shadowd - The Shadow Daemon web application firewall server

  •        276

Shadow Daemon is a collection of tools to detect, record and prevent attacks on web applications. Technically speaking, Shadow Daemon is a web application firewall that intercepts requests and filters out malicious parameters. It is a modular system that separates web application, analysis and interface to increase security, flexibility and expandability. This is the main component that handles the analysis and storage of requests.

https://github.com/zecure/shadowd
https://shadowd.zecure.org/

Tags
Implementation
License
Platform

   




Related Projects

ModSecurity - Cross platform Web Application Firewall (WAF)

  •    C

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.

janusec - Janusec Application Gateway, a Golang based application security solution which provides WAF (Web Application Firewall), CC attack defense, unified web administration portal, private key protection, web routing and scalable load balancing

  •    Go

Janusec Application Gateway, an application security solution which provides WAF (Web Application Firewall), CC attack defense, unified web administration portal, private key protection, web routing and scalable load balancing. With Janusec, you can build secure and scalable applications. Detailed documentation is available at Janusec Application Gateway Documentation.

NAXSI - High performance, low rules maintenance WAF for NGINX

  •    C

NAXSI means Nginx Anti XSS & SQL Injection. NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX. Technically, it is a third party nginx module, available as a package for many UNIX-like platforms. This module, by default, reads a small subset of simple (and readable) rules containing 99% of known patterns involved in website vulnerabilities. For example, <, | or drop are not supposed to be part of a URI.

WebCastellum

  •    Java

Java-based Open Source WAF (Web Application Firewall) to include inside a web application in order to protect it against attacks like SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Parameter Manipulation and many more.

VeryNginx - A very powerful and friendly nginx base on lua-nginx-module( openresty ) which provide WAF, Control Panel, and Dashboards

  •    Lua

VeryNginx is a very powerful and friendly nginx . VeryNginx is based on lua_nginx_module(openrestry). It implements advanced firewall(waf), access statistics and some other features. It strengthens the Nginx's functions, and provides a friendly Web interface.


OpenSnitch - GNU/Linux port of the Little Snitch application firewall.

  •    Python

OpenSnitch is a GNU/Linux port of the Little Snitch application firewall.

Endian Firewall Community

  •    Groovy

Endian Firewall Community (EFW) is a "turn-key" linux security distribution that makes your system a full featured security appliance with Unified Threat Management (UTM) functionalities. The software has been designed for the best usability: very easy to install, use and manage and still greatly flexible. The feature suite includes stateful packet inspection firewall, application-level proxies for various protocols (HTTP, FTP, POP3, SMTP) with antivirus support, virus and spam-filtering f

iptables-essentials - Iptables Essentials: Common Firewall Rules and Commands.

  •    

Found on the Internet - All in One List.   ðŸ”¸ Shorewall - advanced gateway/firewall configuration tool for GNU/Linux.   ðŸ”¸ Firewalld - provides a dynamically managed firewall.   ðŸ”¸ UFW - default firewall configuration tool for Ubuntu.   ðŸ”¸ FireHOL - offer simple and powerful configuration for all Linux firewall and traffic shaping requirements.

SmoothWall - Express Open Source Firewall Project

  •    C

SmoothWall is a open source Firewall distribution. It Supports LAN, DMZ, and Wireless networks, Static Ethernet, DHCP Ethernet, PPPoE, PPPoA using various USB and PCI DSL modems. It provides traffic stats, POP3 email proxy with Anti-Virus, Web proxy for accelerated browsing and lot more.

IPCop - Linux firewall distribution

  •    C

IPCop provides secure and stable Linux Firewall Distribution. It is a complete Linux Distribution whose sole purpose is to protect the networks it is installed on. It is geared towards home and SOHO users. The IPCop web-interface is very user-friendly and makes usage easy.

frp - A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet

  •    Go

frp is a fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet. Now, it supports tcp, udp, http and https protocol when requests can be forwarded by domains to backward web services. Expose any http and https service behind a NAT or firewall to the internet by a server with public IP address(Name-based Virtual Host Support). Expose any tcp or udp service behind a NAT or firewall to the internet by a server with public IP address.

Firewall Builder

  •    C++

Firewall Builder is a GUI firewall management application for iptables, PF, Cisco ASA/PIX/FWSM, Cisco router ACL and more. Firewall configuration data is stored in a central file that can scale to hundreds of firewalls managed from a single UI.

pfsense - Main repository for pfSense

  •    PHP

The pfSense project is a free network firewall distribution, based on the FreeBSD operating system with a custom kernel and including third party free software packages for additional functionality. pfSense software, with the help of the package system, is able to provide the same functionality or more of common commercial firewalls, without any of the artificial limitations. It has successfully replaced every big name commercial firewall you can imagine in numerous installations around the world, including Check Point, Cisco PIX, Cisco ASA, Juniper, Sonicwall, Netgear, Watchguard, Astaro, and more. pfSense software includes a web interface for the configuration of all included components. There is no need for any UNIX knowledge, no need to use the command line for anything, and no need to ever manually edit any rule sets. Users familiar with commercial firewalls catch on to the web interface quickly, though there can be a learning curve for users not familiar with commercial-grade firewalls.

Valkyrja Php Firewall Admin

  •    PHP

Valkyrja (Php Firewall front-end) is a web-based tool to administrate a linux firewall based on iptables. Valkyrja is modular, everyone can write a component for it. As Soon as possible: squid manage, NAT manage

Turtle Firewall

  •    Perl

A firewall configuration project based on Linux 2.6.x and iptables. It has a web interface with an intuitive Webmin module, or you can edit a XML file. You can define the different firewall elements (zones, hosts, networks) and then set the services

IPCop Firewall

  •    C

The IPCop Firewall is a Linux firewall distribution. It is geared towards home and SOHO users. The IPCop web-interface is very user-friendly and makes usage easy.

Open-Firewall

  •    C

Open Firewall is a way to agregate some good technologies to make a complete, robust and fast application level firewall. It will provide an open framework for developpers who wish to implement protocol filters.

IPFire - An open source firewall solution

  •    C

IPFire is a server distribution with intended to use as a firewall. It focuses on flexibility, and scales from small to middle sized business networks and home networks. Beginning with a small firewall system of a few megabytes, it is possible to run IPFire as a file server or VPN gateway for staff, branches or customers. This modularity means that yor version of IPFire runs with exactly what you require and nothing more.

m0n0wall - Embedded Firewall

  •    PHP

m0n0wall is a project aimed at creating a complete, embedded firewall software package that, when used together with an embedded PC, provides all the important features of commercial firewall boxes. The entire system configuration is stored in one single XML text file to keep things transparent. It features include NAT/PAT, IPv6 support, SNMP agent, caching DNS forwarder, VPN tunnels and lot more.

Sphirewall - Opensource Firewall

  •    C

Ssphirewall is a powerfull firewall, built from scratch to give you complete control and visibility over your network. It is built with everything you would expect from a network firewall, with a simple and flexible management interface. Its features include Routing, Nat and Pat, Dhcp support, PPPoE support, - Stateful firewall core, Flexible filtering rules, QOS and Traffic Shaping, Analytics and lot more.





We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.