coreruleset/ftw external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

coreruleset/ftw

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/coreruleset/ftw)

Close

coreruleset / ftwView on GitHubMore

• External links
• Readme badge

Framework for Testing WAFs (FTW!)

☆140Mar 16, 2026Updated last month

Alternatives and similar repositories for ftw

Users that are interested in ftw are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• fastly / waf_testbed

  View on GitHub
  Chef Cookbook which provisions apache+mod_security+owasp-crs
  ☆37Jun 20, 2018Updated 7 years ago
• fastly / ftw

  View on GitHub
  Framework for Testing WAFs (FTW!)
  ☆266May 22, 2023Updated 2 years ago
• Raz0r / waftester

  View on GitHub
  WAF Testing Tool
  ☆21May 16, 2014Updated 11 years ago
• Edgio / waflz

  View on GitHub
  multitenant ModSecurity compatible WAF engine from Edgio
  ☆89Dec 16, 2024Updated last year
• coreruleset / modsecurity-docker

  View on GitHub
  The official ModSecurity Docker images
  ☆132Nov 26, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• theMiddleBlue / modsecurity-to-elasticsearch

  View on GitHub
  Very simple and primitive Python script that sends ModSecurity JSON Audit Logs to Elasticsearch
  ☆17Oct 9, 2018Updated 7 years ago
• alt3kx / wafparan01d3

  View on GitHub
  Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool
  ☆23Nov 22, 2021Updated 4 years ago
• SpiderLabs / owasp-modsecurity-crs

  View on GitHub
  OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
  ☆2,482Jun 16, 2020Updated 5 years ago
• Phat3 / Useful-Scripts

  View on GitHub
  Set of useful scrpts
  ☆10Jan 4, 2015Updated 11 years ago
• jawah / wassima

  View on GitHub
  No more certifi! System trust store at hand. In Pure Python.
  ☆24Apr 7, 2026Updated 3 weeks ago
• DevSlop / pixi-crs

  View on GitHub
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Jun 9, 2021Updated 4 years ago
• migolovanov / wtt

  View on GitHub
  Simple script to test WAFs
  ☆14Feb 10, 2017Updated 9 years ago
• SpiderLabs / ModSecurity-log-utilities

  View on GitHub
  Set of CLI tools to transform ModSecurity logs into a meaningful information, given a context.
  ☆52May 5, 2023Updated 2 years ago
• owasp-modsecurity / secrules-language-tests

  View on GitHub
  Set of test cases that can be used to test custom implementations of the SecRules language (ModSecurity rules format).
  ☆16Feb 25, 2025Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• artem-smotrakov / tlsbunny

  View on GitHub
  Framework for creating fuzzers and negative tests for TLS 1.3 implementations
  ☆13Mar 21, 2024Updated 2 years ago
• wallarm / libdetection

  View on GitHub
  Signature-free approach library to detect injection and commanding attacks
  ☆100Jan 25, 2022Updated 4 years ago
• sukritdua / Pen-Testing

  View on GitHub
  Learnings from OSCP and other random stuff.
  ☆31Feb 28, 2024Updated 2 years ago
• metrodango / pip3line

  View on GitHub
  Swiss Army knife for raw bytes manipulation & interception
  ☆56Apr 8, 2023Updated 3 years ago
• denniskniep / interactsh_deploy

  View on GitHub
  Interactsh deployment to AWS EC2 Instance with Terraform
  ☆12Dec 29, 2021Updated 4 years ago
• lightbulb-framework / lightbulb-framework

  View on GitHub
  Tools for auditing WAFS
  ☆467Nov 24, 2020Updated 5 years ago
• 0x646e78 / c5scan

  View on GitHub
  UNMAINTAINED - Vulnerability scanner and information gatherer for the Concrete5 CMS
  ☆20Sep 17, 2020Updated 5 years ago
• goadesign / gorma-cellar

  View on GitHub
  Same design as goa-cellar, but with the added gorma integration
  ☆13Nov 9, 2016Updated 9 years ago
• KasperFridolin / mysql_forensics

  View on GitHub
  Scripts and Modules for forensical analyses of mysql database systems
  ☆22Sep 19, 2014Updated 11 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mefulton / cve-2017-12615

  View on GitHub
  just a python script for cve-2017-12615
  ☆11Oct 1, 2017Updated 8 years ago
• mikenowak / docker-nessus

  View on GitHub
  Nessus Vulnerability Scanner in a Docker container
  ☆10Sep 25, 2018Updated 7 years ago
• coreruleset / coreruleset

  View on GitHub
  OWASP CRS (Official Repository)
  ☆3,094Updated this week
• docker-archive / web-application-firewall

  View on GitHub
  Sample cross-platform Web Application Firewall, used as a security proxy for existing web apps
  ☆15Oct 16, 2017Updated 8 years ago
• shieldfy / vulnerable-nodejs-project

  View on GitHub
  Demo for vulnerable Nodejs project
  ☆12Jul 6, 2024Updated last year
• 0xInfection / Awesome-WAF

  View on GitHub
  Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥
  ☆7,458Mar 26, 2026Updated last month
• foi-oss / ortbot

  View on GitHub
  Open Red Team Bag of Tricks - Red Teaming and Pentesting cheat sheet and trick book
  ☆96Jan 25, 2017Updated 9 years ago
• khast3x / CloudScraper

  View on GitHub
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆11Oct 29, 2018Updated 7 years ago
• james-s-tayler / grep-sed-awk-magic

  View on GitHub
  Magic tricks using grep, sed and awk
  ☆26Jul 28, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• coreruleset / go-ftw

  View on GitHub
  Web Application Firewall Testing Framework - Go version
  ☆171Updated this week
• tonylturner / WAFlulz

  View on GitHub
  WAF Exploitation Framework
  ☆13Aug 25, 2023Updated 2 years ago
• h43z / dns-rebinding-tool

  View on GitHub
  dns rebind tool with custom scripts
  ☆85Apr 5, 2023Updated 3 years ago
• Ennexa / docker-deb-rpm-s3

  View on GitHub
  Docker image for hosting and updating a private APT/YUM repository on Amazon S3
  ☆11Aug 31, 2021Updated 4 years ago
• plackyhacker / Malicious-KeePass-Plugin

  View on GitHub
  A malicious KeePass plugin to exfiltrate the master key.
  ☆16Oct 25, 2021Updated 4 years ago
• replay / ngx_http_secure_download

  View on GitHub
  module to verify expiring links
  ☆24Feb 15, 2016Updated 10 years ago
• welchbj / bscan

  View on GitHub
  an asynchronous target enumeration tool
  ☆249Dec 8, 2022Updated 3 years ago