Security

UUSEC WAF – high-performance web application firewall

UUSEC WAF is a high-performance web application firewall and API security gateway. It uses machine learning and semantic analysis to protect web applications and APIs against attacks, including zero-day threats.

The software provides defence at the traffic, system, and application runtime layers. Its semantic engines analyse SQL injection, XSS, remote code execution, and local file inclusion attacks, while its extensible rule engine supports Lua scripts and custom plugins.

This is free and open source software.

Key Features

  • Machine learning based anomaly detection helps identify malicious HTTP traffic and defend against zero-day vulnerabilities.
  • Three-layer protection covering the traffic, system, and application runtime layers.
  • Semantic analysis engines for SQL injection, XSS, remote code execution, and local file inclusion attacks.
  • Deep decoding of HTTP content including Base64, JSON, and form data.
  • HIPS functionality provides host-level protection against process, network, file, privilege escalation, and system attacks.
  • RASP protection integrates with runtime environments including Java JVM and PHP Zend.
  • Flexible rule engine supports traditional rules and Lua script based security rules.
  • Plugin architecture allows administrators to extend WAF functionality.
  • Rules take effect immediately without restarting the service.
  • CDN acceleration with regular expression based cache cleaning.
  • Reverse proxy deployment model.
  • Web-based management interface.
  • Supports Let’s Encrypt certificates and automatic certificate renewal.
  • Docker based deployment.

Website: github.com/Safe3/uusec-waf
Support:
Developer: UUSEC Technology
License: BSD 2-Clause License

UUSEC WAF is written in C. Learn C with our recommended free books and free tutorials.


Related Software

Web Application Firewalls
ModSecurityWeb Application Firewall Engine for Apache, IIS and Nginx
BunkerWebNext-generation Web Application Firewall
NAXSINginx Anti XSS & SQL Injection
CorazaEnterprise grade, Golang port of ModSecurity
open-appsecAutomatic web application and API security using machine learning
lua-resty-wafHigh Performance WAF Built on the OpenResty Stack

Read our verdict in the software roundup.


Best Free and Open Source Software Explore our comprehensive directory of recommended free and open source software. Our carefully curated collection spans every major software category.

This directory is part of our ongoing series of informative articles for Linux enthusiasts. It features hundreds of detailed reviews, along with open source alternatives to proprietary solutions from major corporations such as Google, Microsoft, Apple, Adobe, IBM, Cisco, Oracle, and Autodesk.

You’ll also find interesting projects to try, hardware coverage, free programming books and tutorials, and much more.

Discovered a useful open source Linux program that we haven’t covered yet? Let us know by completing this form.
Subscribe
Notify of
guest
0 Comments
Oldest
Newest Most Voted