0xInfection / Awesome-WAF
π₯ Web-application firewalls (WAFs) from security standpoint.
β6,611Updated 5 months ago
Alternatives and similar repositories for Awesome-WAF:
Users that are interested in Awesome-WAF are comparing it to the libraries listed below
- A Tool for Domain Flyoversβ5,751Updated 2 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.β5,606Updated 3 months ago
- In-depth attack surface mapping and asset discoveryβ12,840Updated this week
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.β8,495Updated last year
- A curated list of amazingly awesome Burp Extensionsβ3,151Updated 2 months ago
- Git All the Payloads! A collection of web attack payloads.β3,762Updated last year
- Awesome XSS stuffβ4,898Updated 5 months ago
- A Workflow Engine for Offensive Securityβ5,565Updated this week
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β5,125Updated 2 months ago
- A toolkit for testing, tweaking and cracking JSON Web Tokensβ5,769Updated 8 months ago
- Next generation web scannerβ5,833Updated 9 months ago
- A collection of custom security tools for quick needs.β3,194Updated last year
- File upload vulnerability scanner and exploitation tool.β3,188Updated 2 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.β6,115Updated last year
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.β5,265Updated 6 months ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.β9,454Updated last week
- Fast web fuzzer written in Goβ13,818Updated 3 weeks ago
- HTTP parameter discovery suite.β5,584Updated 2 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies andβ¦β3,779Updated 3 years ago
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,194Updated this week
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,203Updated 6 months ago
- Fast subdomains enumeration tool for penetration testersβ10,299Updated 8 months ago
- Monitor linux processes without root permissionsβ5,370Updated 2 years ago
- Attack Surface Management Platformβ8,679Updated last month
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)β3,325Updated 3 months ago
- Knock Subdomain Scanβ3,969Updated 5 months ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Toolβ3,922Updated last year
- Web application fuzzerβ6,149Updated 8 months ago
- List of Awesome Red Teaming Resourcesβ7,187Updated last year
- Detect and bypass web application firewalls and protection systemsβ2,759Updated 8 months ago