{"id":13489985,"url":"https://github.com/wallarm/awesome-nginx-security","last_synced_at":"2025-04-04T08:09:40.960Z","repository":{"id":61666951,"uuid":"102538557","full_name":"wallarm/awesome-nginx-security","owner":"wallarm","description":"🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)","archived":false,"fork":false,"pushed_at":"2023-10-24T10:27:57.000Z","size":27,"stargazers_count":736,"open_issues_count":4,"forks_count":73,"subscribers_count":38,"default_branch":"master","last_synced_at":"2024-10-30T05:57:47.293Z","etag":null,"topics":["api-security","apigateway","application-security","awesome-list","awesome-lists","kubernetes","load-balancer","mod-security","modsecurity","naxsi","nginx","nginx-configuration","nginx-environment","nginx-security","nginx-server","security","waf","webserver"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/wallarm.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2017-09-05T23:13:39.000Z","updated_at":"2024-10-30T00:15:34.000Z","dependencies_parsed_at":"2024-01-05T23:44:28.370Z","dependency_job_id":"197d9577-6e79-43e3-bbc4-cbb08ff8f567","html_url":"https://github.com/wallarm/awesome-nginx-security","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wallarm%2Fawesome-nginx-security","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wallarm%2Fawesome-nginx-security/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wallarm%2Fawesome-nginx-security/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wallarm%2Fawesome-nginx-security/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/wallarm","download_url":"https://codeload.github.com/wallarm/awesome-nginx-security/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247142074,"owners_count":20890653,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["api-security","apigateway","application-security","awesome-list","awesome-lists","kubernetes","load-balancer","mod-security","modsecurity","naxsi","nginx","nginx-configuration","nginx-environment","nginx-security","nginx-server","security","waf","webserver"],"created_at":"2024-07-31T19:00:38.970Z","updated_at":"2025-04-04T08:09:40.938Z","avatar_url":"https://github.com/wallarm.png","language":null,"funding_links":[],"categories":["Others","Collections","Web","\u003ca id=\"8c5a692b5d26527ef346687e047c5c21\"\u003e\u003c/a\u003e收集","\u003ca id=\"e97d183e67fa3f530e7d0e7e8c33ee62\"\u003e\u003c/a\u003e未分类"],"sub_categories":["\u003ca id=\"f110da0bf67359d3abc62b27d717e55e\"\u003e\u003c/a\u003e新添加的"],"readme":"# awesome-nginx-security\n\nA curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)\n\n## Articles\n\n- [Building a Security Shield for Your Applications with NGINX](https://www.nginx.com/blog/build-application-security-shield-with-nginx-wallarm)\n- [Pitfalls and Common Security Mistakes in NGINX configuration](https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/)\n- [Let's Encrypt \u0026 Nginx](https://letsecure.me/secure-web-deployment-with-lets-encrypt-and-nginx/)\n- [Installing the Nginx Plus with mod_security WAF](https://www.nginx.com/resources/admin-guide/nginx-plus-modsecurity-waf-installation-logging/)\n- [CloudFlare's new WAF: compiling to Lua (based on Nginx)](https://blog.cloudflare.com/cloudflares-new-waf-compiling-to-lua/)\n- [Tips to harden your nginx configuration](https://www.acunetix.com/blog/articles/nginx-server-security-hardening-configuration-1/#comment-16863)\n- [How To Protect an Nginx Server with Fail2Ban on Ubuntu 14.04](https://www.digitalocean.com/community/tutorials/how-to-protect-an-nginx-server-with-fail2ban-on-ubuntu-14-04)\n- [Important steps to take to make an Nginx server more secure](https://help.dreamhost.com/hc/en-us/articles/222784068-The-most-important-steps-to-take-to-make-an-Nginx-server-more-secure)\n- [Building Security into Cloud Native Apps with NGINX](https://www.helpnetsecurity.com/2019/02/19/building-security-into-cloud-native-apps-with-nginx/)\n- [Sandboxing nginx with systemd](https://medium.com/@nickodell/sandboxing-nginx-with-systemd-80441923c555)\n\n## Talks\n\n- [AppSecCali 2019 Lightning Talk - Building Cloud-Native Security for Apps and APIs with NGINX/Kubernetes](https://www.youtube.com/watch?v=xcjFgZ_FN4w) - super practical\n- [Let's Encrypt TLS for Every (video)](https://www.youtube.com/watch?v=ac4tE4_4nU0)\n- [Behavior Based Security with Repsheet: Aaron Bedra @nginxconf 2014 (video)](https://www.youtube.com/watch?v=9AyaVxzqYoA)\n- [Scripting NGINX for Overload Protection (video)](https://www.youtube.com/watch?v=uFm-tp4t2mE)\n- [Naxsi, a WAF for NGINX (video)](https://www.youtube.com/watch?v=JiJHCodn_PQ)\n\n## Configuration\n\n- [gixy](https://github.com/yandex/gixy/) - a tool to analyze Nginx configuration to prevent security misconfiguration\n- [nginxconfig.io](https://nginxconfig.io) - [GitHub](https://github.com/valentinxxx/nginxconfig.io) - Online nginx configuration generator for general purposes.\n\n## WAF for NGINX. Protect APIs, applications and microservices\n\n- [mod_security](https://github.com/SpiderLabs/ModSecurity-nginx) - mod_security for NGINX\n- [naxsi](https://github.com/nbs-system/naxsi) - NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX.\n- [NGINX 3rd Party Modules](https://www.nginx.com/resources/wiki/modules/) -  a list of third-party modules (including security-related) for NGINX and NGINX Plus, created and maintained by members of the NGINX community\n- [Wallarm](https://wallarm.com) - Advanced Cloud-Native WAF\n\n## WAF for Kubernetes. Protect Cloud Native Apps\n\n- [WAF for Kubernetes](https://wallarm.com/solutions/waf-for-kubernetes/) - Deploy WAF in Kubernetes on Ingeress Controller or as a sidecar proxy\n\n## Bot mitigation / Anti-scrapping / Account take-over prevention \n\n- [testcookie-nginx-module](https://github.com/kyprizel/testcookie-nginx-module) - Simple robot mitigation module using cookie based challenge/response technique \n\n## NGINX forks\n\n- [SEnginx](https://github.com/NeusoftSecurity/SEnginx) - Security-Enhanced nginx\n- [lua-resty-waf](https://github.com/p0pr0ck5/lua-resty-waf) - High-performance WAF built on the OpenResty stack\n- [bunkerized-nginx](https://github.com/bunkerity/bunkerized-nginx) - nginx based Docker image secure by default.\n\n## Other\n\n- [Secure nginx config. GIST](https://gist.github.com/plentz/6737338) - nginx configuration for improved security and performance\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwallarm%2Fawesome-nginx-security","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwallarm%2Fawesome-nginx-security","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwallarm%2Fawesome-nginx-security/lists"}