Topic: waf Goto Github
Some thing interesting about waf
Some thing interesting about waf
waf,🔥 Web-application firewalls (WAFs) from security standpoint.
User: 0xinfection
waf,Handy, High performance, ModSecurity compatible Nginx firewall module & 方便、高性能、兼容 ModSecurity 的 Nginx 防火墙模块
User: add-sp
Home Page: https://add-sp.github.io/ngx_waf-docs/
waf,python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。
User: al0ne
waf,Compile NGINX from source with custom modules and patches on Debian and Ubuntu
User: angristan
waf,🛡️ Make your web services secure by default !
Organization: bunkerity
Home Page: https://www.bunkerweb.io
waf,HTTP & OAuth Gateway and Web Application Firewall (WAF) based on ModSecurity, online demo: https://door.caswaf.com
Organization: casbin
Home Page: https://caswaf.org
waf,一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术,作为反向代理接入,保护你的网站不受黑客攻击。 A free WAF that is sufficiently simple, effective, and powerful. Utilizing industry-leading semantic engine detection technology, it operates as a reverse proxy to protect your website from hacker attacks.
Organization: chaitin
Home Page: https://waf-ce.chaitin.cn/
waf,:vertical_traffic_light:Web Application Firewall or API Gateway(应用防火墙/API网关)
User: chengdedeng
Home Page: https://github.com/chengdedeng/waf
waf, Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
User: chushuai
waf,Code-Audit-Challenges
User: chybeta
Home Page: https://github.com/CHYbeta/Code-Audit-Challenges
waf,OWASP Coraza WAF is a golang modsecurity compatible web application firewall library
Organization: corazawaf
Home Page: https://www.coraza.io
waf,Curiefense is a unified, open source platform protecting cloud native applications.
Organization: curiefense
Home Page: https://linktr.ee/curiefense
waf,🖤 网络安全与渗透测试工具导航
Organization: ds19991999
waf,Detect and bypass web application firewalls and protection systems
User: ekultek
waf,WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
Organization: enablesecurity
Home Page: https://www.enablesecurity.com/
waf,A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
User: funkmyster
waf,Xash3D FWGS engine.
Organization: fwgs
waf,JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server Load Balance, and Cookie Compliance etc. JANUSEC应用网关,提供安全的接入,包括反向代理、K8S Ingress Controller、自动化ACME证书、WAF、5秒盾、CC防御、OAuth2身份认证、GSLB负载均衡与Cookie合规等。
Organization: janusec
Home Page: https://janusec.github.io/
waf,A powerful PHP WAF for AWD
User: leohearts
waf,有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
User: mr-xn
Home Page: https://mrxn.net/?tag=burpsuite
waf,NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
Organization: nbs-system
waf,A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
Organization: nccgroup
waf,Check your WAF before an attacker does
Organization: nemesida-waf
Home Page: https://nemesida-waf.com
waf,Modified source engine (2017) developed by valve and leaked in 2020. Not for commercial purporses
User: nillerusr
waf,open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.
Organization: openappsec
Home Page: https://openappsec.io
waf,ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
Organization: owasp-modsecurity
Home Page: https://www.modsecurity.org
waf,ModSecurity v3 Nginx Connector
Organization: owasp-modsecurity
waf,High-performance WAF built on the OpenResty stack
User: p0pr0ck5
waf,Padrino is a full-stack ruby framework built upon Sinatra.
Organization: padrino
Home Page: http://www.padrinorb.com
waf,Web interface for managing Haproxy, Nginx, Apache and Keepalived servers
Organization: roxy-wi
Home Page: https://roxy-wi.org
waf,A industry-leading free, high-performance, AI and semantic technology web application and API security protection product - uuWAF. 一款工业级免费、高性能、高扩展,支持AI和语义引擎的Web应用和API安全防护产品-南墙。Web应用防火墙、WAF、WAAP
User: safe3
Home Page: https://waf.uusec.com
waf,Collection of quality safety articles. Awesome articles.
User: tom0li
Home Page: https://tom0li.github.io/
waf,My simple Swiss Army knife for http/https troubleshooting and profiling.
User: trimstray
waf,Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
Organization: wallarm
Home Page: https://wallarm.github.io/api-firewall/
waf,🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)
Organization: wallarm
waf,An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
Organization: wallarm
Home Page: https://lab.wallarm.com/test-your-waf-before-hackers/
waf,一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
User: yagamiilight
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.