Alternatives and similar repositories for NGWAF

Users that are interested in NGWAF are comparing it to the libraries listed below

• Rnalter / ThunderCloud
  Cloud Exploit Framework
  ☆114Updated 3 years ago
• bassammaged / awsEnum
  Enumerate AWS cloud resources based on provided credential
  ☆51Updated 3 years ago
• password123456 / cve-collector
  Simple Latest CVE Collector Written in Python
  ☆59Updated last year
• saw-your-packet / EC2StepShell
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆67Updated last year
• h4wkst3r / Blackhat-USA-2022-Materials
  Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks
  ☆64Updated 3 years ago
• chaitin / mimicry
  Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.
  ☆57Updated 2 years ago
• Antonlovesdnb / DockerDetectionNotes
  Some of my rough notes for Docker threat detection
  ☆48Updated 2 years ago
• anrbn / GATOR
  GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments
  ☆89Updated last year
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 4 years ago
• OsmanKandemir / web-wordlist-generator
  WEB-Wordlist-Generator creates related wordlists after scanning your web applications.
  ☆52Updated last year
• PortSwigger / nuclei-burp-integration
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆30Updated 2 years ago
• BishopFox / bigip-scanner
  Determine the running software version of a remote F5 BIG-IP management interface.
  ☆69Updated last year
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆40Updated 3 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆43Updated 3 years ago
• Zigrin-Security / CakeFuzzer
  Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based …
  ☆104Updated 3 months ago
• 0xyassine / poc-seeker
  automated tool designed to streamline the search and identification of Proofs of Concept (POCs)
  ☆19Updated last year
• RUB-NDS / REST-Attacker
  REST-Attacker is designed as a proof-of-concept for the feasibility of testing generic real-world REST implementations. Its goal is to pr…
  ☆80Updated 2 years ago
• AlgoSecure / Pollenisator
  Collaborative pentest tool with highly customizable tools
  ☆75Updated 3 years ago
• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆23Updated 2 years ago
• A3h1nt / Dnsrr
  DNSrr is a tool written in bash, used to enumerate all the juicy stuff from DNS.
  ☆121Updated 3 years ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆45Updated 2 years ago
• mobb-dev / bugsy
  ☆60Updated last week
• telekom-security / cve-2023-3519-citrix-scanner
  Citrix Scanner for CVE-2023-3519
  ☆52Updated 2 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 3 years ago
• trickest / github-logs
  Extracting OSINT Insights from 15TB of GitHub Event Logs
  ☆68Updated 2 years ago
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆112Updated 2 years ago
• dwisiswant0 / cve-2023-50164-poc
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆57Updated last year
• alt3kx / CVE-2022-22965
  Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)
  ☆102Updated 3 years ago
• vulncheck-oss / cve-2023-36845-scanner
  A go-exploit to scan for Juniper firewalls vulnerable to CVE-2023-36845
  ☆62Updated 9 months ago
• nccgroup / jwt-reauth
  ☆106Updated 2 years ago