PortSwigger / bypass-wafView external linksLinks
Add headers to all Burp requests to bypass some WAF products
☆44Nov 30, 2023Updated 2 years ago
Alternatives and similar repositories for bypass-waf
Users that are interested in bypass-waf are comparing it to the libraries listed below
Sorting:
- A Zeek package to detect CVE-2021-42292, a Microsoft Excel local privilege escalation exploit.☆18Nov 11, 2021Updated 4 years ago
- Script to check Azure Front Door WAF for insecure RemoteAddr variable☆26Jul 11, 2025Updated 7 months ago
- Collection of offensive tools targeting Microsoft Azure☆10Jun 9, 2022Updated 3 years ago
- Mimikatz built as a static library.☆12Feb 9, 2022Updated 4 years ago
- Manage the metasploit framework database☆16Nov 8, 2020Updated 5 years ago
- pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching☆12Jun 4, 2022Updated 3 years ago
- ☆10Jan 30, 2022Updated 4 years ago
- Automagically decode DNS Exfiltration queries to convert Blind RCE into proper RCE via Burp Collaborator☆21Jan 7, 2026Updated last month
- Simple scapy-based tool to hijack and reset existing TCP connections☆23Apr 12, 2013Updated 12 years ago
- Utilities for creating Burp Suite Extensions.☆21Oct 31, 2024Updated last year
- An OSINT tool to search for accounts by username in social networks.☆19Aug 8, 2022Updated 3 years ago
- A regular expression fuzzer.☆45Mar 13, 2018Updated 7 years ago
- AI-powered Windows Event Log analyzer that learns from your feedback. Uses Claude AI with RAG to detect suspicious activity, improve ac…☆34Dec 18, 2025Updated last month
- Pipe different tools with google dork Scanner☆56Jun 25, 2020Updated 5 years ago
- ☆19Nov 18, 2020Updated 5 years ago
- ☆19Oct 5, 2020Updated 5 years ago
- Command-line tool to identify useragents that bypasses proxy restrictions☆11Oct 23, 2025Updated 3 months ago
- golang版的dsinff-webspy☆27Dec 14, 2017Updated 8 years ago
- Atlassian Confluence CVE-2021-26084 one-liner mass checker☆30Sep 7, 2021Updated 4 years ago
- Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.☆331Nov 21, 2020Updated 5 years ago
- Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers☆30Dec 12, 2024Updated last year
- Handy scripts and one-liners to make life easier☆36Mar 6, 2023Updated 2 years ago
- Capturing audio (.wav) from target using a link☆12Feb 21, 2020Updated 5 years ago
- Web Application Security related tools. Includes backdoors, proof of concepts and tricks☆37Oct 21, 2014Updated 11 years ago
- Security information and event management, masters's diploma☆10Aug 3, 2015Updated 10 years ago
- In-depth Attack Surface Mapping and Asset Discovery☆26Aug 24, 2020Updated 5 years ago
- Coalfire GCP RAMP/pak Reference Architecture☆13Feb 5, 2026Updated last week
- Collection of scanner checks missing in Burp☆32Jun 15, 2020Updated 5 years ago
- Default plugins for Jaeles Scanner☆35Nov 5, 2020Updated 5 years ago
- ☆36Mar 19, 2022Updated 3 years ago
- A fingerprint generation helper for nuclei network templates☆80Nov 20, 2022Updated 3 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆122Apr 16, 2019Updated 6 years ago
- List of Github repositories and articles with list of dorks for different search engines☆32May 15, 2022Updated 3 years ago
- TProx is a fast reverse proxy path traversal detector and directory bruteforcer.☆30Sep 16, 2021Updated 4 years ago
- VK bot для сноса бесед☆11Feb 7, 2021Updated 5 years ago
- The largest collection of wordlists in yaml for bug bounty tools☆37Apr 7, 2024Updated last year
- Azure Deployment Templates for Mandiant Managed Huning☆12Jun 1, 2023Updated 2 years ago
- This is a templated to be used for QRL Jacking Sessions (Tested on Chrome,brave & firefox )☆13Feb 26, 2022Updated 3 years ago
- Build a project with Express.js☆11Jan 31, 2021Updated 5 years ago