:: WSGW :: The Open Source Web Security Gateway ::

About the WSGW

The Web Security Gateway is a security-centric distribution of the Apache web server, bundled with additional security modules, and configured as a front-end (reverse) HTTP proxy. The goal is to mirror most of the features of commercial web application "firewalls", with free and Open-Source software.

The Web Security Gateway provides a configurable caching, authentication, input validation, and IDS / IPS layer for web applications. It can be placed in front of diverse web environments, and is capable of protecting almost any web application, without modifications to the code running on the protected app.

Getting Involved

The WSGW is a work in progress, and we are always looking for contributors! If you're interested in helping out, please sign up for our developer list.

You can take a look at our TODO list here.


The initial release of the Web Security Gateway, with build scripts and example configurations, is available on the download page.