FA-PengFei / NGWAF
First iteration of ML based Feedback WAF
☆58Updated 10 months ago
Alternatives and similar repositories for NGWAF:
Users that are interested in NGWAF are comparing it to the libraries listed below
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆62Updated 4 months ago
- Determine the running software version of a remote F5 BIG-IP management interface.☆66Updated last year
- Cloud Exploit Framework☆113Updated 2 years ago
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.☆48Updated 8 months ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆27Updated last year
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆57Updated last year
- GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments☆89Updated 7 months ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆85Updated 11 months ago
- Enumerate AWS cloud resources based on provided credential☆50Updated 2 years ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆48Updated 11 months ago
- CVE-2023-34362: MOVEit Transfer Unauthenticated RCE☆63Updated 10 months ago
- Fast and lightweight Web Application Firewall Fingerprinting tool☆62Updated last month
- OSTE WLA automate the process of analyzing web server logs with the Python Web Log Analyzer.☆32Updated last year
- A penetration testing and vulnerability management application written using the powerful django framework.☆29Updated last year
- PoC repository for CVE-2023-29007☆33Updated last year
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- Some of my rough notes for Docker threat detection☆47Updated last year
- A go-exploit to scan for Juniper firewalls vulnerable to CVE-2023-36845☆61Updated this week
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 2 years ago
- Static code analysis tool based on Elasticsearch☆129Updated 4 years ago
- Postfix SMTP Smuggling - Expect Script POC☆26Updated last year
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆58Updated last year
- One line command and control backdoors for APIs and web applications.☆50Updated 9 months ago
- Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.☆55Updated last year
- Manage attack surface data on Elasticsearch☆21Updated last year
- Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks☆64Updated 2 years ago
- OpenSSH Pre-Auth Double Free CVE-2023-25136 POC☆45Updated last year
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆39Updated 2 years ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆38Updated 2 years ago
- C2 Automation using Linode☆78Updated 2 years ago