wallarm / api-firewall
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
☆580Updated last week
Related projects: ⓘ
- An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses☆1,525Updated 3 weeks ago
- open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. Th…☆835Updated this week
- Curiefense is a unified, open source platform protecting cloud native applications.☆733Updated this week
- Finding exposed secrets and personal data in GitLab☆195Updated last year
- An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API securit…☆507Updated 3 weeks ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆790Updated last year
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆451Updated last year
- OWASP Coraza WAF is a golang modsecurity compatible web application firewall library☆2,141Updated this week
- Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan☆786Updated this week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆982Updated last week
- SSH Session Monitoring Daemon☆464Updated last year
- teler-waf is a Go HTTP middleware that protects local web services from OWASP Top 10 threats, known vulnerabilities, malicious actors, bo…☆342Updated last week
- A list of open source web security scanners☆861Updated last week
- An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code …☆384Updated 2 years ago
- Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exp…☆985Updated this week
- secureCodeBox (SCB) - continuous secure delivery out of the box☆769Updated this week
- An intentionally vulnerable NGINX setup☆225Updated 3 years ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,024Updated this week
- Check your WAF before an attacker does☆1,244Updated last week
- A high performance go implementation of Wappalyzer Technology Detection Library☆706Updated this week
- Getting a handle on container security☆625Updated 9 months ago
- Measures the effectiveness of your Web Application Firewall (WAF)☆76Updated 11 months ago
- NERVE Continuous Vulnerability Scanner☆454Updated 9 months ago
- Web Application Firewall Testing Framework - Go version☆114Updated this week
- A tool for anonymizing PostgreSQL and MySQL databases' dump☆202Updated this week
- Collection of Threat Models☆370Updated 2 years ago
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆667Updated 11 months ago
- Attack surface detector that identifies endpoints by static analysis☆555Updated this week
- OXO is a security scanning orchestrator for the modern age.☆517Updated this week
- A tool to scan Kubernetes cluster for risky permissions☆1,311Updated 2 months ago