awesome-repositories.com
博客
awesome-repositories.com

通过 AI 驱动的搜索,发现最优秀的开源仓库。

探索精选搜索开源替代品自托管软件博客网站地图
项目关于排名机制媒体报道MCP 服务器
法律隐私政策服务条款
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
owasp-modsecurity avatar

owasp-modsecurity/ModSecurity

0
View on GitHub↗
9,680 星标·1,734 分支·C++·Apache-2.0·6 次浏览www.modsecurity.org↗

ModSecurity

ModSecurity is an open-source web application firewall and security engine. It functions as an HTTP traffic inspector and intrusion detection system that filters incoming web requests and responses against a set of security rules to block threats and prevent attacks on web servers.

The project provides a modular framework for implementing restrictive security policies and custom filtering logic. It identifies and blocks common injection attacks, such as cross-site scripting and SQL injection, while hardening web applications to reduce their overall attack surface.

Its broader capabilities include web traffic auditing, the ability to process XML content, and the identification of user location through database lookups. It also supports the execution of custom scripts to implement dynamic security behavior during request processing.

Features

  • HTTP Request Filtering - Inspects and filters incoming HTTP requests against predefined security patterns to block malicious traffic.
  • Web Application Firewalls - A modular framework for implementing restrictive security policies and custom filtering logic on web servers.
  • Injection Attacks - Identifies and blocks common Cross-Site Scripting and SQL injection patterns within HTTP traffic.
  • Network Traffic Inspectors - Analyzes incoming web requests and responses to detect vulnerabilities and audit security postures.
  • Injection Prevention - Detects and blocks common Cross-Site Scripting and SQL injection patterns within web requests.
  • Intrusion Detection Systems - Monitors and logs malicious HTTP patterns to prevent unauthorized access to web applications.
  • Web Server Hardening - Implements restrictive security policies and rules to reduce the overall attack surface of the web server.
  • Web Application Security - Defends web applications by filtering incoming HTTP traffic against security rules to block threats.
  • Request Interception Middleware - Implements an architectural pattern that intercepts web server requests to analyze and modify traffic before it reaches the application.
  • Security Auditing - Captures detailed HTTP transaction records for forensic analysis and vulnerability identification without blocking requests.
  • Request Lifecycle Scripts - Supports the execution of external custom scripts during the request lifecycle for complex security validation.
  • HTTP Traffic Logging - Captures detailed records of all incoming and outgoing HTTP requests and responses for forensic analysis.
  • Session State Tracking - Maintains session and request metadata across multiple packets to identify complex, time-based attack patterns.
  • Security Auditing - Analyzes traffic patterns passively to identify vulnerabilities and assess security risks without blocking requests.
  • Custom Scripting Engines - Provides an embedded environment for executing custom scripting logic and transformations during request processing.
  • Audit Logging Systems - Provides an asynchronous framework for capturing and storing historical records of HTTP transactions for security auditing.
  • Infrastructure Monitoring - Web application firewall engine.

Star 历史

owasp-modsecurity/modsecurity 的 Star 历史图表owasp-modsecurity/modsecurity 的 Star 历史图表

AI 搜索

探索更多 awesome 仓库

用简单的语言描述您的需求 —— AI 将根据相关性为您从数千个精选开源项目中进行排序。

Start searching with AI

常见问题解答

owasp-modsecurity/modsecurity 是做什么的?

ModSecurity is an open-source web application firewall and security engine. It functions as an HTTP traffic inspector and intrusion detection system that filters incoming web requests and responses against a set of security rules to block threats and prevent attacks on web servers.

owasp-modsecurity/modsecurity 的主要功能有哪些?

owasp-modsecurity/modsecurity 的主要功能包括:HTTP Request Filtering, Web Application Firewalls, Injection Attacks, Network Traffic Inspectors, Injection Prevention, Intrusion Detection Systems, Web Server Hardening, Web Application Security。

owasp-modsecurity/modsecurity 有哪些开源替代品?

owasp-modsecurity/modsecurity 的开源替代品包括: bunkerity/bunkerized-nginx — Bunkerized Nginx is a containerized security automation system that provides a secure reverse proxy and web… owasp/top10 — This project is a web application security standard and vulnerability framework. It provides a comprehensive list of… bunkerity/bunkerweb — BunkerWeb is a containerized suite of infrastructure tools that functions as a cloud-native web application firewall… yandex/gixy — Gixy is a static configuration analyzer and security auditor for Nginx. It functions as an infrastructure-as-code… codeigniter4/codeigniter4 — CodeIgniter is a PHP web framework built on the Model-View-Controller pattern, designed for building full-stack web… perwendel/spark — Spark is a lightweight Java web framework and embedded server designed for building web applications with minimal…

ModSecurity 的开源替代方案

相似的开源项目,按与 ModSecurity 的功能重合度排序。
  • bunkerity/bunkerized-nginxbunkerity 的头像

    bunkerity/bunkerized-nginx

    10,629在 GitHub 上查看↗

    Bunkerized Nginx is a containerized security automation system that provides a secure reverse proxy and web application firewall. It focuses on protecting web applications by monitoring container labels within cloud-native orchestration systems to automatically update security settings and firewall rules. The system distinguishes itself through automated security operations, including the automatic management of SSL certificates and an automated client banning mechanism that blocks IP addresses based on HTTP status codes. It features bot challenge mechanisms using CAPTCHAs, JavaScript, or coo

    Python
    在 GitHub 上查看↗10,629
  • owasp/top10OWASP 的头像

    OWASP/Top10

    5,273在 GitHub 上查看↗

    This project is a web application security standard and vulnerability framework. It provides a comprehensive list of the most critical security risks facing web applications, paired with technical guidance and a structured methodology for identifying and mitigating these flaws. The framework functions as a secure coding guide and a risk assessment methodology, offering a standardized approach to prioritizing vulnerabilities based on their potential impact and likelihood of exploitation. It defines architectural patterns and technical recommendations to help developers implement defense in dep

    HTML
    在 GitHub 上查看↗5,273
  • bunkerity/bunkerwebbunkerity 的头像

    bunkerity/bunkerweb

    10,629在 GitHub 上查看↗

    BunkerWeb is a containerized suite of infrastructure tools that functions as a cloud-native web application firewall and Nginx reverse proxy. It provides a security layer for web applications, combining traffic routing with automated SSL certificate management and a web-based security dashboard for monitoring and configuration. The project distinguishes itself through its deep integration with container orchestrators, serving as a Kubernetes ingress controller that automates security settings and service discovery via container labels. It features a plugin-based extension model and a manageme

    Python
    在 GitHub 上查看↗10,629
  • yandex/gixyyandex 的头像

    yandex/gixy

    8,570在 GitHub 上查看↗

    Gixy is a static configuration analyzer and security auditor for Nginx. It functions as an infrastructure-as-code security scanner and web server configuration linter designed to identify vulnerabilities and misconfigurations in server definitions before deployment. The tool focuses on detecting high-risk security flaws, including host header spoofing, server-side request forgery, and path traversal. It specifically audits Nginx configurations for risks such as HTTP splitting, multiline header issues, and unauthorized third-party access resulting from incorrect Referer or Origin header patter

    Python
    在 GitHub 上查看↗8,570
  • 查看 ModSecurity 的所有 30 个替代方案→