Search Results for "host based firewall"
Sort By:
Showing 1243 open source projects for "host based firewall"
View related business solutions-
Auth0 for AI Agents now in GAConnect your AI agents to apps and data more securely, give users control over the actions AI agents can perform and the data they can access, and enable human confirmation for critical agent actions.
-
Zenflow- The AI Workflow Engine for Software DevsZenflow is the AI workflow engine built for real teams. Parallel agents plan, code, test, and verify in one workflow. With spec-driven development and deep context, Zenflow turns requirements into production-ready output so teams ship faster and stay in flow.
-
1
Self Host Blocks
Modular server management based on NixOS modules
SHB's (Self Host Blocks) is yet another server management tool whose goal is to provide better building blocks for self-hosting. Indeed, SHB provides opinionated building blocks fitting together to self-host any service you'd want. Some common services are provided out of the box. SHB's goal is to make these building blocks plug-and-play. To achieve this, SHB pioneers contracts that allow you, the final user, to be more in control of which pieces go where. The promise here is to let you... -
2
OpenSnitch
OpenSnitch is a GNU/Linux port of the Little Snitch firewall
OpenSnitch is a GNU/Linux port of the Little Snitch firewall. You can launch the GUI from the icon or from the system menu. The daemon will start intercepting connections, prompting you to allow or deny them. If you don't apply an action, after 15 seconds (configurable) it'll apply the default action configured. When you open the GUI, you'll see all the connections and processes that the daemon has intercepted. -
3
LuLu
LuLu is the free open-source macOS firewall
LuLu is a free, open-source firewall for macOS developed by Objective-See. It blocks unauthorized outgoing network connections, allowing users to monitor and control which applications can transmit data externally. Designed for privacy and security, LuLu provides real-time prompts, rule-based filtering, and an intuitive interface, making it a valuable tool for Mac users seeking visibility over their system’s network behavior. -
4
n8n
Free and source-available fair-code licensed workflow automation tool
n8n is an extendable workflow automation tool. With a fair-code distribution model, n8n will always have visible source code, be available to self-host, and allow you to add your own custom functions, logic and apps. n8n's node-based approach makes it highly versatile, enabling you to connect anything to everything. n8n has 200+ different nodes to automate workflows. -
The Most Powerful Software Platform for EHSQ and ESG ManagementChoose from a complete set of software solutions across EHSQ that address all aspects of top performing Environmental, Health and Safety, and Quality management programs.
-
5
Open Source API Firewall by Wallarm
Fast and light-weight API proxy firewall for request and response
API Firewall is a high-performance proxy with API request and response validation based on OpenAPI/Swagger schema. It is designed to protect REST API endpoints in cloud-native environments. API Firewall provides API hardening with the use of a positive security model allowing calls that match a predefined API specification for requests and responses, while rejecting everything else. -
6
H2 Database
H2 is an embeddable RDBMS written in Java
Welcome to H2, the Java SQL database. Very fast, open source, JDBC API. Embedded and server modes; in-memory databases. Browser-based Console application. Small footprint: around 2.5 MB jar file size. Browser-based Console application. Encrypted databases. Fulltext search. Pure Java with small footprint: around 2.5 MB jar file size. ODBC driver. This database can be used in embedded mode, or in server mode. ou may get a security warning from the firewall. If you don't want other computers in the network to access the database on your machine, you can let the firewall block these connections. ... -
7
SafeLine
Serve as a reverse proxy to protect your web services from attacks
SafeLine is a self-hosted WAF(Web Application Firewall) to protect your web apps from attacks and exploits. A web application firewall helps protect web apps by filtering and monitoring HTTP traffic between a web application and the Internet. It typically protects web apps from attacks such as SQL injection, XSS, code injection, os command injection, CRLF injection, LDAP injection, XPath injection, RCE, XXE, SSRF, path traversal, backdoor, brute force, HTTP-flood, bot abuse, among others. By... -
8
CrowdSec
Firewall able to analyze visitor behavior & provide adapted response
CrowdSec - an open-source massively multiplayer firewall able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global IP reputation database to protect the user network. Crowdsec shouldn't, and didn't crash any production so far we know, but some features might be missing or undergo evolutions. IP Blocklists are limited to very-safe-to-ban IPs only (~5% of the global database so far, will grow soon). ... -
9
Zapret
Advanced open source tool for bypassing DPI-based censorship
Zapret is an open source, cross-platform tool designed to help users bypass and evade Deep Packet Inspection (DPI)-based traffic blocking and censorship systems. Rather than acting as a traditional proxy or VPN, it works by manipulating network packets and traffic streams locally to confuse or disrupt DPI mechanisms used by ISPs and network filters, making it possible to access restricted websites and services without relaying traffic through third-party servers. Zapret implements multiple... -
Next-Gen Encryption for Post-Quantum Security | CLEAR by Quantum KnightCLEAR by Quantum Knight is a FIPS-140-3 validated encryption SDK engineered for enterprises requiring top-tier security. Offering robust post-quantum cryptography, CLEAR secures files, streaming media, databases, and networks with ease across over 30 modern platforms. Its compact design, smaller than a single smartphone image, ensures maximum efficiency and low energy consumption.
-
10
Sunshine
Self-hosted game stream host for Moonlight
Sunshine is an open-source self‑hosted cloud gaming server that implements NVIDIA’s GameStream protocol. Compatible with Moonlight clients across platforms, it supports low‑latency streaming via software or hardware encoding (AMD/Intel/NVIDIA) and offers a browser‑based control UI for pairing. -
11
Web-based Firewall Log Analyzer
Firewall log analyzer
Flexible web-based firewall log analyzer, supporting netfilter and ipfilter, ipfw, ipchains, cisco routers and Windows XP system logs, and mysql or postgresql database logs using the iptables ULOG or NFLOG target of netfilter others mapped to the ulogd format with a view. Fully supports IPv6 for database logs, and netfilter and ipfilter system file logs. -
12
Toolbx Linux
Tool for interactive command line environments on Linux
...This is particularly useful on OSTree-based operating systems like Fedora CoreOS and Silverblue. The intention of these systems is to discourage installation of software on the host, and instead install software as (or in) containers — they mostly don't even have package managers like DNF or YUM. This makes it difficult to set up a development environment or troubleshoot the operating system in the usual way. -
13
NetBird
Connect your devices into a secure WireGuard-based overlay network
NetBird is an open-source solution that builds a WireGuard®-based overlay network enabling seamless, encrypted peer-to-peer connectivity without the complexity of firewall rules, port forwarding, or centralized VPN gateways. It integrates access control features such as SSO and MFA for secure, policy-driven networking. Every machine in the network runs NetBird Agent (or Client) that manages WireGuard. -
14
bee-host
Firefox/Chrome proxy app for an external editor
A native messaging host application for Browser's Exernal Editor extension (https://github.com/rosmanov/chrome-bee) -
15
ModSecurity
Cross platform web application firewall (WAF) engine for Apache
ModSecurity is an open-source, cross-platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language that provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. Libmodsecurity is one component of the ModSecurity v3 project. -
16
frp
A Fast Reverse Proxy
frp stands for exactly what it is: a fast reverse proxy. It helps you expose a local server behind a NAT or firewall to the Internet. It is currently under development, but already supports TCP and UDP, as well as HTTP and HTTPS protocols where requests can be forwarded to internal services by domain name. It also has a P2P connect mode and many other nifty features. These include configuration files, environment variables, a dashboard that shows you frp's status and proxies' statistics... -
17
IntelliJ Community Edition
IntelliJ IDEA & IntelliJ Platform
...From this base, JetBrains builds full editions (Ultimate) by layering proprietary features for enterprise frameworks and integrations. IntelliJ Community supports multiple JVM-based languages (Java, Kotlin, Scala, Groovy) and serves as a host for plugin ecosystems that add support for web, database, and cloud tooling. The project emphasizes performance, modularity, and a responsive user experience, maintaining a codebase that balances long-term maintainability with cutting-edge developer features. -
18
macOS (Dockur)
macOS inside a Docker container
dockur/macos packages a macOS virtual machine inside a Docker container using QEMU/KVM, making it easy to spin up a macOS environment on a Linux host. It provides sensible defaults for firmware, disk, and devices, plus a browser-accessible VNC console so you can complete installation and interact with the desktop remotely. Typical inputs—like environment variables and mounted volumes—control edition choice, storage persistence, and resource sizing, which makes runs repeatable and disposable.... -
19
DOSBox Staging
DOSBox Staging is a modern continuation of DOSBox
DOSBox Staging is a modern continuation of DOSBox, your existing configurations will continue to work, and you will have access to many advanced features. DOSBox Staging picks the best shader based on the emulated video mode and your host resolution, from 720p to 4K. -
20
KubeArmor
Runtime Security Enforcement System
KubeArmor is a runtime Kubernetes security engine. It uses eBPF and Linux Security Modules(LSM) for fortifying workloads based on Cloud Containers, IoT/Edge, and 5G networks. It enforces policy-based controls. KubeArmor is a runtime Kubernetes security engine. It uses eBPF and Linux Security Modules(LSM) for fortifying workloads based on Cloud Containers, IoT/Edge, and 5G networks. It enforces policy-based controls. KubeArmor lessens the attack surface on pods, containers, and virtual machines. ... -
21
Micro App
A simple, efficient and powerful micro front-end framework
Micro-app is a web component-based micro-frontend framework from JD Retail. It enables sandboxed embedding of independent micro-apps into host pages, with automatic JS/style isolation, element segregation, preloading, and inter-app communication—all independent of framework. Provides plugin architecture and works across any frontend tech stack. -
22
ClusterSSH (cssh)
Cluster SSH - Cluster Admin Via SSH
ClusterSSH is a tool to manage simultaneous interactive sessions across multiple SSH-accessible hosts. It opens one master terminal and many child terminal windows (or tabs), sending the same keystrokes to all clients while allowing isolated input per host. This is useful when orchestrating repetitive tasks—such as rolling updates or diagnosing distributed systems—without copying and pasting into each window. The interface supports splitting windows, delayed input modes, and host groupings to make clusters more manageable. It also includes features like per-host prompt prefixing or context awareness to avoid confusion in mixed environments. ... -
23
xxh
Bring your favorite shell wherever you go through the ssh
You stuffed the command shell with aliases, tools and colors but you lose it all when using ssh. The mission of xxh is to bring your favorite shell wherever you go through ssh without root access and system installations. Preparing portable shells and plugins occurs locally and then xxh uploads the result to the host. No installations or root access on the host is required. Security and host environment are a prime focus. No blindfold copying config files from local to the remote host.... -
24
Symfony Security Bundle
Integration of the Security component into the Symfony framework
Symfony Security Bundle is a powerful tool for adding authentication and authorization to Symfony applications. It provides mechanisms for managing user roles, password encryption, and access control. The bundle supports various authentication methods, including form login, HTTP basic auth, OAuth, and more. It also integrates with Symfony’s firewall and access control systems for secure application development. -
25
UTM
Virtual machines for iOS and macOS
UTM is a full-featured system emulator and virtual machine host for iOS and macOS. It is based off of QEMU. In short, it allows you to run Windows, Linux, and more on your Mac, iPhone, and iPad. UTM/QEMU requires dynamic code generation (JIT) for maximum performance. JIT on iOS devices requires either a jailbroken device or one of the various workarounds found for specific versions of iOS. UTM SE ("slow edition") uses a threaded interpreter which performs better than a traditional interpreter but still slower than JIT. ...
