ngx_lua_waf

ngx_lua_waf is a web application firewall (WAF) module written in Lua for use with OpenResty (Nginx + Lua). It provides protection against common web attacks such as SQL injection, XSS, file uploads, and malicious bots. The WAF is rule-based, easily configurable, and lightweight, offering real-time defense with minimal performance overhead.

Features

Detects and blocks SQL injection and XSS attacks
Filters malicious file uploads and request patterns
Provides IP blacklisting and whitelisting
Modular rule-based filtering system
Custom logging and alert support
Lightweight and efficient for high-performance Nginx setups

Project Samples

Project Activity

See All Activity >

License

MIT License

Follow ngx_lua_waf

ngx_lua_waf Web Site

Other Useful Business Software

Auth0 B2B Essentials: SSO, MFA, and RBAC Built In

Unlimited organizations, 3 enterprise SSO connections, role-based access control, and pro MFA included. Dev and prod tenants out of the box.

Auth0's B2B Essentials plan gives you everything you need to ship secure multi-tenant apps. Unlimited orgs, enterprise SSO, RBAC, audit log streaming, and higher auth and API limits included. Add on M2M tokens, enterprise MFA, or additional SSO connections as you scale.

Rate This Project

User Reviews

Be the first to post a review of ngx_lua_waf!

Additional Project Details

Operating Systems

Linux

Programming Language

Lua

Related Categories

Lua Firewall Software

Registered

2025-07-23

Similar Business Software

ThreatLocker

ThreatLocker is a Zero Trust Platform that prevents cyber threats by blocking unknown applications, enforcing least privilege, and controlling what can run across your environment. Using Allowlisting, Ringfencing, Network Control, and more, ThreatLocker stops ransomware, zero-day attacks, and...

See Software
Imunify360

Imunify360 is a security solution for web-hosting servers. Imunify360 goes beyond antivirus and WAF and is a combination of an Intrusion Prevention and Detection system, a Application Specific Web Application Firewall, Real-time Antivirus protection, a Network Firewall, and Patch Management...

See Software
Cloudflare

Cloudflare is the foundation for your infrastructure, applications, and teams. Cloudflare secures and ensures the reliability of your external-facing resources such as websites, APIs, and applications. It protects your internal resources such as behind-the-firewall applications, teams, and...

See Software
Fortinet FortiWeb Web Application Firewall

Unprotected web applications and APIs are the easiest point of entry for hackers and vulnerable to a number of attack types. FortiWeb's AI-enhanced and multi-layered approach protects your web apps from the OWASP Top 10 and more. FortiWeb ML customizes the protection of each application,...

See Software
Kamatera

With our comprehensive suite of scalable cloud services, you can build your cloud server, your way. Kamatera’s infrastructure specializes in VPS hosting, with a choice of 24 data centers worldwide, including 8 data centers across the US as well as locations in Europe, Asia, and the Middle East....

See Software
Prophaze WAF

Prophaze Cloud WAF protects organizations from malicious hackers who are trying to attack and steal data from Web Applications or Mobile App Gateways or APIs. Unlike traditional firewalls, Prophaze WAF exclusively protects web and mobile APIs from security breach using its Adaptive Profiling and...

See Software

Report inappropriate content

ngx_lua_waf

ngx_lua_waf

Get an email when there's a new version of ngx_lua_waf

Features

Project Samples

Project Activity

Categories

License

Follow ngx_lua_waf

User Reviews

Additional Project Details

Operating Systems

Programming Language

Related Categories

Registered