EnableSecurity / wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
☆5,567Updated 2 months ago
Alternatives and similar repositories for wafw00f:
Users that are interested in wafw00f are comparing it to the libraries listed below
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,892Updated 11 months ago
- A Tool for Domain Flyovers☆5,732Updated 2 years ago
- Web application fuzzer☆6,110Updated 7 months ago
- HTTP parameter discovery suite.☆5,520Updated last month
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,219Updated 5 months ago
- Linux privilege escalation auditing tool☆5,862Updated last year
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,766Updated 3 years ago
- Next generation web scanner☆5,786Updated 8 months ago
- Fast subdomains enumeration tool for penetration testers☆10,212Updated 7 months ago
- Automated All-in-One OS Command Injection Exploitation Tool.☆5,188Updated last week
- File upload vulnerability scanner and exploitation tool.☆3,180Updated last year
- Automatic SSRF fuzzer and exploitation tool☆3,126Updated last month
- Knock Subdomain Scan☆3,958Updated 4 months ago
- Advanced vulnerability scanning with Nmap NSE☆3,578Updated 6 months ago
- A curated list of amazingly awesome Burp Extensions☆3,105Updated last month
- Web path scanner☆12,692Updated last month
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,048Updated last year
- DNS Enumeration Script☆2,733Updated this week
- A python script that finds endpoints in JavaScript files☆3,867Updated 11 months ago
- A Workflow Engine for Offensive Security☆5,522Updated last month
- Automated NoSQL database enumeration and web application exploitation tool.☆3,029Updated 7 months ago
- A swiss army knife for pentesting networks☆8,641Updated last year
- Open Source Vulnerability Management Platform☆5,300Updated 2 weeks ago
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,677Updated last month
- Weaponized web shell☆3,277Updated 5 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,449Updated last year
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆2,999Updated last year
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,293Updated 2 months ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,675Updated 7 months ago
- Attack Surface Management Platform☆8,566Updated 3 weeks ago