Update README.md

This commit is contained in:
Stepan I 2017-09-14 19:07:16 -07:00 committed by GitHub
parent 4a1fc80e18
commit 3065fca318

View File

@ -4,13 +4,20 @@ A curated list of awesome links related to application/API security in NGINX env
## Talks ## Talks
- [Building a Security Shield for Your Applications with NGINX & Wallarm (nginx.conf 2017). Transcript](https://www.nginx.com/blog/build-application-security-shield-with-nginx-wallarm) (https://www.nginx.com/blog/build-application-security-shield-with-nginx-wallarm)
- [Behavior Based Security with Repsheet: Aaron Bedra @nginxconf 2014 (video)](https://www.youtube.com/watch?v=9AyaVxzqYoA) - [Behavior Based Security with Repsheet: Aaron Bedra @nginxconf 2014 (video)](https://www.youtube.com/watch?v=9AyaVxzqYoA)
## Articles ## Articles
- [Building a Security Shield for Your Applications with NGINX & Wallarm.
- [Let's Encrypt & Nginx](https://letsecure.me/secure-web-deployment-with-lets-encrypt-and-nginx/) - [Let's Encrypt & Nginx](https://letsecure.me/secure-web-deployment-with-lets-encrypt-and-nginx/)
- [Installing the Nginx Plus with mod_security WAF](https://www.nginx.com/resources/admin-guide/nginx-plus-modsecurity-waf-installation-logging/) - [Installing the Nginx Plus with mod_security WAF](https://www.nginx.com/resources/admin-guide/nginx-plus-modsecurity-waf-installation-logging/)
- [CloudFlare's new WAF: compiling to Lua](https://blog.cloudflare.com/cloudflares-new-waf-compiling-to-lua/)
## Configuration
- [gixy](https://github.com/yandex/gixy/) - a tool to analyze Nginx configuration to prevent security misconfiguration
## WAF (Web Application Firewalls) for nginx ## WAF (Web Application Firewalls) for nginx
@ -19,4 +26,10 @@ A curated list of awesome links related to application/API security in NGINX env
- [wallarm](https://wallarm.com) - NG-WAF for NGINX with security rules adjusted with AI - [wallarm](https://wallarm.com) - NG-WAF for NGINX with security rules adjusted with AI
## Bot mitigation / Anti-scrapping / Account taked-over prevention ## Bot mitigation / Anti-scrapping / Account taked-over prevention
- [testcookie-nginx-module](https://github.com/kyprizel/testcookie-nginx-module) - Simple robot mitigation module using cookie based challenge/response technique - [testcookie-nginx-module](https://github.com/kyprizel/testcookie-nginx-module) - Simple robot mitigation module using cookie based challenge/response technique
## NGINX forks
- [SEnginx](https://github.com/NeusoftSecurity/SEnginx) - Security-Enhanced nginx
- [lua-resty-waf](https://github.com/p0pr0ck5/lua-resty-waf) - High-performance WAF built on the OpenResty stack