unsubbed.co

BunkerWeb

BunkerWeb gives you web Application Firewall (WAF) that will protect your web services on your own infrastructure.

AGPL-3.0 Free bunkerity/bunkerweb · 10K bunkerweb.io Python 3 deploy options Plugins Webhooks

Overview

🛡️ Open-source and next-generation Web Application Firewall (WAF) Fool attackers and protect your web services with BunkerWeb, the open-source and next-gen Web Application Firewall (WAF). 🌐 Website | 🤝 Panel | 📓 Documentation | 👨‍💻 Demo | 📱 Demo UI | 🧩 Templates | 🛡️ Examples

💬 Chat | 📝 Forum | 📝 Community | 🗺️ Threatmap | 📊 Status | 🔎 Feedback The project has 10K+ GitHub stars and is licensed under AGPL-3.0.

Key Features

Source: GitHub README

  • HTTPS support with transparent Let’s Encrypt automation
  • State-of-the-art web security: HTTP security headers, prevent leaks, TLS hardening, …
  • Integrated ModSecurity WAF with the OWASP Core Rule Set
  • Automatic ban of strange behaviors based on HTTP status codes
  • Apply connection and request limits for clients
  • Block bots by asking them to solve a challenge (e.g., cookie, JavaScript, captcha, hCaptcha, or reCAPTCHA)
  • Block known bad IPs with external blacklists and DNSBL
  • And much more…

Getting Started

Source: GitHub README

BunkerWeb Cloud is the easiest way to get started with BunkerWeb. It offers you a fully managed BunkerWeb service with no hassle. Think of it like a BunkerWeb-as-a-Service!

You will find more information about BunkerWeb Cloud beta here and you can apply for free in the BunkerWeb panel. —>

Normalized Features

Source: tool-features-normalized.json

docker, helm, kubernetes, mysql, plugins, postgresql, sqlite, webhooks.

Deploy

Docker

Self-host with Docker Compose

Coolify

One-click via Coolify panel
elestio

Elestio

Managed hosting from $9/mo
pikapods

PikaPods

Simple managed hosting

Features

Integrations & APIs

  • Plugin / Extension System
  • Webhooks

Category

Security & Authentication (159) Cybersecurity Tools (45)

Related Security & Authentication Tools

View all 159 →

Ghidra

66K

A free, open-source software reverse engineering framework created by the NSA — disassemble, decompile, and analyze compiled code on any platform.

security Apache-2.0

PocketBase

58K

Open-source backend in a single 12 MB binary — realtime database, auth, file storage, and admin dashboard. No Docker, no Postgres, just run it.

security MIT Easy to deploy

Vaultwarden

57K

Lightweight, self-hosted Bitwarden-compatible password manager written in Rust. Uses 10x less RAM than the official server and works with all Bitwarden clients.

security AGPL-3.0

Zen Browser

41K

Zen Browser is a privacy-focused, beautifully designed Firefox fork with a unique sidebar tab layout, split views, and built-in content blocking — no telemetry, no tracking.

security MPL-2.0

Vault

35K

Manage secrets and protect sensitive data. Securely store and control access to tokens, passwords, certificates, and encryption keys.

security

KeyCloak

33K

Open source identity and access management. Add authentication to applications and secure services with minimum effort.

security Apache-2.0