ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
☆9,614Apr 21, 2026Updated last week
Alternatives and similar repositories for ModSecurity
Users that are interested in ModSecurity are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ModSecurity v3 Nginx Connector☆1,831Feb 6, 2026Updated 2 months ago
- OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)☆2,482Jun 16, 2020Updated 5 years ago
- OWASP CRS (Official Repository)☆3,094Updated this week
- NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX☆4,820Nov 8, 2023Updated 2 years ago
- OWASP Coraza WAF is a golang modsecurity compatible web application firewall library☆3,441Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙☆4,023Mar 17, 2024Updated 2 years ago
- High-performance WAF built on the OpenResty stack☆1,316Jan 31, 2024Updated 2 years ago
- Web security protection system based on openresty☆772Mar 30, 2021Updated 5 years ago
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥☆7,452Mar 26, 2026Updated last month
- Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…☆6,186Updated this week
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,010Apr 20, 2026Updated last week
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆15,429Updated this week
- 🔥Open source RASP solution☆2,957Oct 2, 2025Updated 6 months ago
- 使用Nginx+Lua实现的WAF(版本v1.0)☆1,447Aug 7, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- JXWAF是一款基于AI大模型的Web应用防火墙☆1,205Feb 25, 2026Updated 2 months ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,316Apr 19, 2026Updated last week
- SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.☆21,082Apr 17, 2026Updated last week
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆7,589Apr 23, 2026Updated last week
- SQL / SQLI tokenizer parser analyzer☆1,030Oct 4, 2023Updated 2 years ago
- lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx☆1,283Oct 10, 2021Updated 4 years ago
- ModSecurity v3 Apache Connector☆101Sep 14, 2021Updated 4 years ago
- 适用于中小企业的云waf☆619Jan 22, 2018Updated 8 years ago
- Nikto web server scanner☆10,291Updated this week
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- The ZAP by Checkmarx Core project☆15,059Updated this week
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆15,558Jan 28, 2026Updated 3 months ago
- 巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。☆3,595Apr 16, 2024Updated 2 years ago
- Source Code Security Audit (源代码安全审计)☆3,189Sep 16, 2022Updated 3 years ago
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,869Feb 22, 2023Updated 3 years ago
- Pre-Built Vulnerable Environments Based on Docker-Compose☆20,597Updated this week
- This is a webshell open source project☆10,722Dec 24, 2024Updated last year
- TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.☆25,556Updated this week
- Daemon to ban hosts that cause multiple authentication errors☆17,610Apr 11, 2026Updated 2 weeks ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- High Performance Web Platform Based on Nginx and LuaJIT☆13,759Apr 19, 2026Updated last week
- A very powerful and friendly nginx base on lua-nginx-module( openresty ) which provide WAF, Control Panel, and Dashboards.☆5,993Jun 30, 2020Updated 5 years ago
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆28,094Updated this week
- The pattern matching swiss knife☆9,581Feb 10, 2026Updated 2 months ago
- Metasploit Framework☆38,037Updated this week
- A little tool to play with Windows security☆21,464Apr 17, 2026Updated last week
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,126Updated this week