ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
☆9,582Apr 5, 2026Updated this week
Alternatives and similar repositories for ModSecurity
Users that are interested in ModSecurity are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ModSecurity v3 Nginx Connector☆1,830Feb 6, 2026Updated 2 months ago
- OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)☆2,485Jun 16, 2020Updated 5 years ago
- OWASP CRS (Official Repository)☆3,055Updated this week
- NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX☆4,823Nov 8, 2023Updated 2 years ago
- OWASP Coraza WAF is a golang modsecurity compatible web application firewall library☆3,392Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙☆4,025Mar 17, 2024Updated 2 years ago
- High-performance WAF built on the OpenResty stack☆1,317Jan 31, 2024Updated 2 years ago
- Web security protection system based on openresty☆771Mar 30, 2021Updated 5 years ago
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥☆7,417Mar 26, 2026Updated 2 weeks ago
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,019Mar 22, 2026Updated 2 weeks ago
- Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…☆6,107Updated this week
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆15,200Updated this week
- 🔥Open source RASP solution☆2,958Oct 2, 2025Updated 6 months ago
- 使用Nginx+Lua实现的WAF(版本v1.0)☆1,449Aug 7, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,272Mar 26, 2026Updated 2 weeks ago
- JXWAF是一款基于AI大模型的Web应用防火墙☆1,204Feb 25, 2026Updated last month
- SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.☆20,979Nov 5, 2025Updated 5 months ago
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆7,546Apr 2, 2026Updated last week
- SQL / SQLI tokenizer parser analyzer☆1,028Oct 4, 2023Updated 2 years ago
- lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx☆1,284Oct 10, 2021Updated 4 years ago
- ModSecurity v3 Apache Connector☆102Sep 14, 2021Updated 4 years ago
- 适用于中小企业的云waf☆619Jan 22, 2018Updated 8 years ago
- Nikto web server scanner☆10,228Mar 20, 2026Updated 3 weeks ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- The ZAP by Checkmarx Core project☆14,962Updated this week
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆15,476Jan 28, 2026Updated 2 months ago
- 巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。☆3,595Apr 16, 2024Updated last year
- Source Code Security Audit (源代码安全审计)☆3,195Sep 16, 2022Updated 3 years ago
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,859Feb 22, 2023Updated 3 years ago
- Pre-Built Vulnerable Environments Based on Docker-Compose☆20,492Updated this week
- This is a webshell open source project☆10,714Dec 24, 2024Updated last year
- TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.☆25,485Mar 31, 2026Updated last week
- Daemon to ban hosts that cause multiple authentication errors☆17,397Mar 26, 2026Updated 2 weeks ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- High Performance Web Platform Based on Nginx and LuaJIT☆13,724Mar 25, 2026Updated 2 weeks ago
- A very powerful and friendly nginx base on lua-nginx-module( openresty ) which provide WAF, Control Panel, and Dashboards.☆5,998Jun 30, 2020Updated 5 years ago
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆27,799Updated this week
- The pattern matching swiss knife☆9,526Feb 10, 2026Updated last month
- Metasploit Framework☆37,850Updated this week
- A little tool to play with Windows security☆21,380May 11, 2025Updated 10 months ago
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,104Updated this week