JeremyNGalloway/WAF-bypass-fuzz-payloads external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

JeremyNGalloway/WAF-bypass-fuzz-payloads

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/JeremyNGalloway/WAF-bypass-fuzz-payloads)

Close

JeremyNGalloway / WAF-bypass-fuzz-payloadsView on GitHubMore

• External links
• Readme badge

shamelessly ripped from https://github.com/khalilbijjou/WAFNinja/

☆19Dec 16, 2016Updated 9 years ago

Alternatives and similar repositories for WAF-bypass-fuzz-payloads

Users that are interested in WAF-bypass-fuzz-payloads are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ticofookfook / Bugbounts-ferramentas-e-tutoriais

  View on GitHub
  ☆11Jan 23, 2025Updated last year
• boku7 / gsCMS-CustomJS-Csrf2Xss2Rce

  View on GitHub
  GetSimple CMS Custom JS Plugin Exploit RCE Chain
  ☆11Mar 8, 2023Updated 3 years ago
• 0xPugal / bugbounty_profile

  View on GitHub
  Automate bug bounty recon using bash alias
  ☆15Aug 6, 2024Updated last year
• boku7 / gsSMTP-Csrf2Xss2RCE

  View on GitHub
  ☆14Mar 8, 2023Updated 3 years ago
• Offensive-Panda / PEB_WALK_AND_API_OBFUSCATION_INJECTION

  View on GitHub
  This exploit use PEB walk technique to resolve API calls dynamically, obfuscate all API calls to perform process injection.
  ☆27Jul 26, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• 0xDEF1NE / subtrace

  View on GitHub
  ☆17Oct 9, 2024Updated last year
• cyal1 / bypass-40x

  View on GitHub
  bypass 401/403
  ☆14Sep 13, 2022Updated 3 years ago
• Th3l0newolf / AdvanceRecon-Dorks

  View on GitHub
  ☆11May 25, 2021Updated 5 years ago
• Rffrench / wayfiles

  View on GitHub
  Wayfiles is a tool designed to search for juicy files and URLs within a folder/file with results of tools like gau, waymore, waybackurls,…
  ☆16Feb 22, 2026Updated 3 months ago
• 0xRahim / Argus

  View on GitHub
  Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection
  ☆14Nov 1, 2024Updated last year
• R-s0n / cloud_enum

  View on GitHub
  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
  ☆17Jul 11, 2025Updated 11 months ago
• diljith369 / CSharp4Pentesters

  View on GitHub
  CSharp4Pentesters
  ☆11Mar 5, 2022Updated 4 years ago
• nfcgate / sniffer

  View on GitHub
  DEPRECATED. See https://github.com/nfcgate/nfcgate.
  ☆17May 12, 2022Updated 4 years ago
• salesforce / lightning-burp

  View on GitHub
  ☆17May 1, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• michael1026 / inscope

  View on GitHub
  ☆18Jul 26, 2021Updated 4 years ago
• ShadowDev01 / Paramx

  View on GitHub
  ☆13Aug 22, 2025Updated 9 months ago
• PortSwigger / psycho-path

  View on GitHub
  psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…
  ☆19Jun 28, 2018Updated 7 years ago
• PatrikFehrenbach / burpsuite-js-extractor

  View on GitHub
  A simple plugin to export JS files from one or multiple targets
  ☆46Nov 12, 2023Updated 2 years ago
• BJConway / thm_writeups

  View on GitHub
  Write-ups of Try Hack me challenge machines
  ☆10Mar 29, 2024Updated 2 years ago
• Y000o / Payloads_xss_sql_bypass

  View on GitHub
  ☆184Nov 19, 2023Updated 2 years ago
• Shadowroot97 / CRTO_CS

  View on GitHub
  ☆13Jan 17, 2025Updated last year
• dwisiswant0 / secpat2gf

  View on GitHub
  convert secret patterns to gf compatible.
  ☆38Feb 11, 2023Updated 3 years ago
• Vaidik-pandya / Daily-Notes

  View on GitHub
  A Series of Tweets
  ☆15Jan 30, 2024Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• NagliNagli / Bug-Bounty-Toolz

  View on GitHub
  BBT - Bug Bounty Tools
  ☆18Apr 5, 2024Updated 2 years ago
• kljunowsky / HuntersEye

  View on GitHub
  HuntersEye is designed for Bug Bounty Hunters, and Security Researchers to monitor new subdomains and certificates for specified domains.…
  ☆21Dec 29, 2023Updated 2 years ago
• BehzaDMagzer / p.maker

  View on GitHub
  PassWord List Maker
  ☆17Oct 29, 2018Updated 7 years ago
• hktalent / log4j-scan

  View on GitHub
  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
  ☆28Jul 20, 2022Updated 3 years ago
• vulnerable-cc / Resources

  View on GitHub
  list of resource about low level dev
  ☆18Nov 15, 2025Updated 7 months ago
• HernanRodriguez1 / ScanMySQLiErrorBased-Nuclei

  View on GitHub
  ☆20Aug 3, 2022Updated 3 years ago
• AcadiTi / Hardware-Hacking

  View on GitHub
  Material do curso de Hardware Hacking da ACADITI
  ☆23Jan 13, 2020Updated 6 years ago
• containerscrew / rootisnaked

  View on GitHub
  Simple root privilege escalation detection using eBPF 🐝
  ☆35Feb 10, 2026Updated 4 months ago
• m3dsec / h1getPrograms

  View on GitHub
  Simple script to get your private/public or both programs using the Hackerone graphql.
  ☆22Jan 24, 2020Updated 6 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• ethicalhackingplayground / Gxss

  View on GitHub
  Tool for checking reflecting Parameters in a URL.
  ☆10Aug 31, 2020Updated 5 years ago
• migolovanov / libinjection-fuzzer

  View on GitHub
  This tool was written as PoC to article https://waf.ninja/libinjection-fuzz-to-bypass/
  ☆40Oct 13, 2017Updated 8 years ago
• JaewoongMoon / fuzzler

  View on GitHub
  burp extender for fuzzing
  ☆10Aug 10, 2018Updated 7 years ago
• hueristiq / xs3scann3r

  View on GitHub
  A CLI utility to scan S3 buckets permissions
  ☆14May 14, 2023Updated 3 years ago
• hakluke / theHarvester

  View on GitHub
  E-mails, subdomains and names Harvester - OSINT
  ☆11Jan 17, 2020Updated 6 years ago
• EdOverflow / swiss-bugbounty-programs

  View on GitHub
  List of bug bounty programs of companies/organisations in Switzerland
  ☆14Oct 28, 2021Updated 4 years ago
• Tcnopdtor / Tcnophish

  View on GitHub
  ☆10Aug 20, 2020Updated 5 years ago