Top 5 modsecurity Open-Source Projects
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.Project mention: How to implement WAF on Kong Ingress controller? (like ModSecurity v3) | reddit.com/r/kubernetes | 2021-05-04
ModSecurity (v3/master): https://github.com/SpiderLabs/ModSecurity
nginx Docker image secure by default.Project mention: bunkerized-nginx - make your web apps and APIs secured by default | dev.to | 2021-03-18
Avoid the hassle of following security best practices each time you need a web server or reverse proxy. Bunkerized-nginx provides generic security configs, settings and tools so you don't need to do it yourself.
Scout APM - Leading-edge performance monitoring starting at $39/month. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
High-performance WAF built on the OpenResty stackProject mention: Differences beetwen lua-resty-waf and NGINX proxy manager? | reddit.com/r/nginx | 2021-04-27
I just learned about about https://github.com/p0pr0ck5/lua-resty-waf while looking into the topic how to secure my reverse proxy server, besides that I only read that this is pretty much NGINX security enhanced with some extra plugins and performance tweaks, other than that don't know nothing about it.
ModSecurity v3 Nginx ConnectorProject mention: How to implement WAF on Kong Ingress controller? (like ModSecurity v3) | reddit.com/r/kubernetes | 2021-05-04
ModSecurity Connector: https://github.com/SpiderLabs/ModSecurity-nginx
Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS BenchmarkProject mention: Automatically harden AWS instance according to CIS or other well known benchmark? | reddit.com/r/linuxadmin | 2021-04-18
This looks pretty quick and easy: https://github.com/Jsitech/JShielder