NGINX WAF is an open source web application firewall (WAF). It’s based on ModSecurity 3.0, a rewrite of the ModSecurity that works natively as a dynamic module for NGINX Plus. The NGINX WAF can be used to stop a broad range of Layer 7 attacks and respond to emerging threats with virtual patching.
- Admin Guide
- Installing NGINX WAF
- Using the OWASP CRS with NGINX WAF
- Using the ModSecurity Rules from Trustwave SpiderLabs with NGINX WAF
- Technical Specifications