wallarm / Awesome Nginx Security
🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)
Stars: ✭ 417
Labels
Projects that are alternatives of or similar to Awesome Nginx Security
Janusec
Janusec Application Gateway, Provides Fast and Secure Application Delivery. JANUSEC应用网关,提供快速、安全的应用交付。
Stars: ✭ 771 (+84.89%)
Mutual labels: waf, application-security
Docker Cloud Platform
使用Docker构建云平台,Docker云平台系列共三讲,Docker基础、Docker进阶、基于Docker的云平台方案。OpenStack+Docker+RestAPI+OAuth/HMAC+RabbitMQ/ZMQ+OpenResty/HAProxy/Nginx/APIGateway+Bootstrap/AngularJS+Ansible+K8S/Mesos/Marathon构建/探索微服务最佳实践。
Stars: ✭ 86 (-79.38%)
Mutual labels: apigateway, nginx
Modsecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analys…
Stars: ✭ 5,015 (+1102.64%)
Mutual labels: waf, nginx
Nixy
nixy - nginx auto configuration and service discovery for Mesos/Marathon
Stars: ✭ 259 (-37.89%)
Mutual labels: load-balancer, nginx
Openwaf
Web security protection system based on openresty
Stars: ✭ 563 (+35.01%)
Mutual labels: waf, nginx
Owasp Mth3l3m3nt Framework
OWASP Mth3l3m3nt Framework is a penetration testing aiding tool and exploitation framework. It fosters a principle of attack the web using the web as well as pentest on the go through its responsive interface.
Stars: ✭ 139 (-66.67%)
Mutual labels: nginx, webserver
Ansible Role Haproxy
Ansible Role - HAProxy
Stars: ✭ 112 (-73.14%)
Mutual labels: load-balancer, webserver
Nginx Tutorial
这是一个 Nginx 极简教程,目的在于帮助新手快速入门 Nginx。
Stars: ✭ 845 (+102.64%)
Mutual labels: load-balancer, nginx
Bitnami Docker Nginx
Bitnami nginx Docker Image
Stars: ✭ 198 (-52.52%)
Mutual labels: nginx, webserver
Goaccess
GoAccess is a real-time web log analyzer and interactive viewer that runs in a terminal in *nix systems or through your browser.
Stars: ✭ 14,096 (+3280.34%)
Mutual labels: nginx, webserver
Naxsi
NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX
Stars: ✭ 3,927 (+841.73%)
Mutual labels: waf, nginx
Nginx
A fairly flexible and feature full Ansible role for the NGINX web server.
Stars: ✭ 151 (-63.79%)
Mutual labels: nginx, webserver
Docker Waf
An NGINX and ModSecurity based Web Application Firewall for Docker
Stars: ✭ 181 (-56.59%)
Mutual labels: waf, nginx
Webfsd
A simple HTTP server for mostly static content written in C
Stars: ✭ 50 (-88.01%)
Mutual labels: nginx, webserver
Setup Nginx Webserver
🚀Setup a perfect webserver on CentOS/Redhat 7.x guide with understanding.
Stars: ✭ 65 (-84.41%)
Mutual labels: nginx, webserver
Docker Webserver
WebServer (MariaDB, PHP-FPM, Nginx) composed from several separate containers linked together
Stars: ✭ 290 (-30.46%)
Mutual labels: nginx, webserver
awesome-nginx-security
A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)
Articles
- Building a Security Shield for Your Applications with NGINX
- Pitfalls and Common Security Mistakes in NGINX configuration
- Let's Encrypt & Nginx
- Installing the Nginx Plus with mod_security WAF
- CloudFlare's new WAF: compiling to Lua (based on Nginx)
- Tips to harden your nginx configuration
- How To Protect an Nginx Server with Fail2Ban on Ubuntu 14.04
- Important steps to take to make an Nginx server more secure
- Building Security into Cloud Native Apps with NGINX
- Sandboxing nginx with systemd
Talks
- AppSecCali 2019 Lightning Talk - Building Cloud-Native Security for Apps and APIs with NGINX/Kubernetes - super practical
- Let's Encrypt TLS for Every (video)
- Behavior Based Security with Repsheet: Aaron Bedra @nginxconf 2014 (video)
- Scripting NGINX for Overload Protection (video)
- Naxsi, a WAF for NGINX (video)
Configuration
- gixy - a tool to analyze Nginx configuration to prevent security misconfiguration
- nginxconfig.io - GitHub - Online nginx configuration generator for general purposes.
WAF for NGINX. Protect APIs, applications and microservices
- mod_security - mod_security for NGINX
- naxsi - NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX.
- NGINX 3rd Party Modules - a list of third-party modules (including security-related) for NGINX and NGINX Plus, created and maintained by members of the NGINX community
- Wallarm - Advanced Cloud-Native WAF
WAF for Kubernetes. Protect Cloud Native Apps
- WAF for Kubernetes - Deploy WAF in Kubernetes on Ingeress Controller or as a sidecar proxy
Bot mitigation / Anti-scrapping / Account take-over prevention
- testcookie-nginx-module - Simple robot mitigation module using cookie based challenge/response technique
NGINX forks
- SEnginx - Security-Enhanced nginx
- lua-resty-waf - High-performance WAF built on the OpenResty stack
- bunkerized-nginx - nginx based Docker image secure by default.
Other
- Secure nginx config. GIST - nginx configuration for improved security and performance
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].