EnableSecurity / wafw00fLinks
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
☆5,827Updated 7 months ago
Alternatives and similar repositories for wafw00f
Users that are interested in wafw00f are comparing it to the libraries listed below
Sorting:
- Next generation web scanner☆6,022Updated 3 weeks ago
- Web application fuzzer☆6,260Updated last year
- A Tool for Domain Flyovers☆5,841Updated 3 years ago
- HTTP parameter discovery suite.☆5,826Updated 6 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,417Updated this week
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,015Updated last year
- Automatic SSRF fuzzer and exploitation tool☆3,299Updated 6 months ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,141Updated this week
- Linux privilege escalation auditing tool☆6,142Updated last year
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,840Updated 3 years ago
- Web path scanner☆13,290Updated 2 months ago
- Automated All-in-One OS Command Injection Exploitation Tool.☆5,406Updated this week
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,659Updated last year
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,486Updated this week
- A python script that finds endpoints in JavaScript files☆4,089Updated last year
- DNS Enumeration Script☆2,837Updated last week
- File upload vulnerability scanner and exploitation tool.☆3,247Updated 3 months ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for att…☆5,389Updated this week
- Monitor linux processes without root permissions☆5,613Updated 2 years ago
- Fast subdomains enumeration tool for penetration testers☆10,551Updated last year
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆6,049Updated 3 months ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,172Updated 2 years ago
- Advanced vulnerability scanning with Nmap NSE☆3,652Updated 11 months ago
- pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.☆3,762Updated 6 months ago
- In-depth attack surface mapping and asset discovery☆13,468Updated 3 weeks ago
- Knock Subdomain Scan☆4,056Updated 2 months ago
- A curated list of amazingly awesome Burp Extensions☆3,271Updated 6 months ago
- CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs☆2,462Updated last year
- An OOB interaction gathering server and client library☆3,900Updated last week
- Weaponized web shell☆3,358Updated 10 months ago