AvalZ / WAF-A-MoLE

Related projects ⓘ

Alternatives and complementary repositories for WAF-A-MoLE

• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆243Updated 3 weeks ago
• u21h2 / AutoSpear
  AutoSpear
  ☆54Updated 10 months ago
• cvebase / cvebase.com
  cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…
  ☆139Updated 3 years ago
• AvalZ / RevOK
  An HTTP Response fuzzer to find Vulnerabilities in Security Scanners
  ☆26Updated 5 months ago
• whitesquirrell / C0deVari4nt
  A variant analysis and visualisation tool that scans codebases for similar vulnerabilities
  ☆69Updated 2 years ago
• WSP-LAB / FUSE
  A penetration testing tool for finding file upload bugs (NDSS 2020)
  ☆249Updated 3 years ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆42Updated 2 years ago
• knqyf263 / dnspooq
  DNSpooq - dnsmasq cache poisoning (CVE-2020-25686, CVE-2020-25684, CVE-2020-25685)
  ☆98Updated 3 years ago
• chenjj / Awesome-HTTPRequestSmuggling
  A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
  ☆120Updated 2 years ago
• jangelesg / py3webfuzz
  A Python3 module to assist in fuzzing web applications
  ☆57Updated 10 months ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆344Updated 2 years ago
• 0xT11 / CVE-POC
  ☆82Updated 4 years ago
• DistriNet / timeless-timing-attacks
  A Python implementation that facilitates finding timeless timing attack vulnerabilities.
  ☆121Updated last year
• KTH-LangSec / SerialDetector
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆62Updated 3 years ago
• Orange-Cyberdefense / grepmarx
  A source code static analysis platform for AppSec enthusiasts.
  ☆204Updated last month
• BBVA / waf-brain
  Machine Learning WAF Based
  ☆92Updated 4 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 4 years ago
• PortSwigger / auth-matrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆39Updated last year
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆121Updated last year
• WSP-LAB / FUGIO
  FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities
  ☆90Updated 11 months ago
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆110Updated last year
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆250Updated last year
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆106Updated 5 years ago
• elttam / semgrep-rules
  ☆175Updated 2 weeks ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆169Updated 3 weeks ago
• We5ter / Flerken
  A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会
  ☆164Updated 5 years ago
• zifeng-kang / ProbetheProto
  ☆27Updated 2 years ago
• ARPSyndicate / cvemon
  Monitoring exploits & references for CVEs
  ☆229Updated 11 months ago
• salmonx / dictionaries
  Fuzzing dictionaries for afl-fuzz/LibFuzzer
  ☆88Updated 3 years ago
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆404Updated 4 months ago