Aggregation of lists of malicious IP addresses, to be blocked in the WAN > LAN direction, integrated into firewalls: FortiGate, Palo Alto, pfSense, IPtables

Check Point WAF Demo/Lab Docker Compose Setup. Provides Docker Compose setup that includes WAF, Website, API and Testing Tools to train and demonstrate functionality.

This is an AWS CDK Construct for Geo Restriction Rule Group on WAF V2

This is an AWS CDK Construct for IP Restriction Rule Group on WAF V2

Xash3D FWGS engine.

收集来自互联网的高威胁IP

🛡️ Open-source and next-generation Web Application Firewall (WAF)

Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.

Web interface for managing Haproxy, Nginx, Apache and Keepalived servers

Wallarm Product Documentation

Terraform Module for deploying a Azure Application Gateway

An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

These are automated updated IP address blacklist/whitelist you can use to fetch and parse and put in your firewall, waf, null-routing, sinkhole or what ever you choose. The blacklists are not necessary threat actors, it's just lists i like to have ready and handy.

A industry-leading free, high-performance, AI and semantic technology web application and API security protection product - uuWAF. 一款工业级免费、高性能、高扩展，支持AI和语义引擎的Web应用和API安全防护产品-南墙。Web应用防火墙、WAF、WAAP

专为CTF设计的Jinja2 SSTI全自动绕WAF脚本 | A Jinja2 SSTI cracker for bypassing WAF, designed for CTF

serve as a reverse proxy to protect your web services from attacks and exploits.

WAF based on lua-nginx-module.

Web Application Firewall Testing Framework - Go version

ModSecurity Connector for Node.js

Testing CVEs against CRS