Add headers to all Burp requests to bypass some WAF products
☆44Nov 30, 2023Updated 2 years ago
Alternatives and similar repositories for bypass-waf
Users that are interested in bypass-waf are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Zeek package to detect CVE-2021-42292, a Microsoft Excel local privilege escalation exploit.☆18Nov 11, 2021Updated 4 years ago
- Maintaining account persistence via XSS and Oauth☆78Jan 7, 2019Updated 7 years ago
- Script to check Azure Front Door WAF for insecure RemoteAddr variable☆30Jul 11, 2025Updated 11 months ago
- pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching☆12Jun 4, 2022Updated 4 years ago
- Utilities for creating Burp Suite Extensions.☆22Oct 31, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Collection of offensive tools targeting Microsoft Azure☆11Jun 9, 2022Updated 4 years ago
- Mimikatz built as a static library.☆12Feb 9, 2022Updated 4 years ago
- Pipe different tools with google dork Scanner☆56Jun 25, 2020Updated 6 years ago
- Automagically decode DNS Exfiltration queries to convert Blind RCE into proper RCE via Burp Collaborator☆21Jan 7, 2026Updated 5 months ago
- Manage the metasploit framework database☆16Nov 8, 2020Updated 5 years ago
- ☆27Dec 20, 2022Updated 3 years ago
- ☆10Jan 30, 2022Updated 4 years ago
- Check for know iframeBuster XSS☆12Sep 25, 2024Updated last year
- ☆20Oct 5, 2020Updated 5 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆19Nov 18, 2020Updated 5 years ago
- Collection of scanner checks missing in Burp☆32Jun 15, 2020Updated 6 years ago
- Command-line tool to identify useragents that bypasses proxy restrictions☆13Oct 23, 2025Updated 8 months ago
- Terminate the eventlog thread to disable the windows eventlog☆21Apr 1, 2020Updated 6 years ago
- Malware detonation platform Polygon integration☆10Aug 1, 2023Updated 2 years ago
- Default plugins for Jaeles Scanner☆36Nov 5, 2020Updated 5 years ago
- A simple reverse and as well a webshell that recognices the OS (Windows/Linux).☆18Nov 11, 2020Updated 5 years ago
- ☆17Nov 2, 2022Updated 3 years ago
- Handy scripts and one-liners to make life easier☆39Mar 6, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnera…☆35Jun 13, 2026Updated 3 weeks ago
- SSH over websocket through Nginx reverse proxy☆23Feb 12, 2023Updated 3 years ago
- ☆12Aug 17, 2021Updated 4 years ago
- A Burp extension to show the Collaborator client in a tab☆37Dec 23, 2022Updated 3 years ago
- ***MERGED: SEE README:*** The XCCDF to InSpec parser scans and extracts the controls defined in the DISA XCCDF STIG XML documents and con…☆13Nov 23, 2018Updated 7 years ago
- A Proof-Of-Concept for the recently found CVE-2021-44228 vulnerability.☆11Nov 26, 2022Updated 3 years ago
- Versatile tool for managing wordlists☆11Jul 15, 2021Updated 4 years ago
- Web Application Security related tools. Includes backdoors, proof of concepts and tricks☆37Oct 21, 2014Updated 11 years ago
- JSON Beautifier for Burp written in Java☆41Mar 27, 2020Updated 6 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- check redos, reverse text from regular expression.☆12Mar 1, 2020Updated 6 years ago
- A python library for search data on shodan, google, duckduckgo☆14Sep 30, 2022Updated 3 years ago
- Burp extension to passively scan for applications revealing software version numbers☆33May 30, 2024Updated 2 years ago
- ☆16May 3, 2021Updated 5 years ago
- A Security Tool for Enumerating WebSockets☆377Jan 10, 2022Updated 4 years ago
- Bruteforce DPAPI encrypted MasterKey File from Windows Credentials Manager☆23Jan 4, 2025Updated last year
- WS-Attacker is a modular framework for web services Security penetration testing.☆12May 16, 2019Updated 7 years ago