UUSEC WAF

UUSEC Technology — Fri, 01 Aug 2025 04:46:38 +0000

Introduction

UUSEC WAF Web Application Firewall is an industrial grade free, high-performance, and highly scalable web application and API security protection product that supports AI and semantic engines. It is a comprehensive website protection product launched by UUSEC Technology, which first realizes the three-layer defense function of traffic layer, system layer, and runtime layer.

GitHub Daily Trend

🎯 Technical advantages

⛎ Intelligent 0-day defense

UUSEC WAF innovatively applies machine learning technology, using anomaly detection algorithms to distinguish and identify HTTP normal and attack traffic, and models whitelist threats to normal traffic. By using machine learning algorithms to automatically learn the parameter characteristics of normal traffic and convert them into corresponding parameter whitelist rule libraries, it is possible to intercept attacks without adding rules when facing various sudden 0-day vulnerabilities, eliminating the pain of website managers having to work late to upgrade as soon as vulnerabilities appear.

♉ Ultimate CDN acceleration

UUSEC self-developed cache cleaning feature surpasses the arbitrary cache cleaning function only available in the commercial version of nginx, proxy_cache_purge. The commercial version of nginx only supports * pattern matching to clean the cache, while UUSEC WAF further supports regular expression matching URL path cache cleaning, which has higher flexibility and practicality compared to the commercial version of nginx. Users can enjoy ultimate CDN acceleration while more conveniently solving cache expiration issues.

♍ Powerful proactive defense

The self-developed 'HIPS' and 'RASP' functions of UUSEC WAF can achieve more powerful dual layer defense at the system layer and application runtime layer, effectively preventing zero day vulnerability attacks. Host layer active defense can intercept low-level attacks at the system kernel layer, such as restricting process network communication, process creation, file read and write, system privilege escalation, system overflow attacks, etc. Runtime application self-defense RASP is inserted into runtime engines such as Java JVM and PHP Zend to effectively track runtime context and intercept various web 0-day vulnerability attacks.

♎ Advanced semantic engine

UUSEC WAF adopts four industry-leading semantic analysis based detection engines, namely SQL, XSS, RCE, and LFI. Combined with multiple deep decoding engines, it can truly restore HTTP content such as base64, JSON, and form data, effectively resisting various attack methods that bypass WAF. Compared with traditional regular matching, it has the characteristics of high accuracy, low false alarm rate, and high efficiency. Administrators do not need to maintain a complex rule library to intercept multiple types of attacks.

♊ Advanced rule engine

UUSEC WAF actively utilizes the high-performance and highly flexible features of nginx and luajit. In addition to providing a traditional rule creation mode that is user-friendly for ordinary users, it also offers a highly scalable and flexible Lua script rule writing function, allowing advanced security administrators with certain programming skills to create a series of advanced vulnerability protection rules that traditional WAF cannot achieve. Users can write a series of plugins to extend the existing functions of WAF. This makes it easier to intercept complex vulnerabilities.

🚀 One click Installation

UUSEC WAF provides you with a powerful and flexible API for extending and writing security rules. After being published in the management backend, all rules take effect immediately without restarting, far exceeding most free WAF products on the market such as ModSecurity. The rules are shown below:

🏠Please visit the official website to see more details: https://uuwaf.uusec.com/

The installation of the UUSEC WAF is very simple, usually completed within a few minutes, and the specific time depends on the network download situation.

Attention: Please try to choose a pure Linux x86_64 environment server for installation, because the UUSEC WAF adopts cloud WAF reverse proxy mode, which requires the use of ports 80 and 443 by default.

Installation

Software dependencies: Docker CE version 20.10.14 or above, Docker Compose version 2.0.0 or above.

If you encounter the inability to automatically install Docker Engine, please install it manually.

sudo bash -c "$(curl -fsSL https://uuwaf.uusec.com/installer.sh)"

Subsequently, bash /opt/waf/manager.sh is used to manage the UUSEC WAF container, including starting, stopping, updating, uninstalling, etc.

Quick Start

Login to the management: Access https://ip:4443 ,the IP address is the server IP address for installing the UUSEC WAF, the default username is admin, and the default password is #Passw0rd.
Add a site: Go to the "Sites" menu, click the "Add Site" button, and follow the prompts to add the site domain name and website server IP.
Add SSL certificate: Go to the certificate management menu, click the "Add Certificate" button, and upload the HTTPS certificate and private key file of the domain name. If you don‘t have a SSL certificate, you can also apply for a Let's Encrypt free SSL certificate and renew it automatically before the certificate expires.
Change the DNS address of the domain: Go to the domain name service provider's management backend and change the IP address recorded in the DNS A of the domain name to the IP address of the UUSEC WAF server.
Test connectivity: Visit the site domain to see if the website can be opened, and check if the returned HTTP header server field is uuWAF.

For more solutions to problems encountered during use, please refer to FAQ.

✨ Effect Evaluation

For reference only

Metric	ModSecurity, Level 1	CloudFlare, Free	UUSEC WAF, Free	UUSEC WAF, Pro
Total Samples	33669	33669	33669	33669
Detection	69.74%	10.70%	74.77%	98.97%
False Positive	17.58%	0.07%	0.09%	0.01%
Accuracy	82.20%	98.40%	99.42%	99.95%

🥇 Product List

Other great products from us:

OpenResty Manager - The most simple, powerful and beautiful host management panel, open source alternative to OpenResty Edge.

💝 Contribution List

How to contribute? reference: https://uuwaf.uusec.com/#/guide/contribute

😘 Join the discussion

Welcome to participate in discussions on various bugs, functional requirements, and usage issues related to the UUSEC WAF through the following channels:

Problem submission: https://github.com/Safe3/uusec-waf/issues
Discussion Community: https://github.com/Safe3/uusec-waf/discussions

OpenResty Manager

UUSEC Technology — Fri, 01 Aug 2025 04:38:15 +0000

The most simple, powerful and beautiful server control panel, an open source alternative to OpenResty Edge, allows you to easily secure reverse proxy websites running at home or on the Internet, including access control, denial of service attack protection, automatic application and renewal of free SSL certificates, without having to know too much about OpenResty or Let's Encrypt. And it supports host management, including easy-to-use web terminals and file management, as well as Docker Composer based application store, greatly reducing the difficulty of website building and container management.

🎯 Features

🟢 Provide a beautiful, powerful, and easy-to-use web management UI
🟣 Free SSL support both for HTTP-01 and DNS-01 challenge or provide your own SSL certificates
🟡 Powerful security features, such as access control, denial-of-service attack protection, identity authentication.
🔴 Simplify host management, include UI frendly terminal and file manager for users
🔵 Support application store, greatly reducing the difficulty of website building and container management

🚀 Usage

OpenResty Manager is not only easy to use but also easy to install, supports both host and container environments.

Host Version

☣️ If the server is using cloud services, remember to open the TCP port 80, 443 and 34567 required for OpenResty Manager

One click installation: Automatic installation can be completed in minutes.

sudo bash -c "$(curl -fsSL https://om.uusec.com/installer.sh)"

Docker Version

One click installation: Automatic installation can be completed in minutes.

sudo bash -c "$(curl -fsSL https://om.uusec.com/docker_installer.sh)"

Subsequently, bash /opt/om/om.sh is used to manage the OpenResty Manager container, including starting, stopping, updating, uninstalling, etc.

Quick Start

Login to the management: Access https://your-ip:34567 , the default username is "admin", and the default password is "#Passw0rd".
Add SSL certificates: Go to the certificates management menu, apply for a Let's Encrypt free SSL certificate or upload an existing certificate.
Add apps: Go to the app store menu and install apps such as WordPress with just one click.
Add upstreams: Go to the upstream management menu and add upstream load balancing for installed applications such as WordPress.
Add a site: Go to the sites menu, click the "New site" button, and follow the prompts to add the site domain names for reverse proxy.
Test connectivity: Change your domain dns A or CNAME record to the OpenResty Manager server IP, visit your website to see if it can be opened.

Uninstall

One click uninstallation: Automatic uninstallation can be completed in minutes.

sudo bash -c "$(curl -fsSL https://om.uusec.com/uninstaller.sh)"

🥇 Product List

Other great products from us:

UUSEC WAF - An high-performance, AI and semantic technology Web Application Firewall and API Security Gateway (WAAP).

💝 Credits

Thanks to all the amazing community contributors for sending PRs and keeping this project updated. ❤️

If you have an idea or some kind of improvement, you are welcome to contribute and participate in the Project, feel free to send your PR.
If you want to support more features , please send mail to support[at]uusec.com .

🔑 License

OpenResty Manager is under GPL license, everyone can use it for free！

DEV Community: UUSEC Technology

UUSEC WAF

Introduction

GitHub Daily Trend

🎯 Technical advantages

🚀 One click Installation

Installation

Quick Start

✨ Effect Evaluation

🥇 Product List

💝 Contribution List

😘 Join the discussion

OpenResty Manager

🎯 Features

🚀 Usage

Host Version

Docker Version

Quick Start

Uninstall

🥇 Product List

💝 Credits

🔑 License