The purpose of this project is to mitigate web applications threats using Varnish.
Varnish (https://www.varnish-cache.org/) is a modern, very flexible and scalable reverse-proxy system which supports VCL, a wonderful domain-specific language to deal with HTTP (to handle headers, routing, rewrite and block requests, etc).
Nowadays, many big Internet services are behind Varnish and we can bring some security policies to it.
OWASP Project Site: https://www.owasp.org/index.php/OWASP_VFW_Project
Related Projects: - https://github.com/comotion/security.vcl