ModSecurity - Open Source Web Application Firewall
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It provides protection from a range of attacks against web applications such as Cross Site Scripting (XSS), SQL Injection, Cross Site Request Forgery, Local File Inclusion, Path Traversal, Session Fixation, etc. and allows for HTTP traffic monitoring, logging and real-time analysis. ModSecurity excels at virtual patching contributed by its reliable blocking capabilities and the flexible rule language that can be adapted to any need.