mirror of
https://github.com/wallarm/awesome-nginx-security.git
synced 2024-10-01 08:25:40 -04:00
A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)
apigatewayapi-securityapplication-securityawesome-listawesome-listskubernetesload-balancermod-securitymodsecuritynaxsinginxnginx-configurationnginx-environmentnginx-securitynginx-serversecuritywafwebserver
README.md |
awesome-nginx-security
A curated list of awesome links related to application/API security in NGINX environment.
Talks
- Let's Encrypt TLS for Every (video)
- Behavior Based Security with Repsheet: Aaron Bedra @nginxconf 2014 (video)
- Making applications secure with NGINX (video)
- Scripting NGINX for Overload Protection (video)
- Naxsi, a WAF for NGINX (video)
Articles
- Building a Security Shield for Your Applications with NGINX & Wallarm
- Let's Encrypt & Nginx
- Installing the Nginx Plus with mod_security WAF
- CloudFlare's new WAF: compiling to Lua (based on Nginx)
- Tips to harden your nginx configuration
- Important steps to take to make an Nginx server more secure
Configuration
- gixy - a tool to analyze Nginx configuration to prevent security misconfiguration
WAFs (Web Application Firewall) for Nginx
- mod_security - mod_security for NGINX
- naxsi - NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX.
- wallarm - NG-WAF for NGINX with security rules adjusted with AI
Bot mitigation / Anti-scrapping / Account take-over prevention
- testcookie-nginx-module - Simple robot mitigation module using cookie based challenge/response technique
NGINX forks
- SEnginx - Security-Enhanced nginx
- lua-resty-waf - High-performance WAF built on the OpenResty stack
Other
- Secure nginx config. GIST - nginx configuration for improved security and performance