec
Ftw
⭐
229
Framework for Testing WAFs (FTW!)
Waf Bypass Cheat Sheet
⭐
224
Another way to bypass WAF Cheat Sheet (draft)
Abuse Ssl Bypass Waf
⭐
213
Bypassing WAF by abusing SSL/TLS Ciphers
Bypassing Web Application Firewalls
⭐
209
A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers
Sks
⭐
209
Security Knowledge Structure(安全知识汇总)
Teler Waf
⭐
209
teler-waf is a Go HTTP middleware that provides teler IDS functionality.
Coraza Caddy
⭐
206
OWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities
Tl Ops Manage
⭐
205
api-gateway, framework for service management based on openresty。balance, health-check, limit-fuse, waf, 负载均衡,健康检查,服务熔断,服务限流,动态配置,数据统计, waf过滤,黑白名单,基于openresty的API网关
Aws Firewall Factory
⭐
205
Easily improve the security of your web applications with aws firewall factory. Protect your valuable assets with seamless WAF deployment, updates, and staging, all efficiently managed centrally with Firewall Manager.
Wafpass
⭐
202
Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.
Dirbrute
⭐
200
多线程WEB目录爆破工具 [Multi-thread WEB directory blasting tool(with dics inside) ]
Cloudflare Wordpress
⭐
198
A Cloudflare plugin for WordPress
House Of Corrosion
⭐
196
A description of the "House of Corrosion" GLIBC heap exploitation technique.
Xorpass
⭐
191
Encoder to bypass WAF filters using XOR operations.
Pow Shield
⭐
190
Project dedicated to fight Layer 7 DDoS with proof of work, with an additional WAF and controller. Completed with full set of features and containerized for rapid and lightweight deployment.
Bantam
⭐
186
A PHP backdoor management and generation tool/C2 featuring end to end encrypted payload streaming designed to bypass WAF, IDS, SIEM systems.
1-100 of 543 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.