Top 12 Open-Source Alternatives to AWS WAF

Product categories

CDN Cloud Computing Cyber Security Identity And Access Management Identity Provider SAML SSO Security Security & Privacy Security Monitoring Two Factor Authentication Web Application Security

Summary

The top open-source alternatives to AWS WAF are Let's Encrypt, ModSecurity, and Spring Security. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

Let's Encrypt Landing Page
1

Let's Encrypt

Let’s Encrypt is a free, automated, and open certificate authority brought to you by the Internet Security Research Group (ISRG).
Pricing:
- Open Source
#Identity And Access Management #Two Factor Authentication #Security & Privacy 311 social mentions
ModSecurity Landing Page
2

ModSecurity

ModSecurity is an Open Source web application firewall developed by Trustwave's SpiderLabs.
Pricing:
- Open Source
#Web Application Security #Security Monitoring #Security
Spring Security Landing Page
3

Spring Security

The Spring portfolio has many projects, including Spring Framework, Spring IO Platform, Spring Cloud, Spring Boot, Spring Data, Spring Security...
Pricing:
- Open Source
#Identity And Access Management #Identity Provider #Two Factor Authentication 8 social mentions
Keycloak Landing Page
4

Keycloak

Open Source Identity and Access Management for modern Applications and Services.
Pricing:
- Open Source
#Identity And Access Management #Identity Provider #SSO 4 social mentions
Auth0 Landing Page
5

Auth0

Auth0 is a program for people to get authentication and authorization services for their own business use.
Pricing:
- Open Source
#Identity And Access Management #Identity Provider #SSO 175 social mentions
BunkerWeb Landing Page
6

BunkerWeb

BunkerWeb is a next-generation and open-source Web Application Firewall (WAF).
Pricing:
- Open Source
#Cyber Security #Web Application Security #Web Application Protection
open-appsec Landing Page
7

open-appsec

open-source machine learning based WAF for Kubernetes Ingress, NGINX, Envoy and API Gateways
Pricing:
- Open Source
#CDN #Cloud Computing #Web Application Security
JSON Web Token Landing Page
8

JSON Web Token

JSON Web Tokens are an open, industry standard RFC 7519 method for representing claims securely between two parties.
Pricing:
- Open Source
#Identity Provider #Identity And Access Management #SSO 276 social mentions
Snyk Landing Page
9

Snyk

Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
Pricing:
- Open Source
#Security #Security Monitoring #Security CI 85 social mentions
Rapid7 Landing Page
10

Rapid7

Find security issues, verify vulnerability mitigations & manage security assessments with Metasploit. Get the world's best penetration testing software now. DownloadPen testing software to act like an attacker.
Pricing:
- Open Source
#Security #Security & Privacy #Web Application Security 1 social mentions
OAuth2 Landing Page
11

OA

OAuth2

Application and Data, Application Utilities, and User Management and Authentication
Pricing:
- Open Source
#Identity Provider #Identity And Access Management #SSO
Zed Attack Proxy Landing Page
12

Zed Attack Proxy

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding...
Pricing:
- Open Source
#Web Application Security #Security #Security & Privacy