esp-v2
api-firewall
Our great sponsors
esp-v2 | api-firewall | |
---|---|---|
7 | 15 | |
258 | 527 | |
0.4% | 0.9% | |
7.5 | 6.9 | |
9 days ago | 5 days ago | |
Go | Go | |
Apache License 2.0 | Mozilla Public License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
esp-v2
-
Serverless Security Best Practices
Moreover, integrating rate limiting can thwart DDoS attacks, and schema validation can prevent malformed requests, ensuring only legitimate and well-formed traffic reaches your serverless functions. Tools like Amazon API Gateway, Azure API Management, and Google Cloud Endpoints offer these capabilities, allowing you to set up custom authorization workflows and request validation rules that align with your security requirements.
- GCP ESP JWT authentication bypass via `X-HTTP-Method-Override` header
-
API Gateway VS API Endpoints VS Apigee
AFAIK, API Gateway is just managed Cloud Endpoints, which are just ESPv2 containers. Cloud Endpoints are still a thing but I would agree that they are a bit dead, as they don't support OpenAPI v3, which was released in 2016. See this support ticket from 2018: https://issuetracker.google.com/issues/78271318?pli=1
-
Google Cloud Reference
Cloud Endpoints: Cloud API gateway 🔗Link
-
Any grpc tutorial or github repo that contains best practices to develop production services.
We use the ESPv2 gateway (https://github.com/GoogleCloudPlatform/esp-v2) to transcode between REST/JSON and gRPC/protobuf for client-to-backend communication.
api-firewall
-
api-firewall VS asteria - a user suggested alternative
2 projects | 27 Aug 2023
-
api-firewall VS openappsec - a user suggested alternative
2 projects | 11 Nov 2022
-
Find and block leaked API tokens
In this case, you can try to block such tokens as strings inside incoming API requests. For unmanaged APIs, you can install the OSS API-firewall proxy https://github.com/wallarm/api-firewall
-
Open Source API proxy firewall for request and response validation by OpenAPI specs. 70% faster than Nginx!
The product is open source, available at DockerHub and already got 1 billion (!!!) pulls. To support this project, you can star the repository. Check it out: https://github.com/wallarm/api-firewall
- Open Source API proxy firewall for request and response validation by OpenAPI specs. 70% faster than Nginx! Available at DockerHub and already got 1 billion pulls.
- What opensource tool for test api security solutions u use?
-
What firewall is the best for you?
Open source API firewall https://github.com/wallarm/api-firewall
What are some alternatives?
goku_lite - A Powerful HTTP API Gateway in pure golang!Goku API Gateway (中文名:悟空 API 网关)是一个基于 Golang开发的微服务网关,能够实现高性能 HTTP API 转发、服务编排、多租户管理、API 访问权限控制等目的,拥有强大的自定义插件系统可以自行扩展,并且提供友好的图形化配置界面,能够快速帮助企业进行 API 服务治理、提高 API 服务的稳定性和安全性。
gotestwaf - An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
grpcstreams - An example of using grpc Server side streaming
apiclarity - An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
iam-go - An opinionated Open Source implementation of the google.iam APIs on top of Cloud Spanner.
openapi-preprocessor - An authoring tool for OpenAPI specifications
protoc-gen-typescript-http - Generate types and service clients from protobuf definitions annotated with http rules.
oasdiff - OpenAPI Diff and Breaking Changes
aip-go - Go SDK for implementing resource-oriented gRPC APIs.
opensnitch - OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
social - social network in GRPC, Go, mysql, and vuejs,
OctopusWAF - OctopusWAF is a WAF( Web application firewall) with high performance, made in C language and use libevent.