teler-waf
coraza
teler-waf | coraza | |
---|---|---|
6 | 7 | |
293 | 1,826 | |
4.4% | 3.8% | |
9.2 | 8.7 | |
6 days ago | 1 day ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
teler-waf
- kitabisa/teler-waf: Introduces external custom rules & DSL expression support!
- GitHub - kitabisa/teler-waf: teler-waf v0.6.0 released
- kitabisa/teler-waf: teler-waf is a Go HTTP middleware that provides teler IDS functionality to protect against web-based attacks and improve the security of Go-based web applications. It is highly configurable and easy to integrate.
-
GitHub - kitabisa/teler-waf: teler-waf is a Go HTTP middleware that provide teler IDS functionality with teler IDS to protect against web-based attacks and improve the security of Go-based web applications. It is highly configurable and easy to integrate into existing Go applications.
Yes! The package comes with a standard net/http.Handler, thus it's easy to integrate into any existing Go frameworks. Take a look at examples/ directory.
coraza
- Coraza: Coraza WAF is a Golang modsecurity compatible web application firewall
-
WAF with reverse proxy
Is there a reason no one hasn't made a Docker template for OWASP Coraza (https://github.com/corazawaf/coraza) or ModSecurity (https://github.com/SpiderLabs/ModSecurity) for the use of a reverse proxy?
- Traefik WAF Plugin with OWASP/Modsecurity
-
Go: Yaml DB
Interesting work, I was going to implement https://github.com/antchfx/jsonquery for github.com/jptosso/coraza-waf but your idea seems quite useful. I would remove logrus, as logs should be created by the implementation, not the library (or at least that's what a think)
-
Protect your web applications with Coraza library
Coraza WAF is a golang web application firewall library that has reached a stable point (v1 is releasing tomorow). https://github.com/jptosso/coraza-waf
-
Golang Web Application Firewall
You have a point there, maybe releasing a v1.0 is not that crazy at all, it's much easier to type import "github.com/jptosso/coraza-waf/v1" indeed
What are some alternatives?
secure - HTTP middleware for Go that facilitates some quick security wins.
traefik-modsecurity-plugin - Traefik plugin to proxy requests to owasp/modsecurity-crs:apache container
certificates - An opinionated helper for generating tls certificates
ModSecurity - ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
topaz - Cloud-native authorization for modern applications and APIs
ModSecurity-nginx - ModSecurity v3 Nginx Connector
teler - Real-time HTTP Intrusion Detection
coraza-caddy - OWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities
Themis - Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
lua-resty-waf - High-performance WAF built on the OpenResty stack
coraza-gin - Coraza WAF Gin-gonic middleware