AvalZ / WAF-A-MoLELinks
A guided mutation-based fuzzer for ML-based Web Application Firewalls
☆192Updated last year
Alternatives and similar repositories for WAF-A-MoLE
Users that are interested in WAF-A-MoLE are comparing it to the libraries listed below
Sorting:
- AutoSpear☆66Updated last year
- Grammar-based HTTP/1 fuzzer with mutation ability☆253Updated 9 months ago
- A variant analysis and visualisation tool that scans codebases for similar vulnerabilities☆74Updated 3 years ago
- A penetration testing tool for finding file upload bugs (NDSS 2020)☆249Updated 4 years ago
- cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…☆141Updated 4 years ago
- An HTTP Response fuzzer to find Vulnerabilities in Security Scanners☆26Updated last year
- Tool for searching Exploits from Exploit Databases, etc.☆288Updated last week
- A Python implementation that facilitates finding timeless timing attack vulnerabilities.☆127Updated 3 months ago
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆128Updated 2 years ago
- Finding potential software vulnerabilities from git commit messages☆417Updated last year
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago
- A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications☆63Updated 4 years ago
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆111Updated 2 years ago
- Search an exploit in the local exploitdb database by its CVE☆174Updated 2 years ago
- Link sources to sinks in C# applications.☆145Updated 2 years ago
- Find CVE PoCs on GitHub☆151Updated 3 weeks ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆349Updated 2 years ago
- NVD/CVE as JSON files☆122Updated this week
- A source code static analysis platform for AppSec enthusiasts.☆256Updated 6 months ago
- Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds☆137Updated this week
- A Python3 module to assist in fuzzing web applications☆57Updated last year
- CVE 2021-21315 PoC☆157Updated 4 years ago
- DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source☆108Updated 5 years ago
- ☆84Updated 4 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆107Updated 5 years ago
- A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻☆126Updated 2 years ago
- DNSpooq - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)☆99Updated 4 years ago
- A Node.js vulnerability finding tool.☆96Updated 2 weeks ago
- Compiled dataset of Java deserialization CVEs☆62Updated 4 years ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆443Updated last week