EnableSecurity / wafw00fLinks
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
☆5,731Updated 6 months ago
Alternatives and similar repositories for wafw00f
Users that are interested in wafw00f are comparing it to the libraries listed below
Sorting:
- Web application fuzzer☆6,210Updated 10 months ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,964Updated last year
- Next generation web scanner☆5,946Updated 11 months ago
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,739Updated 8 months ago
- File upload vulnerability scanner and exploitation tool.☆3,219Updated 2 months ago
- A Tool for Domain Flyovers☆5,788Updated 3 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,351Updated 8 months ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,103Updated 3 weeks ago
- Automated All-in-One OS Command Injection Exploitation Tool.☆5,324Updated this week
- Automatic SSRF fuzzer and exploitation tool☆3,245Updated 4 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,816Updated 3 years ago
- Linux privilege escalation auditing tool☆6,032Updated last year
- Knock Subdomain Scan☆4,023Updated last month
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,938Updated 2 months ago
- A python script that finds endpoints in JavaScript files☆4,008Updated last year
- A curated list of amazingly awesome Burp Extensions☆3,220Updated 4 months ago
- Weaponized web shell☆3,329Updated 8 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,570Updated last year
- DNS Enumeration Script☆2,807Updated this week
- CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs☆2,442Updated last year
- HTTP parameter discovery suite.☆5,721Updated 4 months ago
- Web path scanner☆13,066Updated 3 weeks ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,121Updated 2 years ago
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,752Updated last month
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,086Updated 2 years ago
- Fast passive subdomain enumeration tool.☆11,921Updated last week
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,372Updated last week
- Advanced vulnerability scanning with Nmap NSE☆3,634Updated 9 months ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for att…☆5,293Updated last week
- Fast subdomains enumeration tool for penetration testers☆10,448Updated 11 months ago