Ekultek / WhatWafLinks
Detect and bypass web application firewalls and protection systems
☆2,840Updated last year
Alternatives and similar repositories for WhatWaf
Users that are interested in WhatWaf are comparing it to the libraries listed below
Sorting:
- File upload vulnerability scanner and exploitation tool.☆3,266Updated 5 months ago
- A python script that finds endpoints in JavaScript files☆4,154Updated last year
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,950Updated last month
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,373Updated last year
- Automated NoSQL database enumeration and web application exploitation tool.☆3,172Updated 2 months ago
- HTTP parameter discovery suite.☆5,905Updated 8 months ago
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,613Updated this week
- Knock Subdomain Scan☆4,077Updated last week
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,060Updated last year
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,456Updated 3 months ago
- Automatic SSRF fuzzer and exploitation tool☆3,378Updated last month
- CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs☆2,477Updated last year
- A Tool for Domain Flyovers☆5,860Updated 3 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,861Updated 4 years ago
- Bruteforcing from various scanner output - Automatically attempts default creds on found services.☆2,317Updated last week
- Find web directories without bruteforce☆1,930Updated 2 years ago
- Automated Security Testing For REST API's☆2,614Updated last year
- A curated list of amazingly awesome Burp Extensions☆3,301Updated 8 months ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,167Updated last week
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,452Updated 9 months ago
- Striker is an offensive information and vulnerability scanner.☆2,311Updated 2 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,440Updated last year
- CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.☆1,135Updated 3 years ago
- Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies fo…☆1,258Updated 3 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,879Updated 3 years ago
- A high performance offensive security tool for reconnaissance and vulnerability scanning☆3,248Updated 4 months ago
- Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns☆1,542Updated last year
- massive SQL injection vulnerability scanner☆1,223Updated 7 years ago
- Subdomain Takeover tool written in Go☆2,007Updated 2 years ago
- HackBar plugin for Burpsuite☆1,597Updated 4 years ago