EnableSecurity / wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
☆5,504Updated last month
Alternatives and similar repositories for wafw00f:
Users that are interested in wafw00f are comparing it to the libraries listed below
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,864Updated 9 months ago
- Automated All-in-One OS Command Injection Exploitation Tool.☆4,723Updated this week
- Next generation web scanner☆5,713Updated 6 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,153Updated 3 months ago
- A Tool for Domain Flyovers☆5,710Updated 2 years ago
- Web application fuzzer☆6,050Updated 5 months ago
- Linux privilege escalation auditing tool☆5,786Updated 11 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,384Updated last year
- Weaponized web shell☆3,243Updated 3 months ago
- DNS Enumeration Script☆2,709Updated this week
- Automated NoSQL database enumeration and web application exploitation tool.☆3,005Updated 6 months ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆2,955Updated last year
- Fast subdomains enumeration tool for penetration testers☆10,108Updated 6 months ago
- Web path scanner☆12,523Updated 2 weeks ago
- Advanced vulnerability scanning with Nmap NSE☆3,548Updated 5 months ago
- A swiss army knife for pentesting networks☆8,570Updated last year
- pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.☆3,684Updated 2 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,738Updated 3 years ago
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,021Updated last year
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,641Updated 2 weeks ago
- Automatic SSRF fuzzer and exploitation tool☆3,075Updated 8 months ago
- Open Source Vulnerability Management Platform☆5,188Updated 2 weeks ago
- Fast passive subdomain enumeration tool.☆11,114Updated this week
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,476Updated 3 months ago
- File upload vulnerability scanner and exploitation tool.☆3,166Updated last year
- Fast web fuzzer written in Go☆13,389Updated 7 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆7,951Updated 10 months ago
- Directory/File, DNS and VHost busting tool written in Go☆10,878Updated this week
- Empire is a PowerShell and Python post-exploitation agent.☆7,538Updated 5 years ago
- Git All the Payloads! A collection of web attack payloads.☆3,676Updated last year