ngx_waf

Handy, High-performance Nginx firewall module. Such as black and white list of IPs or IP range, uri black and white list, and request body black list, etc. Directives and rules are easy to write and readable. The IP detection is a constant-time operation. Most of the remaining inspections use caching to improve performance. Compatible with ModSecurity's rules, you can use OWASP ModSecurity Core Rule Set. Supports verifying Google, Bing, Baidu and Yandex crawlers and allowing them automatically to avoid false positives. Supports three kinds of captchas: hCaptcha, reCAPTCHAv2 and reCAPTCHAv3.

Features

Basic protection
Advanced protection
Friendly crawler verification
Directives and rules are easy to write and readable
The IP detection is a constant-time operation
Supports three kinds of captchas

Project Samples

Project Activity

See All Activity >

License

BSD License

Follow ngx_waf

ngx_waf Web Site

Other Useful Business Software

Compliant and Reliable File Transfers Backed by Top Security Certifications

Cerberus FTP Server delivers SOC 2 Type II certified security and FIPS 140-2 validated encryption.

Stop relying on non-certified, legacy file transfer tools that creak under the weight of modern security demands. Get full audit trails, advanced access controls and more supported by an award-winning team of experts. Start your free 25-day trial today.

Start Free Trial

Rate This Project

User Reviews

Be the first to post a review of ngx_waf!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

Related Categories

C Web Application Firewalls (WAF)

Registered

2023-08-02

Similar Business Software

Cloudflare

Cloudflare is the foundation for your infrastructure, applications, and teams. Cloudflare secures and ensures the reliability of your external-facing resources such as websites, APIs, and applications. It protects your internal resources such as behind-the-firewall applications, teams, and...

See Software
CacheGuard

CacheGuard-OS transforms a virtual or bare metal machine into a powerful and easy to handle network appliance. It's a Linux based Operating System built from scratch and especially designed to Secure and Optimize the network traffic. Great care has been taken by CacheGuard-OS developers to...

See Software
SKUDONET

SKUDONET Enterprise Edition is an Application Delivery and Security Platform built on Linux Debian 12.5 LTS for critical enterprise environments. Formerly known as Zevenet, it provides advanced L4/L7 load balancing, integrated WAF, TLS management with Let’s Encrypt and wildcard support, and...

See Software
Atomic ModSecurity Rules

Atomic ModSecurity Rules is a comprehensive WAF rule set with hundreds of ModSecurity WAF rules to protect applications against web attacks and is fully backed by expert support. WAF Rules to Strengthen ModSecurity Against: - SQL injection - Cross-site scripting - Cross-site request...

See Software
5centsCDN

Experience cutting-edge content delivery with 5centsCDN's subscription plans: CDN Plans Standard: From $2.5/TB, with 10+ Points of Presence and delivery in NA and EU only. Enterprise: From $15/TB, offering 50+ Points of Presence for worldwide content delivery. CDN+ Plans Standard+:...

See Software
Azure Web Application Firewall

Azure Web Application Firewall is a cloud-native service that protects web apps from common web-hacking techniques such as SQL injection and security vulnerabilities such as cross-site scripting. Deploy the service in minutes to get complete visibility into your environment and block malicious...

See Software