Security News > 2021 > December > GoTestWAF: Open-source project for evaluating web application security solutions
It was designed to evaluate web application security solutions, such as API security proxies, web application firewalls, IPS, API gateways, and others.
"We created GoTestWAF to help the security community evaluate the level of API and application security controls they applied," Ivan Novikov, CEO at Wallarm, told Help Net Security.
Generated requests are sent to the application security solution URL specified during GoTestWAF launch.
The results of the security solution evaluation are recorded in the report file created on your machine.
If running the tool as the Docker container, please ensure you have installed and configured Docker, and GoTestWAF and evaluated application security solution are connected to the same Docker network.
For GoTestWAF to be successfully started, please ensure the IP address of the machine running GoTestWAF is whitelisted on the machine running the application security solution.
News URL
https://www.helpnetsecurity.com/2021/12/20/gotestwaf-web-application-security/
Related news
- Osmedeus: Open-source workflow engine for offensive security (source)
- Am I Isolated: Open-source container security benchmark (source)
- AI’s impact on the future of web application security (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Debunking myths about open-source security (source)
- AxoSyslog: Open-source scalable security data processor (source)
- Here's what happens if you don't layer network security – or remove unused web shells (source)
- SafeLine: Open-source web application firewall (WAF) (source)
- Vanir: Open-source security patch validation for Android (source)