Naxsi Logo

Naxsi

0
Free
Updated 11 March 2025
Application Security
Appsec
Nginx
Web Security
Sql Injection
Xss
Web Application Security
Visit Website

NAXSI means Nginx Anti XSS & SQL Injection. Technically, it is a third party nginx module, available as a package for many UNIX-like platforms. This module, by default, reads a small subset of simple (and readable) rules containing 99% of known patterns involved in website vulnerabilities. For example, <, | or drop are not allowed. It's a powerful tool to prevent common web attacks. Naxsi is a powerful tool to prevent common web attacks, it's a third party nginx module that reads a small subset of simple rules containing 99% of known patterns involved in website vulnerabilities. For example, <, | or drop are not allowed. It's a powerful tool to prevent common web attacks.

FEATURES

EXPLORE BY TAGS

Appsec

Nginx

Web Security

Sql Injection

Xss

Web Application Security

SIMILAR TOOLS

cwe_checker Logo
cwe_checker

cwe_checker is a suite of checks to detect common bug classes in ELF binaries using Ghidra for firmware analysis.

Free
Application Security
Backlash Logo
Backlash

Backslash Security is an application security platform that uses reachability analysis to enhance SAST and SCA, prioritize vulnerabilities, and provide remediation guidance.

Commercial
Application Security
DOMXSS Scanner Logo
DOMXSS Scanner

A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.

Free
Application Security
Cequence Unified API Protection Platform Logo
Cequence Unified API Protection Platform

An API security platform that combines discovery, compliance monitoring, and protection capabilities to defend against API attacks, automated threats, and data exposure.

Commercial
Application Security
CFRipper Logo
CFRipper

CFRipper is a Library and CLI security analyzer for AWS CloudFormation templates.

Free
Application Security
Anti-Trojan-Source Logo
Anti-Trojan-Source

Detect trojan source attacks that employ unicode bidi attacks to inject malicious code.

Free
Application Security
Autorize Logo
Autorize

Automatic authorization enforcement detection extension for Burp Suite

Free
Application Security
DOMPurify Logo
DOMPurify

DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.

Free
Application Security
Levo Logo
Levo

An API security platform that discovers, documents, and tests APIs throughout the development lifecycle while maintaining a centralized catalog of all API assets.

Commercial
Application Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy