ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range o...
翻译 - ModSecurity是Trustwave的SpiderLabs开发的,用于Apache,IIS和Nginx的开源,跨平台Web应用程序防火墙(WAF)引擎。它具有强大的基于事件的编程语言,可提供针对Web应用程序的多种攻击保护,并允许HTTP流量监视,日志记录和实时分析。 ModSecurity在全球范围内有10,000多个部署,是现有部署最广泛的WAF。
ModSecurity v3 Nginx Connector
OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
Handy, High performance, ModSecurity compatible Nginx firewall module & 方便、高性能、兼容 ModSecurity 的 Nginx 防火墙模块
OWASP Coraza WAF is a golang modsecurity compatible web application firewall library
The official ModSecurity Docker images
Official ModSecurity Docker + Core Rule Set (CRS) images
ModSecurity v3 Apache Connector
An NGINX and ModSecurity based Web Application Firewall for Docker
ModSecurity Rule Set for WordPress (WPRS)
Script to install your own Ghost blog, with Nginx and ModSecurity/Naxsi web application firewall. Supports multiple blogs.
hihttps是一款完整源码的高性能web应用防火墙,既支持传统WAF的所有功能如SQL注入、XSS、恶意漏洞扫描、密码暴力破解、CC、DDOS等ModSecurity正则规则,又支持无监督机器学习,自主对抗未知攻击。