Spektrail
← All projects

ModSecurity

Open Source Web Application Firewall — the Swiss Army Knife of WAFs

Securitywafweb-application-firewallopen-sourceowasphttp-securityapplication-securityfirewall
Visit
ModSecurity screenshot

About

ModSecurity is an open source, cross-platform web application firewall (WAF) module that provides visibility into HTTP(S) traffic and protection against web application attacks. It features a powerful rules language and API for implementing advanced security protections, and is widely used by businesses, governments, and ISPs across millions of domains. Now under OWASP's custodianship, it integrates tightly with the OWASP Core Rule Set.

Problem

Web applications are vulnerable to HTTP-based attacks and lack visibility into incoming traffic threats.

For

businesses, government organizations, internet service providers, and web application defenders

How it works

ModSecurity operates as a module that inspects HTTP(S) traffic in real time, applying configurable rule sets (such as OWASP CRS) to detect and block malicious requests.

Business model

open-source

Status

launched

Company

OWASP Foundation

Contact

Similar projects