waf-brainMachine Learning WAF Based
Stars: ✭ 74 (-30.19%)
ModsecurityModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analys…
Stars: ✭ 5,015 (+4631.13%)
aws-firewall-factoryDeploy, update, and stage your WAFs while managing them centrally via FMS.
Stars: ✭ 72 (-32.08%)
waflabA web-based testing platform for WAF (Web Application Firewall)'s correctness
Stars: ✭ 25 (-76.42%)
coraza-caddyOWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities
Stars: ✭ 75 (-29.25%)
wafbypasserNo description or website provided.
Stars: ✭ 73 (-31.13%)
Go AgentSqreen's Application Security Management for the Go language
Stars: ✭ 134 (+26.42%)
webdriverio-zap-proxyDemo - how to easily build security testing for Web App, using Zap and Glue
Stars: ✭ 58 (-45.28%)
www-project-zapOWASP Zed Attack Proxy project landing page.
Stars: ✭ 52 (-50.94%)
dotnet-security-unit-testsA web application that contains several unit tests for the purpose of .NET security
Stars: ✭ 25 (-76.42%)
juice-shopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 7,533 (+7006.6%)
docker-wallarm-node⚡️ Docker official image for Wallarm Node. API security platform agent.
Stars: ✭ 18 (-83.02%)
tutorialsAdditional Resources For Securing The Stack Tutorials
Stars: ✭ 36 (-66.04%)
nxtool-ngBecause life is too short to waste your time transforming naxsi logs to rules by hand
Stars: ✭ 40 (-62.26%)
assimilation-officialThis is the official main repository for the Assimilation project
Stars: ✭ 47 (-55.66%)
nginx-moreDevelopment repository for nginx-more package
Stars: ✭ 96 (-9.43%)
ingressKubernetes Ingress controller with integrated Wallarm services
Stars: ✭ 31 (-70.75%)
nodejssecurityDocumentation for Essential Node.js Security
Stars: ✭ 64 (-39.62%)
multi-juicerRun Capture the Flags and Security Trainings with OWASP Juice Shop
Stars: ✭ 179 (+68.87%)
SlidesThe repo contains all the slide deck that was used during my presentation at various webinars, conferences, and meetups.
Stars: ✭ 56 (-47.17%)
roxy-wiWeb interface for managing Haproxy, Nginx, Apache and Keepalived servers
Stars: ✭ 1,109 (+946.23%)
www-project-web-security-testing-guideThe Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.
Stars: ✭ 260 (+145.28%)
headersAn application to catch, search and analyze HTTP secure headers.
Stars: ✭ 59 (-44.34%)
aks-baseline-regulatedThis is the Azure Kubernetes Service (AKS) baseline cluster for regulated workloads reference implementation as produced by the Microsoft Azure Architecture Center.
Stars: ✭ 73 (-31.13%)
encode-mePayload encoder for bypass WAF
Stars: ✭ 14 (-86.79%)
raiderOWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
Stars: ✭ 88 (-16.98%)
zap-sonar-pluginIntegrates OWASP Zed Attack Proxy reports into SonarQube
Stars: ✭ 66 (-37.74%)
waf4wordpressWAF for WordPress 🔥 with 60+ security checks and weekly updates
Stars: ✭ 102 (-3.77%)
bWAPPbWAPP latest modified for PHP7
Stars: ✭ 30 (-71.7%)
Raptor wafRaptor - WAF - Web application firewall using DFA [ Current version ] - Beta
Stars: ✭ 246 (+132.08%)
vapivAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
Stars: ✭ 674 (+535.85%)
crAPIcompletely ridiculous API (crAPI)
Stars: ✭ 549 (+417.92%)
PoW-ShieldProject dedicated to fight Layer 7 DDoS with proof of work, featuring an additional WAF. Completed with full set of features and containerized for rapid and lightweight deployment.
Stars: ✭ 99 (-6.6%)
cyclonedx-dotnetCreates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Stars: ✭ 110 (+3.77%)
www-project-csrfguardThe aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens
Stars: ✭ 43 (-59.43%)
cyclonedx-cliCycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Stars: ✭ 154 (+45.28%)
terraform-provider-incapsulaThis package is a plugin for Terraform, and is designed to be used to auto-provision sites in Incapsula via Incapsula’s API from the terraform cli/yaml configurations.
Stars: ✭ 27 (-74.53%)
cwe-toolA command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
Stars: ✭ 40 (-62.26%)
OWASP-Calculator🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
Stars: ✭ 109 (+2.83%)
Secbox🖤 网络安全与渗透测试工具导航
Stars: ✭ 222 (+109.43%)
AutosqliAn automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.
Stars: ✭ 222 (+109.43%)
Wafw00fWAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
Stars: ✭ 2,983 (+2714.15%)
ptpPentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and assign an automated ranking for each finding.
Stars: ✭ 28 (-73.58%)
cyclonedx-php-composerCreate CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
Stars: ✭ 20 (-81.13%)
cwe-sdk-javascriptA Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
Stars: ✭ 18 (-83.02%)
owasp-zap-jwt-addonOWASP ZAP addon for finding vulnerabilities in JWT Implementations
Stars: ✭ 23 (-78.3%)