ngx_lua_waf

ngx_lua_waf is a web application firewall (WAF) module written in Lua for use with OpenResty (Nginx + Lua). It provides protection against common web attacks such as SQL injection, XSS, file uploads, and malicious bots. The WAF is rule-based, easily configurable, and lightweight, offering real-time defense with minimal performance overhead.

Features

Detects and blocks SQL injection and XSS attacks
Filters malicious file uploads and request patterns
Provides IP blacklisting and whitelisting
Modular rule-based filtering system
Custom logging and alert support
Lightweight and efficient for high-performance Nginx setups

Project Samples

Project Activity

See All Activity >

License

MIT License

Follow ngx_lua_waf

ngx_lua_waf Web Site

Other Useful Business Software

Build Securely on Azure with Proven Frameworks

Lay a foundation for success with Tested Reference Architectures developed by Fortinet’s experts. Learn more in this white paper.

Moving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.

Download Now

Rate This Project

User Reviews

Be the first to post a review of ngx_lua_waf!

Additional Project Details

Operating Systems

Linux

Programming Language

Lua

Related Categories

Lua Firewall Software

Registered

2025-07-23

Similar Business Software

ThreatLocker

The ThreatLocker suite of security tools are powerful and designed so that everyone from businesses to government agencies to academic institutions can directly control exactly what applications run on their networks. We envision a future in which all organizations can chart their own course...

See Software
Imunify360

Imunify360 is a security solution for web-hosting servers. Imunify360 goes beyond antivirus and WAF and is a combination of an Intrusion Prevention and Detection system, a Application Specific Web Application Firewall, Real-time Antivirus protection, a Network Firewall, and Patch Management...

See Software
Cloudflare

Cloudflare is the foundation for your infrastructure, applications, and teams. Cloudflare secures and ensures the reliability of your external-facing resources such as websites, APIs, and applications. It protects your internal resources such as behind-the-firewall applications, teams, and...

See Software
Fortinet FortiWeb Web Application Firewall

Unprotected web applications and APIs are the easiest point of entry for hackers and vulnerable to a number of attack types. FortiWeb's AI-enhanced and multi-layered approach protects your web apps from the OWASP Top 10 and more. FortiWeb ML customizes the protection of each application,...

See Software
Kamatera

With our comprehensive suite of scalable cloud services, you can build your cloud server, your way. Kamatera’s infrastructure specializes in VPS hosting, with a choice of 24 data centers worldwide, including 8 data centers across the US as well as locations in Europe, Asia, and the Middle East....

See Software
Prophaze WAF

Prophaze Cloud WAF protects organizations from malicious hackers who are trying to attack and steal data from Web Applications or Mobile App Gateways or APIs. Unlike traditional firewalls, Prophaze WAF exclusively protects web and mobile APIs from security breach using its Adaptive Profiling and...

See Software

Report inappropriate content

ngx_lua_waf

ngx_lua_waf

Get an email when there's a new version of ngx_lua_waf

Features

Project Samples

Project Activity

Categories

License

Follow ngx_lua_waf

User Reviews

Additional Project Details

Operating Systems

Programming Language

Related Categories

Registered