Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Projects in Awesome Lists tagged with waf
A curated list of projects in awesome lists tagged with waf .
https://github.com/mguinness/kestrelwaf
A basic WAF for the Kestrel web server.
asp-net-core geolite2 reverse-proxy rules-engine waf
Last synced: 20 Dec 2024
https://github.com/timokoessler/easy-waf
An easy-to-use Web Application Firewall (WAF) for Node.js. Can be used with Express, Fastify, NextJS, NuxtJS ... or plain Node.js http.
javascript mit-license nodejs security typescript waf web-application-firewall web-application-security
Last synced: 15 Jan 2025
https://github.com/aapanel/bt-waf
堡塔云WAF,宝塔免费(free)的私有云网站应用防火墙(firewall),基于docker/nginx/lua开发
acl captcha cc-attack ddos ddos-attacks ddos-defense ddos-protection docker firewall http-flood modsecurity nginx security security-tools sqli-injection waf web-application-firewall web-security xss
Last synced: 19 Nov 2024
https://github.com/zaeem20/predator
A Powerful DDoS Tool For making Any Service DOWN, Also Included Proxies and Socks for Anonymization
anonymous cloudflare ddos flood http ping ping-of-death python python3 scapy slowloris teardrop tor waf
Last synced: 20 Nov 2024
https://github.com/azerpas/detect-headless
A web page that compiles methods used by Akamai, Datadome, and other bot detection solutions and WAF (Web Application Firewall) to identify headless bots like Selenium, Puppeteer, Phantom...
akamai datadome phantom puppeteer selenium waf
Last synced: 06 Nov 2024
https://github.com/corazawaf/libinjection-go
libinjection is a Golang port of the libinjection(https://github.com/client9/libinjection)
coraza-waf go golang libinjection owasp sql-injection waf xss
Last synced: 18 Jan 2025
https://github.com/echo-devim/litewaf
Lightweight In-App Web Application Firewall for PHP
attack-log attack-prevention php sanity-check security sqlinjection waf xss
Last synced: 30 Oct 2024
https://github.com/marcocesarato/php-aio-security
The objective of this class is offer an automatic system of protection for developers's projects and simplify some security operations as the check of CSRF or XSS all in a simple class. Infact you could just call the main method to have better security yet without too much complicated operations.
autocomplete class cleaning clickjacking compress cookies crypt csrf escape firewall hijacking htaccess injection php safety scanner security sql waf xss
Last synced: 25 Nov 2024
https://github.com/sefinek/cloudflare-waf-expressions
Cloudflare WAF (Web Application Firewall) rules + a script for their automatic updates. Block unwanted and malicious requests to enhance the security of your origin server!
antibot antibots cloudflare cloudflare-expression cloudflare-expressions cloudflare-firewall cloudflare-firewall-rules cloudflare-waf cloudflare-waf-expression cloudflare-waf-expressions cloudflare-waf-rules express expression expressions expressjs nodejs server server-safety server-security waf
Last synced: 07 Dec 2024
https://github.com/neuralegion/wafalyzer
Web Application Firewall (WAF) Detector
cli crystal detection fingerprinting firewall shard waf
Last synced: 30 Nov 2024
https://github.com/NeuraLegion/wafalyzer
Web Application Firewall (WAF) Detector
cli crystal detection fingerprinting firewall shard waf
Last synced: 18 Nov 2024
https://github.com/nemesida-waf/nemesida_waf_ce
Nemesida WAF Community Edition
community-edition free-waf-for-nginx nemesida-waf nemesida-waf-ce ngin-free-waf nginx nwaf-dyn waf web-application-firewall
Last synced: 08 Nov 2024
https://github.com/janusec/janusec-admin
The Unified Web Administration Portal for Janusec Application Gateway (an application security solution which provides Web Application Firewall, unified web administration portal, private key protection, web routing and scalable load balancing).
application-gateway gateway-waf waf web-application-firewall web-application-security
Last synced: 11 Nov 2024
https://github.com/Safe3/tianji
天机办公安全平台是有安科技推出的一款全方位办公安全防护产品,包含DNS、SWG、CASB、FIDO2、PassKey、ZTNA、SASE、DLP等功能。
casb data-security dlp dns dns-server fido2 passkey passwordless-authentication sase swg waf web-gateway ztna
Last synced: 21 Nov 2024
https://github.com/riverside/php-waf
:guardsman: PHP Web Application Firewall
firewall php php-firewall waf web-application-firewall webapp-firewall
Last synced: 11 Nov 2024
https://github.com/fabriziosalmi/zonecontrol
Cloudflare Zones Settings Automation using GitHub Actions
automation cloudflare cloudflare-api cloudflare-dns cloudflare-zone cybersecurity dnssec domains https infrastructure-as-code security settings tls13 waf workflow zones
Last synced: 09 Nov 2024
https://github.com/k4m4/cloudflare-detect
Detect whether a site is running behind Cloudflare.
cloudflare detection nodejs waf
Last synced: 12 Nov 2024
https://github.com/AmoloHT/TTWAF
「🧱」Test a list of payloads and see if you can bypass it
application bugbounty bugbounty-tool bypass firewall lfi payload rce rust sqli test waf xss
Last synced: 23 Oct 2024
https://github.com/gnh1201/caterpillar
Caterpillar Proxy - The simple web debugging proxy (formerly, php-httpproxy)
aeiou bot-detection captcha firewall forward-proxy hijacking http-proxy https-proxy k-anonymity mastodon mitm network-filtering parasitic-computing proxy reverse-proxy spam-detection ssl tls waf web-debugging-proxy
Last synced: 07 Dec 2024
https://github.com/signalsciences/sigsci-module-golang
Signal Sciences module for Go
auditly go golang rasp signal-sciences sigsci sigsci-module waf
Last synced: 26 Nov 2024
https://github.com/cleantalk/php-usp
UniForce - Universal Security plugin and Firewall for websites
attack-defense firewall security waf
Last synced: 24 Nov 2024
https://github.com/adel-qusay/adel-waf
PHP lightweight in-app Web Application Firewall
firewall php sqlinjection waf xss
Last synced: 24 Nov 2024
https://github.com/fijimunkii/shodan-waf-bypass
Firewall bypass script based on shodan search results
bypass firewall firewall-bypass shodan waf waf-bypass
Last synced: 12 Nov 2024
https://github.com/jackaduma/ai-waf
AI driven Web Application Firewall
ai classification-algorithm cyber-security cybersecurity deep-learning machine-learning natural-language-processing neural-network nlp nlp-deep-learning nlp-machine-learning text-classification textcnn waf web-application-firewall webapplicationfirewall
Last synced: 11 Nov 2024
https://github.com/nihirash/holy
HoLy is simple http library for Racket language
http-server racket-lang racket-library rest-api waf web
Last synced: 15 Nov 2024
https://github.com/geeknik/test-proxy
Advanced test for proxy & waf
cybersecurity devops infosec proxy quality-assurance security testing waf
Last synced: 13 Jan 2025
https://github.com/turnerlabs/sigsci_site_manager
Signal Sciences Site Manager
devsecops signal-sciences signal-sciences-api signalsciences sigsci waf web-application-firewall
Last synced: 23 Nov 2024
https://github.com/foospidy/sigsci-sounds
Listen to the soothing sounds of attacks and anomalies detected by the Signal Sciences web protection platform.
anomaly api attack go golang monitoring rasp signal-sciences signal-sciences-api signalsciences sigsci sound waf
Last synced: 07 Nov 2024
https://github.com/eliranmaman/elro-security-project
ELRO-Security is an advance & free WAF (Web Application Firewall), It is using to defend servers and especially websites around the internet. It is very easy to install and allow websites owner to add their own website via a web application interface which makes it accessible for almost everyone regardless of the level of codding.
firewalls security waf web web-application-firewall web-application-security web-application-security-scanner web-secure web-security webapplication webapplicationhacking
Last synced: 11 Nov 2024
https://github.com/msfidelis/awswaf-production-automation
Complete provisioning and automation management for AWS WAF V1 Rules - Regional Mode
aws aws-waf elasticsearch kibana kinesis kinesis-stream terraform waf
Last synced: 15 Oct 2024
https://github.com/cidram/docs
Documentation for CIDRAM.
anti-spam blocker cidr documentation firewall hacktoberfest protection security translations waf
Last synced: 16 Nov 2024
https://github.com/cidram/cidram-extras
Extras for CIDRAM.
cidr cidram cidram-extras cidrs extras firewall module modules open-source opensource php waf
Last synced: 16 Nov 2024
https://github.com/riotkit-org/wordpress-hardened
Secure and performant Wordpress installation on your Kubernetes cluster
docker docker-compose hardened k8s kubernetes multirun nginx nonroot-user openshift p2cli rootless-containers supervisord waf web-application-firewall wordpress wordpress-automation wordpress-kubernetes wordpress-security wordpress-updater
Last synced: 06 Dec 2024
https://github.com/cossacklabs/acra-censor-demo
AcraCensor (SQL firewall) example project: see how to configure AcraCensor to prevent SQL injections in vulnerable OWASP web application.
acra data-protection data-security database docker encryption firewall mutillidae owasp playground sql sqlfirewall sqlinjection waf
Last synced: 12 Nov 2024
https://github.com/m4tteop/minimal-modsec-istio-ext-wasm
Minial ModSecurity WAF as WASM Envoy extension inside a Istio Service Mesh
envoy istio istio-sidecar modsecurity waf webassembly
Last synced: 15 Oct 2024
https://github.com/anonvm/nginx-installer
Automate NGINX Compilation from Source with Custom Modules and Patches on Debian & Ubuntu
bot brotli cache cloudflare firewall geolocation http http2 https lua modsecurity nginx pagespeed proxy redis rtmp tengine waf
Last synced: 13 Oct 2024
https://github.com/veo/wdrproxy
A simple forward proxy tool with WAF and CDN functions
Last synced: 11 Nov 2024
https://github.com/riotkit-org/waf-proxy
Web Appliaction Firewall reverse-proxy using Coraza WAF + Caddy with ready-to-use rulesets
caddy cloud-native-security coraza-waf dependabot distroless golang k8s k8s-security kubernetes openshift reverse-proxy riotkit rootless-containers security waf web-application-firewall wordpress wordpress-security
Last synced: 06 Dec 2024
https://github.com/wishtack/modsecurity-exception-factory
👴🏻 The only tool that parses your ModSecurity audit logs to generate exceptions automagically ;)
infosec legacy modsecurity waf
Last synced: 21 Nov 2024
https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-wafv2
The CloudFormation Resource Provider Package For Amazon WAF v2.
aws-resources resources waf wafv2
Last synced: 08 Nov 2024
https://github.com/foospidy/pysigsci
Python module for Signal Sciences
api cli python rasp signal-sciences signal-sciences-api signalsciences sigsci waf
Last synced: 07 Nov 2024
https://github.com/githubfoam/k8s-cilium-remote-sandbox
k8s cilium eBPF microservice API network security visibility WAF Helm smoke test(cassandra)
cilium ebpf helm k8s smoke-test waf
Last synced: 11 Dec 2024
https://github.com/nigelhorne/cgi-info
Information about the CGI environment
Last synced: 30 Nov 2024
https://github.com/ansibleguy/infra_haproxy
Ansible Role to provision HAProxy Community (with ACME, GeoIP and some WAF-Features)
acme ansible ansible-role fingerprint fingerprinting geoip geoip-lookup haproxy iac infrastructure-as-code letsencrypt letsencrypt-certificates nac network-as-code waf
Last synced: 13 Oct 2024
https://github.com/codexlynx/envoy-filter-log4shell
:syringe: Plugable Envoy WebAssembly L7 (HTTP) firewall to prevent log4shell vulnerability injections.
blue-team cve-2021-44228 envoy istio log4shell waf wasm webassembly
Last synced: 06 Jan 2025
https://github.com/jonnyzzz/terraform-ip-whitelist
IP Whitelist example project
aws cloudfront security-group terraform waf
Last synced: 30 Oct 2024
https://github.com/timokoessler/easy-waf-data
This repository provides ip data for the Web Application Firewall EasyWAF.
javascript nodejs security typescript waf web-application-firewall
Last synced: 19 Nov 2024
https://github.com/101t/step2hack
python3 and python hidden features
backdoors bypass obfuscation python security waf
Last synced: 08 Nov 2024
https://github.com/wangyihang/acw-sc-v2-py
Python requests.HTTPAdapter for `acw_sc__v2`
Last synced: 05 Jan 2025
https://github.com/edoardottt/rfdos-scanner
Response Filter Denial of Service (RFDoS) Experimental Scanner
blue-team defensive-security denial-of-service dos hacking nuclei nuclei-templates offensive offensive-security red-team-tools red-teaming red-teaming-tools research-project rfdos waf
Last synced: 09 Jan 2025
https://github.com/caylent/lbcrawler
Crawl for AWS load balancers cross account
aws ec2 loadbalancers python waf
Last synced: 10 Dec 2024
https://github.com/epomatti/aws-apprunner-waf
AWS App Runner with WAF Web ACLs
aws aws-apprunner aws-ecr aws-security aws-waf iam sqli sqlinjection terraform waf
Last synced: 17 Jan 2025
https://github.com/moimhossain/azure-application-gateway
Provision Azure Application Gateway to protect an existing Azure Web site
azure-application-gateway azure-resource-group-deployment azure-resource-manager azure-resources azure-webapp azure-website azure-websites powershell powershell-script ssl ssl-certificate ssl-certificates waf web-application-firewall web-application-security
Last synced: 31 Dec 2024
https://github.com/foospidy/sigsci-docker-brew
Install and setup of a docker image for running Signal Sciences in reverse proxy mode on OSX
agent bash brew docker rasp signal-sciences signalsciences sigsci waf
Last synced: 27 Dec 2024
https://github.com/imjoseangel/terraform-azurerm-applicationgateway
Terraform Module for deploying a Azure Application Gateway
application-gateway azure cloud kubernetes networking terraform terraform-module waf
Last synced: 06 Jan 2025
https://github.com/ajmelian/pseudowaf
Implementación Web Application Firewall (WAF) en PHP. Diseñado para detectar y bloquear actividades maliciosas basadas en las reglas OWASP Top 10, filtrando las peticiones HTTP en busca de patrones maliciosos y baneando automáticamente las IPs atacantes usando iptables durante 24 horas.
cybersecurity iptables owasp owasp-top-10 php7 waf
Last synced: 12 Oct 2024
https://github.com/dod-iac/terraform-aws-cloudfront-waf
WAF for use with CloudFront
Last synced: 09 Jan 2025
https://github.com/foospidy/sigsci-ad-sync
A helper script for synchronizing AD group users to SigSci site members.
activedirectory api cli python3 rasp signal-sciences signalsciences sigsci user-management waf
Last synced: 27 Dec 2024
https://github.com/tinywaf/tinywaf
The self-hosted lightweight Web Application Firewall
firewall go security self-hosted waf
Last synced: 20 Dec 2024
https://github.com/moimhossain/outbound-url-rewrite-iis-config
An example repo that shows how to rewrite IIS URL (outbound) to configure legacy asp.net web apps hosted on Azure App Service but safeguarded with a WAF (Front-door/Application Gateway)
arr azure front-door iis redirect-ur uri-rewrite waf web-application-firewall webconfig
Last synced: 31 Dec 2024
https://github.com/dod-iac/terraform-aws-api-gateway-waf
AWS WAF Regional Web ACL for use with AWS API Gateway REST API
Last synced: 09 Jan 2025
https://github.com/modxcms/stackpath
StackPath Extra for MODX Revolution
cdn cms modx modx-revolution waf
Last synced: 12 Jan 2025
https://github.com/mikej81/pepper
Working location for Container based NGINX Proxy with ModSec(OWASP CRS) / NGINX App Protect.
Last synced: 19 Dec 2024
https://github.com/pyenb/cloudcheck
Checks if a given website, or list of websites, use the cloudflare service or not.
cloud cloudflare python python3 security security-automation security-tools waf waf-bypass
Last synced: 23 Nov 2024
https://github.com/thenareshofficial/ipscanmaster
A tool for gathering detailed information about IPv4 and DNS...
api bash dns firewall geolocation ip ipinfo ipscanmaster ipscanner linux nmap ping port port-scanner python3 subdomain-enumeration tool waf wafw00f whois-lookup
Last synced: 21 Nov 2024
https://github.com/foospidy/sigsci-helper-scripts
A collection of helper scripts for Signal Sciences
bash signal-sciences signal-sciences-api signalsciences sigsci waf
Last synced: 27 Dec 2024
https://github.com/betta-cyber/kwaf
lightweight web application firewall
firewall lightweight lua safe waf websafe
Last synced: 04 Dec 2024
https://github.com/habibiefaried/deep-learning-waf
Web application firewall with neural network algorithm
deeplearning firewall python waf
Last synced: 23 Dec 2024
https://github.com/rhiokim/thorn
(WIP...) WAF(web application firewall) with NignX and Naxsi
Last synced: 01 Jan 2025
https://github.com/destan0098/subcheck
This Tool Check Domains and Subdomains has Open Port 80 or 443 and use cdn or not
cdn enum recon security security-tools vulnerability-scanners waf
Last synced: 13 Jan 2025
https://github.com/chaitin/traefik-safeline
Traefik plugin to proxy requests to safeline waf
fiewall middleware safeline traefik-plugin waf
Last synced: 05 Nov 2024
https://github.com/michalswi/honeypot-results
honeypot results
firewall-rules honeypot pentesting waf
Last synced: 13 Jan 2025
https://github.com/sjinks/node-modsecurity
ModSecurity Connector for Node.js
modsec modsecurity security waf
Last synced: 14 Nov 2024
https://github.com/fabriziosalmi/wafcontrol
Cloudflare WAF Settings Automation using GitHub Actions
cloudflare cloudflare-api cybersecurity firewall-rules rules security settings waf web-application-firewall workflow zones
Last synced: 12 Dec 2024
https://github.com/cletqui/imperva-waf_direct-access
Check if your Imperva WAF protected websites are accessible directly!
application-security cybersecurity imperva waf web-application-firewall
Last synced: 12 Dec 2024
https://github.com/geekcell/terraform-aws-waf
Terraform module to provision an AWS Web Application Firewall.
aws firewall security terraform terraform-module waf web-application-firewall
Last synced: 12 Jan 2025
https://github.com/rizasghari/kalkan
⛊ KALKAN ⛊ | A simple, experimental, configurable, standalone reverse proxy service with built-in basic rate limiting to control and protect the backend API by filtering and throttling incoming requests.
go golang load-balancer networking proxy rate-limit rate-limiter rate-limiting reverse-proxy waf
Last synced: 16 Jan 2025
https://github.com/tinywaf/managed-rules
A collection of default firewall rules maintained by the TinyWAF team
Last synced: 05 Jan 2025
https://github.com/ajmelian/pseudowaf-en-laravel11
Módulo middleware, basado en PseudoWAF, diseñado para actuar como un Firewall de Aplicaciones Web (WAF) dentro de una aplicación Laravel 11. Su objetivo principal es la autoprotección de la aplicación ante las ciberamenazas comunes que figuran en el OWASP Top 10 mediante la detección y bloqueo automático de actividades maliciosas.
cybersecurity iptables laravel-framework laravel11 owasp owasp-top-10 php8 waf
Last synced: 10 Jan 2025
https://github.com/taqsblaze/reqweb
ReqWeb is a lightweight and customizable Web Application Firewall (WAF) for Node based applications It provides IP-based filtering, request rate limiting, and logging, helping to protect your web applications from malicious traffic and unauthorized access.
firewall firewall-rules javascript node nodejs react secureaccess security waf web
Last synced: 19 Dec 2024
