EnableSecurity / wafw00fLinks
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
☆5,731Updated 6 months ago
Alternatives and similar repositories for wafw00f
Users that are interested in wafw00f are comparing it to the libraries listed below
Sorting:
- A Tool for Domain Flyovers☆5,788Updated 3 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,964Updated last year
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,351Updated 8 months ago
- Next generation web scanner☆5,935Updated 11 months ago
- HTTP parameter discovery suite.☆5,721Updated 4 months ago
- Web application fuzzer☆6,210Updated 10 months ago
- Automatic SSRF fuzzer and exploitation tool☆3,236Updated 4 months ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,372Updated this week
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,121Updated 2 years ago
- File upload vulnerability scanner and exploitation tool.☆3,219Updated last month
- A python script that finds endpoints in JavaScript files☆3,997Updated last year
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,747Updated last month
- Linux privilege escalation auditing tool☆6,032Updated last year
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,817Updated 3 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,103Updated 3 weeks ago
- A swiss army knife for pentesting networks☆8,802Updated last year
- Knock Subdomain Scan☆4,019Updated last month
- Automated All-in-One OS Command Injection Exploitation Tool.☆5,324Updated this week
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,496Updated 2 months ago
- Web path scanner☆13,066Updated 2 weeks ago
- CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs☆2,442Updated last year
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,372Updated last month
- DNS Enumeration Script☆2,803Updated last week
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,231Updated 4 months ago
- Windows Exploit Suggester - Next Generation☆4,504Updated this week
- Fast subdomains enumeration tool for penetration testers☆10,448Updated 11 months ago
- Detect and bypass web application firewalls and protection systems☆2,794Updated 10 months ago
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,468Updated 5 years ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,570Updated last year
- pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.☆3,737Updated 4 months ago