GitHub

dmore/coreruleset-blue-OWASP-CRS-rules-for-ModSecurity-WAF-weak

The OWASP CRS is a set of generic attack detection rules for use with ModSecurity or compatible web application firewalls. The CRS aims to protect web applications from a wide range of attacks, ...
GitHub

Building a WAF & SIEM Pipeline: Nginx, ModSecurity, and Wazuh

This project simulates a real-world Security Operations Center (SOC) workflow. I deployed a Web Application Firewall (WAF) using Nginx and ModSecurity to protect a vulnerable legacy application (DVWA) ...
Dark Reading

New Free Web Application Firewall 'Lives' In The App

A researcher plans to release a free, software-based Web application firewall (WAF) that resides in the Web application. The open-source ESAPI WAF is a departure from commercial, network-based ...