ModSecurity-nginx
coraza
Our great sponsors
ModSecurity-nginx | coraza | |
---|---|---|
4 | 7 | |
1,423 | 1,807 | |
2.2% | 6.4% | |
5.7 | 8.7 | |
2 days ago | about 14 hours ago | |
Perl | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ModSecurity-nginx
-
NGINX WAF alternatives: App Protect vs. ModSecurity vs. open-appsec
ModSecurity v3 has also introduced major changes in how ModSecurity works. The entire WAF is not packed together anymore. Instead, the single libmodsecurity engine is paired with a connector module that interfaces the application with the server. Different connectors are available based on the server and are hosted as independent packages. This means that there's a separate ModSecurity v3 Nginx Connector project.
-
Passing variables from modsecurity to nginx
As far as I can tell there is a feature request and/or some custom method to pass variables from modsecurity back to nginx but I'm looking for the other way around
-
What (software, open source) WAF are you using with (open source) Nginx?
I'm currently erring toward ModSecurity & the Nginx connector now that it's been de-Apache'd.
-
How to implement WAF on Kong Ingress controller? (like ModSecurity v3)
ModSecurity Connector: https://github.com/SpiderLabs/ModSecurity-nginx
coraza
- Coraza: Coraza WAF is a Golang modsecurity compatible web application firewall
-
WAF with reverse proxy
Is there a reason no one hasn't made a Docker template for OWASP Coraza (https://github.com/corazawaf/coraza) or ModSecurity (https://github.com/SpiderLabs/ModSecurity) for the use of a reverse proxy?
- Traefik WAF Plugin with OWASP/Modsecurity
-
Go: Yaml DB
Interesting work, I was going to implement https://github.com/antchfx/jsonquery for github.com/jptosso/coraza-waf but your idea seems quite useful. I would remove logrus, as logs should be created by the implementation, not the library (or at least that's what a think)
-
Protect your web applications with Coraza library
Coraza WAF is a golang web application firewall library that has reached a stable point (v1 is releasing tomorow). https://github.com/jptosso/coraza-waf
-
Golang Web Application Firewall
You have a point there, maybe releasing a v1.0 is not that crazy at all, it's much easier to type import "github.com/jptosso/coraza-waf/v1" indeed
What are some alternatives?
nginx-waf - Nginx + ModSecurity WAF
traefik-modsecurity-plugin - Traefik plugin to proxy requests to owasp/modsecurity-crs:apache container
ModSecurity - ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
lua-resty-waf - High-performance WAF built on the OpenResty stack
coraza-caddy - OWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities
BunkerWeb - 🛡️ Make your web services secure by default !
naxsi - NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
coraza-gin - Coraza WAF Gin-gonic middleware
coreruleset - OWASP CRS (Official Repository)
coraza-traefik