FA-PengFei / NGWAFLinks
First iteration of ML based Feedback WAF
☆59Updated last year
Alternatives and similar repositories for NGWAF
Users that are interested in NGWAF are comparing it to the libraries listed below
Sorting:
- Some of my rough notes for Docker threat detection☆47Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆64Updated 9 months ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆87Updated last year
- Enumerate AWS cloud resources based on provided credential☆51Updated 3 years ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆43Updated 3 years ago
- Fast and lightweight Web Application Firewall Fingerprinting tool☆62Updated 6 months ago
- A "Spring4Shell" vulnerability scanner.☆49Updated 5 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- PoC repository for CVE-2023-29007☆33Updated 2 years ago
- Determine the running software version of a remote F5 BIG-IP management interface.☆66Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago
- REST-Attacker is designed as a proof-of-concept for the feasibility of testing generic real-world REST implementations. Its goal is to pr…☆80Updated 2 years ago
- Manage attack surface data on Elasticsearch☆22Updated last year
- Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.☆56Updated 2 years ago
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆55Updated last year
- Cloud Exploit Framework☆114Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆29Updated 2 years ago
- Red Teaming & Active Directory Cheat Sheet.☆40Updated last year
- ☆27Updated 2 years ago
- A go-exploit to scan for Juniper firewalls vulnerable to CVE-2023-36845☆61Updated 4 months ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆29Updated 2 years ago
- One line command and control backdoors for APIs and web applications.☆50Updated last year
- GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments☆90Updated last year
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.☆50Updated last year
- A penetration testing and vulnerability management application written using the powerful django framework.☆30Updated last year
- Simple Latest CVE Collector Written in Python☆59Updated last year
- ☆36Updated last week
- Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks☆65Updated 2 years ago
- Exploits targeting vBulletin.☆76Updated 2 years ago
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆39Updated 2 years ago