open-appsec

🎤 We’re excited to join #OWASP #FrankfurtChapter #75 in Germany on 25 Feb. Our Product Manager @chrislutat will show how a machine‑learning approach to Web App & API security delivers preemptive zero‑day protection without signatures. Using a recent major vulnerability as a case study, we’ll demonstrate how this model – integrated with a reverse proxy via the #opensource #openappsec #WAFproject – blocks emerging threats while reducing false positives and operational overhead vs. traditional WAFs… and more. 💡 We’re also looking forward to Shannon C. Ryan's talk on “From Code to Leadership: Navigating the Tech Landscape as a Woman.” 🤝 Thanks to the OWASP Frankfurt leadership team: Jonas, Jasmin, Dan, Dominik. 📝 Seats are limited – sign up now: meetup.com/de-de/owasp-fr… #openappsec #opensource #talk #owasp #frankfurt #waf #machinelearning #ai #threatprevention #nginx #kong #envoy #apisix #linux #docker #kubernetes #Checkpoint #itsecurity #websecurity #apisecurity

🔐 Zero-Day Protection for React2Shell (CVE-2025-55182) The newly disclosed React2Shell vulnerability poses a serious risk to web applications. open-appsec delivers zero-day protection without relying on signatures or patches — thanks to its machine-learning-based security engine. 📖 Dive into the technical details: openappsec.io/post/zero-day-… #openappsec #ZeroDayProtection #CVE202555182 #AppSec #CyberSecurity #WAF #CheckPoint #linux #docker #kubernetes #cyber #nginx #kong #apisix #envoy #envoygateway #zeroday #owasp #opensource #itsecurity #machinelearning #ai #react #react2shell

open-appsec ML/AI-based WAF Now Integrates with Envoy Gateway on Kubernetes! #openappsec WAF [openappsec.io] integration with #EnvoyGateway [gateway.envoyproxy.io] — now available as alpha! This powerful integration brings advanced, #machinelearning-driven web application protection to modern #Kubernetes environments using Envoy Gateway (no more #WAF signatures!). With this integration, you can: ✅ Seamlessly deploy open-appsec WAF agents alongside Envoy Gateway 🛡️ Protect your web APIs and services with intelligent, adaptive #websecurity layers 🔄 Leverage continuous learning for proactive #threatprevention ✍️ Eliminate reliance on traditional signatures — open-appsec uses ML to detect and block threats dynamically 🧠 Gain AI-based protection - not only against known threats, but also against unknown and emerging attacks 🌍 #opensource - free community edition available 🚀 We plan to provide further integration options with Envoy Gateway soon 🛡️ Learn more about the open-appsec WAF project: openappsec.io 🔧 Get started now: lnkd.in/eHWUqxUh #openappsec #waf #opensource #envoy #envoygateway #checkpoint #threatprevention #machinelearning #owasp #ai #cyber #websecurity #apisecurity #kubernetes #linux #docker #nginx #kong #apisix #zerodayprotection

The open-appsec WAF #Meetup Tour is Coming Soon to various cities in Western Europe — and we’d love to meet you in person in Belgium, France, UK and Ireland! Join us for an afternoon packed with practical insights, hands-on demos, and great networking with Web & API Security professionals and enthusiasts. #openappsec (openappsec.io) is an #opensource Web Application & API security project (#WAF) that uses machine learning to deliver pre-emptive protection against #OWASP-Top-10 vulnerabilities and #zeroday attacks. No signatures, no rule-tweaking — just smart, scalable security for your infrastructure. 📌 What We’ll Cover in the Meetups - How open-appsec #WAF utilizes #machinelearning to protect Web Apps & APIs - Deploying a fully pre-emptive WAF to stop known and unknown zero-day #webattacks - Introducing our new SaaS tool for centrally managing #NGINX deployments - Real-world deployment examples - Live demo + open discussion - Q&A, networking, food & drinks 👥 Who Should Attend - Developers & #DevOps / #DevSecOps professionals - Security engineers - Anyone interested in WAF, Web & #API #Security, and open-source security tools 📍 Upcoming Cities & Dates Brussels – September 22, 4 PM → RSVP here: meetup.com/open-appsec-wa… Paris – September 23, 4 PM → RSVP here: meetup.com/open-appsec-wa… London – September 24, 4 PM → RSVP here: meetup.com/open-appsec-wa… Edinburgh – September 25, 4 PM → RSVP here: meetup.com/open-appsec-wa… Dublin – September 26, 4 PM → RSVP here: meetup.com/open-appsec-wa… Seats are limited — don’t miss your chance to connect with the open-appsec team and your local security community. #openappsec #opensource #waf #meetup #brussels #paris #london #edinburgh #dublin #checkpoint #machinelearning #ai #websecurity #apisecurity #nginx #kong #apisix #istio #envoy #linux #docker #kubernetes #threatprevention #itsecurity #cyber #devops #devsecops #owasp

New Beta: open-appsec WAF for Kong Gateway is here – featuring native Kong Lua-plugin! 🔐 🛡️ Get machine learning-powered, signature-free protection against zero-days & OWASP Top 10 — directly at your #Kong gateway. ✅ Kong Gateway OSS & Kong Enterprise ✅ Linux, Docker, and Kubernetes ✅ Declarative configs (GitOps-CD-ready) and central WebUI ✅ Prevents zero-day attacks and known threats like OWASP Top 10 ✅ Preemptively prevented: Log4Shell, Spring4Shell, Text4Shell, MoveIt, … ✅ Lua-based, native Kong plugin ✅ Compatible with Kong Konnect 📘 Read the full blog openappsec.io/post/introduci… #openappsec #kong #waf #lua #apisecurity #cloudsecurity #cybersecurity #devsecops #nginx #kubernetes #docker #luaplugin #gatewaysecurity #apisix #zeroday #AI #ML #websecurity #owasp #konggateway #kongkonnect #opensource #api #infosec #machinelearning #envoy #itsecurity #checkpoint

🚀 Just released: open-appsec now supports Istio Ingress Gateway! If you're running #Kubernetes with #Istio, you can now deploy a machine-learning WAF directly into your Istio Ingress Gateway for real-time protection against web and API attacks — including zero-days. 🤖🛡️ 👇 How it works: 🧱 open-appsec runs as an Envoy filter + sidecar container in Istio Ingress Gateway pods ⚙️ Easily deployed via Helm and injected into existing Ingress Gateway 🛡️ True Zero-Day Threat Prevention 🔍 Also protects against OWASP Top 10, command injection, and more 🧠 No signatures — it learns from traffic in your environment 📊 Optional WebUI for centralized visibility, logs & config 📁 Or go full GitOps with local management using CRDs Read the full blog: openappsec.io/post/open-apps… #openappsec #waf #checkpoint #opensource #docker #kubernetes #linux #cybersecurity #devsecops #threatprevention #owasp #apisecurity #websecurity #itsecurity #infosec #cyber #web #api #apigateway #machinelearning #owasptop10 #informationsecurity #networksecurity #cloudsecurity #webattack #AI #devops #istio #envoy

open-appsec is coming to Denmark, Sweden, Norway and Finland. Meet us in person! linkedin.com/feed/update/ur…

From Kindergarten to PhD - Leveraging open-appsec WAF Machine Learning Levels for a Robust Web Protection Manual WAF tuning can be time-consuming and complex. open-appsec is a machine learning-based WAF that simplifies the process with an automated learning model. In this blog, we explore how open-appsec’s Contextual Machine Learning progresses through different learning levels until it reaches the optimum learning state. Represented through an educational analogy, these levels progress from Kindergarten to PhD, symbolizing the model’s increasing maturity and proficiency. These learning levels provide an interactive, user-friendly experience that guides teams through optimizing their WAF and improving its performance. 🔗 Read the full blog openappsec.io/post/from-kind… #openappsec #waf #checkpoint #opensource #docker #Kubernetes #linux #CyberSecurityAwareness #devsecops #nginx #threatprevention #owasp #apisecurity #websecurity #itsecurity #infosec #cyber #web #api #apigateway #machinelearning #owasptop10 #informationsecurity #networksecurity #cloudsecurity #webattack #AI #DevOps #kong #apisix #envoyespecial

Payswiff, a leader in digital payment solutions, shared its success story of deploying open-appsec WAF and securing 900+ million HTTP requests over the past year. Read more: openappsec.io/post/from-zero… #payswiff #openappsec #opensource #waf #checkpoint #MachineLearning #nginx

open-appsec WAF released the new v1beta2 schema for: ✅ Kubernetes Custom Resource Definitions (CRDs) ✅ Docker/Linux declarative configuration via configuration file Read more! openappsec.io/post/introduci… #openappsec #k8 #opensource #waf #checkpoint #docker #MachineLearning

Announcing beta support for open-appsec WAF integration with Envoy proxy on Docker! open-appsec provides preemptive, machine-learning-based threat prevention for web apps/APIs! #openappsec #envoy #opensource #waf #checkpoint #docker #MachineLearning openappsec.io/post/open-apps…

Our latest blog breaks down 5 best practices to ensure the best possible results from open-appsec WAF’s Contextual ML engine while minimizing false positives. Click to learn more. openappsec.io/post/how-to-se… #opensource #cybersecurity #waf #machinelearning #openappsec #Checkpoint

🚀Exciting news! open-appsec, the ML-based, open-source WAF solution, now supports new Docker-Compose-based deployment (beta) with various new capabilities. Learn more here: openappsec.io/post/open-apps… #opensource #cybersecurity #devsecops #docker #waf #machinelearning #openappsec

Proud to release the WAF comparison project in which we tested the efficacy of several leading WAF solutions in real-world conditions. Read our report to see the results! openappsec.io/post/best-waf-… #openappsec #waf #cybersecurity #DevOps #opensource #MachineLearning

Read insights from @nesecon CEO and CTO about their journey and experience with open-appsec, the automatic, machine learning-based, open-source WAF solution. openappsec.io/post/how-did-w… #openappsec #nesecon #Kubernetes #cybersecurity #DevOps #opensource #MachineLearning

open-appsec WAF will soon support integration with Envoy Proxy and Istio Service Mesh. Read more in our blog! openappsec.io/post/open-apps… #openappsec #envoy #Istio #Kubernetes #Docker #cybersecurity #DevOps #opensource #CloudSecurity #Website #API #Linux #MachineLearning

We are thrilled to announce open-appsec WAF new integration with Apache APISIX. Thank you API7 team for hosting our blog and for this amazing collaboration! #openappsec #api7 #apisix #waf #apigateway #docker #Kubernetes #Linux #waf #websecurity #machine_learning #appsecurity