Framework for Testing WAFs (FTW!)
☆137May 14, 2024Updated last year
Alternatives and similar repositories for ftw
Users that are interested in ftw are comparing it to the libraries listed below
Sorting:
- Chef Cookbook which provisions apache+mod_security+owasp-crs☆37Jun 20, 2018Updated 7 years ago
- Framework for Testing WAFs (FTW!)☆266May 22, 2023Updated 2 years ago
- WAFBench (wb) is a tool to measure the performance of WAF(Web Application Firewall) . It's based on latest code of ab (ApacheBench), and …☆114Dec 10, 2025Updated 2 months ago
- WAF Testing Tool☆21May 16, 2014Updated 11 years ago
- A parser for the SecRules Langue☆22Feb 9, 2026Updated 3 weeks ago
- The official ModSecurity Docker images☆132Nov 26, 2022Updated 3 years ago
- Very simple and primitive Python script that sends ModSecurity JSON Audit Logs to Elasticsearch☆17Oct 9, 2018Updated 7 years ago
- Vagrant-based configurations intended for ModSecurity performance testing☆28Dec 8, 2023Updated 2 years ago
- An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses☆1,763Jul 31, 2025Updated 7 months ago
- Python Bindings for ModSecurity v3☆90Nov 11, 2023Updated 2 years ago
- A Python library and command-line utility that filters comments from a source file☆10Sep 8, 2025Updated 5 months ago
- Scanning alive hosts of the given CIDR range in parallel.☆10May 8, 2025Updated 9 months ago
- OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)☆2,488Jun 16, 2020Updated 5 years ago
- The ModSecurity Pcap Connector☆27Jan 13, 2016Updated 10 years ago
- Accompanying material needed for the workshop☆11Jun 14, 2023Updated 2 years ago
- Framework for creating fuzzers and negative tests for TLS 1.3 implementations☆13Mar 21, 2024Updated last year
- Set of useful scrpts☆10Jan 4, 2015Updated 11 years ago
- Development repository for the ossec cookbook☆44Feb 20, 2026Updated last week
- CoreDNS plugin for replacing CNAME records on zone apex☆19May 5, 2024Updated last year
- Nessus Vulnerability Scanner in a Docker container☆10Sep 25, 2018Updated 7 years ago
- Go library to allow native inline hooking in windows at runtime☆14Feb 7, 2024Updated 2 years ago
- No more certifi! System trust store at hand. In Pure Python.☆23Feb 7, 2026Updated 3 weeks ago
- Set of CLI tools to transform ModSecurity logs into a meaningful information, given a context.☆52May 5, 2023Updated 2 years ago
- Subdomain Scan (knockpy) in Python3☆13Oct 4, 2020Updated 5 years ago
- A vulnerable web application to explain and illustrate deserialization of untrusted data with Pickle.☆13Sep 23, 2017Updated 8 years ago
- Script to check ModSecurity rules agains some WAF☆12Oct 15, 2018Updated 7 years ago
- Simple script to test WAFs☆14Feb 10, 2017Updated 9 years ago
- Python bindings for libModSecurity (aka ModSecurity v3)☆28Sep 18, 2018Updated 7 years ago
- ☆17May 2, 2024Updated last year
- This includes all the templates of nuclei collected from different sources☆18Dec 30, 2022Updated 3 years ago
- Node.js binding for libModSecurity (aka ModSecurity v3)☆14Oct 28, 2017Updated 8 years ago
- DLT-Security-Framework☆17Updated this week
- A fast port scanner written in go with a focus on reliability and simplicity.☆21Oct 21, 2024Updated last year
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Jun 9, 2021Updated 4 years ago
- This is a python-based standalone exploit for CVE-2006-6184. This exploit triggers a stack-based buffer overflows in Allied Telesyn TFTP …☆11Nov 3, 2020Updated 5 years ago
- a Ruby implementation of Java's ObjectInputStream and ObjectOutputStream.☆16May 28, 2022Updated 3 years ago
- Set of test cases that can be used to test custom implementations of the SecRules language (ModSecurity rules format).☆17Feb 25, 2025Updated last year
- Official ModSecurity Docker + Core Rule Set (CRS) images☆423Updated this week
- Tools for auditing WAFS☆464Nov 24, 2020Updated 5 years ago