Top 10 modsecurity Open-Source Projects

• ModSecurity

  19 7,582 8.2 C++

  ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.

  

• BunkerWeb

  16 3,422 9.9 Lua

  🛡️ Make your web services secure by default !

  

Project mention: BunkerWeb: Nginx-based open-source Web Application Firewall (WAF) | news.ycombinator.com | 2024-01-09

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• coraza

  7 1,802 8.7 Go

  OWASP Coraza WAF is a golang modsecurity compatible web application firewall library

  

Project mention: Coraza: Coraza WAF is a Golang modsecurity compatible web application firewall | news.ycombinator.com | 2024-01-08

• ModSecurity-nginx

  4 1,420 5.7 Perl

  ModSecurity v3 Nginx Connector

  

• lua-resty-waf

  1 1,251 0.0 Perl

  High-performance WAF built on the OpenResty stack

• JShielder

  4 734 0.0 PHP

  Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

• traefik-modsecurity-plugin

  1 125 2.7 Go

  Traefik plugin to proxy requests to owasp/modsecurity-crs:apache container

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• modsecurity-spoa

  1 88 6.2 Dockerfile

  HAProxy agent for ModSecurity web application firewall

• coraza-proxy-wasm

  1 72 7.4 Go

  proxy-wasm filter based on Coraza WAF

  

Project mention: Hardening Apache APISIX with the OWASP's Coraza and Core Ruleset | dev.to | 2024-02-08

FROM apache/apisix:3.8.0-debian ENV VERSION 0.5.0 #1 ENV CORAZA_FILENAME coraza-proxy-wasm-${VERSION}.zip #1 ADD https://github.com/corazawaf/coraza-proxy-wasm/releases/download/$VERSION/$CORAZA_FILENAME . #2 USER root #3 RUN <

• nginx-waf

  2 6 3.4 Dockerfile

  Nginx + ModSecurity WAF

modsecurity related posts

• BunkerWeb: Nginx-based open-source Web Application Firewall (WAF)
  2 projects | news.ycombinator.com | 9 Jan 2024
• How do you protect your network before exposing 80/443 to the world?
  1 project | /r/selfhosted | 1 May 2023
• Nginx Proxy Manager
  2 projects | /r/selfhosted | 7 Apr 2023
• Security - Use VPS as reverse proxy only or actually host apps in it?
  1 project | /r/selfhosted | 17 Mar 2023
• Anybody using Crowdsec?
  1 project | /r/unRAID | 4 Mar 2023
• How to stop global traffic?
  1 project | /r/jellyfin | 22 Feb 2023
• Has anyone tried this on Blackboard online exams??
  1 project | /r/Professors | 21 Feb 2023
• A note from our sponsor - WorkOS
  workos.com | 24 Apr 2024

  The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com