ModSecurity

ModSecurity
Stable release	2.9.1 / 9 March 2016; 8 years ago
Repository	github.com/SpiderLabs/ModSecurity ;
Available in	English
License	BSD license
Website	modsecurity.org

ModSecurity supplies an array of request filtering and other security features to the Apache HTTP Server, IIS and NGINX. ModSecurity is a web application layer firewall. ModSecurity is free software released under the Apache license 2.0.

ModSecurity is one of the Apache server modules that provides website protection by defending from hackers and other malicious attacks.^[1] It is a set of rules with regular expressions that helps to instantly ex-filtrate the commonly known exploits.^[2] Modsecurity obstructs the processing of invalid data (code injection attacks) to reinforce and nourish server's security.^[3]

Reviews

On February 13, 2013, a comparative penetration testing analysis report was published by Zero Science Lab, showing that ModSecurity is more effective than CloudFlare and Incapsula, but it has more false positives than Incapsula.^[4]^[5]

External links

References

^ "What is ModSecurity and why is it important".
^ "Modsecurity overview".
^ "Web Application Firewall (WAF) Overview".
^ "Protect Your Website Vulnerabilities With a WAF – New Compairson Report – CloudFlare vs Incapsula vs ModSecurity". Tony on Security. Tony Perez. Retrieved 14 April 2013.
^ http://www.slideshare.net/zeroscience/cloudflare-vs-incapsula-vs-modsecurity

This Web-software-related article is a stub. You can help Wikipedia by expanding it.

[1] "What is ModSecurity and why is it important".

[2] "Modsecurity overview".

[3] "Web Application Firewall (WAF) Overview".

[4] "Protect Your Website Vulnerabilities With a WAF – New Compairson Report – CloudFlare vs Incapsula vs ModSecurity". Tony on Security. Tony Perez. Retrieved 14 April 2013.

[5] ttp://www.slideshare.net/zeroscience/cloudflare-vs-incapsula-vs-modsecurity

[1]

[2]

[3]

[4]

[5]