coreruleset / ftwLinks
Framework for Testing WAFs (FTW!)
☆130Updated last year
Alternatives and similar repositories for ftw
Users that are interested in ftw are comparing it to the libraries listed below
Sorting:
- Framework for Testing WAFs (FTW!)☆266Updated 2 years ago
- Make TLS/SSL security mass scans with testssl.sh and import results into ElasticSearch☆109Updated 6 years ago
- WAFBench (wb) is a tool to measure the performance of WAF(Web Application Firewall) . It's based on latest code of ab (ApacheBench), and …☆112Updated 2 years ago
- Chef Cookbook which provisions apache+mod_security+owasp-crs☆37Updated 7 years ago
- A command line security audit tool for Amazon Web Services☆82Updated 6 years ago
- multitenant ModSecurity compatible WAF engine from Edgio☆88Updated 7 months ago
- CSP (Content Security Policy) reports server which forwards reports to Elasticsearch.☆58Updated 2 years ago
- The official ModSecurity Docker images☆133Updated 2 years ago
- Elasticsearch for Offensive Security☆142Updated 4 years ago
- Build a local copy of Security Tracker. Notify via E-mail/Slack if there is an update.☆146Updated last month
- Finding exposed secrets and personal data in GitLab☆199Updated 8 months ago
- Logstash configuration filter set framework to parse modsecurity audit logs☆112Updated 5 years ago
- dockscan is security vulnerability and audit scanner for Docker installations☆219Updated 8 years ago
- Vulnerability Information Aggregator for CVEs☆123Updated 6 years ago
- Passive DNS collection using Zeek☆182Updated 2 years ago
- The clever vulnerability dependency finder☆97Updated 3 years ago
- Machine Learning WAF Based☆95Updated 4 years ago
- Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled interval…☆46Updated 6 years ago
- Vulnerability Data in ES☆145Updated 7 years ago
- A repository for OSSEC rules and decoders☆54Updated last year
- A tool for automatically gathering sensitive information from exposed Jenkins servers☆104Updated 2 years ago
- An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.☆183Updated this week
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 5 years ago
- A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.☆31Updated 7 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆93Updated last year
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- Multi-Purpose DNS Server☆144Updated last month
- Signature-free approach library to detect injection and commanding attacks☆95Updated 3 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆140Updated last year
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 4 years ago