Alternatives and similar repositories for NGWAF

Users that are interested in NGWAF are comparing it to the libraries listed below

• Antonlovesdnb / DockerDetectionNotes
  Some of my rough notes for Docker threat detection
  ☆47Updated last year
• saw-your-packet / EC2StepShell
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆64Updated 9 months ago
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆87Updated last year
• bassammaged / awsEnum
  Enumerate AWS cloud resources based on provided credential
  ☆51Updated 3 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆43Updated 3 years ago
• Lu1sDV / wafme0w
  Fast and lightweight Web Application Firewall Fingerprinting tool
  ☆62Updated 6 months ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆49Updated 5 months ago
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆51Updated last year
• ethiack / CVE-2023-29007
  PoC repository for CVE-2023-29007
  ☆33Updated 2 years ago
• BishopFox / bigip-scanner
  Determine the running software version of a remote F5 BIG-IP management interface.
  ☆66Updated last year
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆71Updated 3 years ago
• RUB-NDS / REST-Attacker
  REST-Attacker is designed as a proof-of-concept for the feasibility of testing generic real-world REST implementations. Its goal is to pr…
  ☆80Updated 2 years ago
• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆22Updated last year
• chaitin / mimicry
  Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.
  ☆56Updated 2 years ago
• kljunowsky / CVE-2022-42889-text4shell
  Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.
  ☆55Updated last year
• Rnalter / ThunderCloud
  Cloud Exploit Framework
  ☆114Updated 3 years ago
• PortSwigger / nuclei-burp-integration
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆29Updated 2 years ago
• expl0itabl3 / Redsheet
  Red Teaming & Active Directory Cheat Sheet.
  ☆40Updated last year
• spyx / ParamAngler
  ☆27Updated 2 years ago
• vulncheck-oss / cve-2023-36845-scanner
  A go-exploit to scan for Juniper firewalls vulnerable to CVE-2023-36845
  ☆61Updated 4 months ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆29Updated 2 years ago
• Geeoon / asploit
  One line command and control backdoors for APIs and web applications.
  ☆50Updated last year
• anrbn / GATOR
  GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments
  ☆90Updated last year
• OsmanKandemir / web-wordlist-generator
  WEB-Wordlist-Generator creates related wordlists after scanning your web applications.
  ☆50Updated last year
• vulnman / vulnman
  A penetration testing and vulnerability management application written using the powerful django framework.
  ☆30Updated last year
• password123456 / cve-collector
  Simple Latest CVE Collector Written in Python
  ☆59Updated last year
• hackvertor / shadow-repeater
  ☆36Updated last week
• h4wkst3r / Blackhat-USA-2022-Materials
  Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks
  ☆65Updated 2 years ago
• ambionics / vbulletin-exploits
  Exploits targeting vBulletin.
  ☆76Updated 2 years ago
• ClickCyber / cve-2022-42889
  cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…
  ☆39Updated 2 years ago