Add bunkerized-nginx to "Network perimeter defenses"

nginx Docker image secure by default. Avoid the hassle of following security best practices each time you need a web server or reverse proxy. Bunkerized-nginx provides generic security configs, settings and tools so you don't need to do it yourself. Non-exhaustive list of features : - HTTPS support with transparent Let's Encrypt automation - State-of-the-art web security : HTTP security headers, prevent leaks, TLS hardening, ... - Integrated ModSecurity WAF with the OWASP Core Rule Set - Automatic ban of strange behaviors with fail2ban - Antibot challenge through cookie, javascript, captcha or recaptcha v3 - Block TOR, proxies, bad user-agents, countries, ... - Block known bad IP with DNSBL and CrowdSec - Prevent bruteforce attacks with rate limiting - Detect bad files with ClamAV - Easy to configure with environment variables or web UI - Automatic configuration with container labels More info about bunkerized-nginx at https://github.com/bunkerity/bunkerized-nginx.
2025-02-25 09:31:10 -05:00 · 2021-01-01 15:29:07 +01:00 · 2021-01-01 15:29:07 +01:00 · 37262d9688
commit 37262d9688
parent a042fb0e4a
1 changed files with 1 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -197,6 +197,7 @@ See also [Security Orchestration, Automation, and Response (SOAR)](#security-orc
 - [Gatekeeper](https://github.com/AltraMayor/gatekeeper) - First open source Distributed Denial of Service (DDoS) protection system.
 - [fwknop](https://www.cipherdyne.org/fwknop/) - Protects ports via Single Packet Authorization in your firewall.
 - [ssh-audit](https://github.com/jtesta/ssh-audit) - Simple tool that makes quick recommendations for improving an SSH server's security posture.
+- [Bunkerized-nginx](https://github.com/bunkerity/bunkerized-nginx) - Web app hosting and reverse proxy secure by default.

 ### Firewall appliances or distributions