A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques

🚦Web Application Firewall or API Gateway(应用防火墙/API网关)

A botwall for Java web applications

Metadata Harvester for Esri Geoportal Server

针对Java Web的RASP(Runtime application self-protection )漏洞防护系统。

A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity

Integrate Airlock WAF in a Kubernetes or OpenShift Environment

The CloudFormation Resource Provider Package For Amazon WAF v2.

A mock implementation for web application firewalls

This java project was created with Portswigger's Montoya API to be a Burp Extension. It's well known that WAFs only scan up to a certain amount of data per request. This extension allows a tester to manually insert junk data and adds junk data to Active Scans by duplicating each scan check.

log_generator

Nexus-Backend Service - An Advanced and Secure RestApi Backend Service Gateway

Project from Internet Security 2023/2024

一个企业级的轻量级DDoS防护库，专为Spring Boot应用量身打造。本库采用先进的机器学习算法进行实时流量分析，结合多层防护机制和智能预警系统，为您的应用提供全方位的分布式拒绝服务(DDoS)攻击防护。通过动态流量控制、异常行为识别和自适应防御策略，有效确保应用的稳定运行和服务可用性。支持自定义防护规则、攻击特征识别和防护策略调优，让您的应用在面对各类DDoS攻击时都能从容应对。

Java - Web Application Firewall