Security News > 2021 > December > GoTestWAF: Open-source project for evaluating web application security solutions
It was designed to evaluate web application security solutions, such as API security proxies, web application firewalls, IPS, API gateways, and others.
"We created GoTestWAF to help the security community evaluate the level of API and application security controls they applied," Ivan Novikov, CEO at Wallarm, told Help Net Security.
Generated requests are sent to the application security solution URL specified during GoTestWAF launch.
The results of the security solution evaluation are recorded in the report file created on your machine.
If running the tool as the Docker container, please ensure you have installed and configured Docker, and GoTestWAF and evaluated application security solution are connected to the same Docker network.
For GoTestWAF to be successfully started, please ensure the IP address of the machine running GoTestWAF is whitelisted on the machine running the application security solution.
News URL
https://www.helpnetsecurity.com/2021/12/20/gotestwaf-web-application-security/
Related news
- FTC orders GoDaddy to fix poor web hosting security practices (source)
- Fleet: Open-source platform for IT and security teams (source)
- Web Cache Vulnerability Scanner: Open-source tool for detecting web cache poisoning (source)
- Orbit: Open-source Nuclei security scanning and automation platform (source)
- Misconfig Mapper: Open-source tool to uncover security misconfigurations (source)
- OSPS Baseline: Practical security best practices for open source software projects (source)
- Hetty: Open-source HTTP toolkit for security research (source)