Alternatives and similar repositories for Bypassing-Web-Application-Firewalls

Users that are interested in Bypassing-Web-Application-Firewalls are comparing it to the libraries listed below

• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆259Updated 8 months ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆425Updated 5 years ago
• s1kr10s / Apache-Struts-v4
  ☆208Updated 4 years ago
• 0xR0 / shellver
  Reverse Shell Cheat Sheet TooL
  ☆300Updated 5 years ago
• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆240Updated 6 years ago
• wafpassproject / wafpass
  Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.
  ☆223Updated 2 years ago
• mazen160 / struts-pwn_CVE-2018-11776
  An exploit for Apache Struts CVE-2018-11776
  ☆303Updated 7 years ago
• strozfriedberg / xxe-recursive-download
  ☆231Updated 10 years ago
• pavanw3b / sh00t
  Security Testing is not as simple as right click > Scan. It's messy, a tough game. What if you had missed to test just that one thing and…
  ☆276Updated last year
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆297Updated 2 years ago
• NetSPI / JavaSerialKiller
  Burp extension to perform Java Deserialization Attacks
  ☆216Updated last year
• pathetiq / BurpSmartBuster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆378Updated 5 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆108Updated 3 years ago
• belane / linux-soft-exploit-suggester
  Search Exploitable Software on Linux
  ☆234Updated 2 years ago
• appsecco / vulnerable-apps
  ☆218Updated 3 years ago
• incredibleindishell / sqlite-lab
  This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…
  ☆160Updated 4 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆206Updated last year
• IFGHou / wapiti
  A web-application vulnerability scanner
  ☆118Updated 5 years ago
• Coalfire-Research / java-deserialization-exploits
  A collection of curated Java Deserialization Exploits
  ☆592Updated 4 years ago
• nccgroup / CrossSiteContentHijacking
  Content hijacking proof-of-concept using Flash, PDF and Silverlight
  ☆384Updated 6 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆336Updated 4 years ago
• cyberheartmi9 / CVE-2017-12617
  Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
  ☆394Updated 8 years ago
• orangetw / Tiny-URL-Fuzzer
  A tiny and cute URL fuzzer
  ☆402Updated 3 years ago
• mazen160 / struts-pwn_CVE-2017-9805
  An exploit for Apache Struts CVE-2017-9805
  ☆249Updated 8 years ago
• c0rv4x / project-black
  Pentest/BugBounty progress control with scanning modules
  ☆282Updated 5 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆128Updated 8 years ago
• reider-roque / linpostexp
  Linux post exploitation enumeration and exploit checking tools
  ☆182Updated 5 years ago
• gottburgm / Exploits
  Containing Self Made Perl Reproducers / PoC Codes
  ☆198Updated 5 years ago
• devsecboy / DomainRecon
  Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…
  ☆159Updated last year
• 0ang3el / EasyCSRF
  ☆162Updated 8 years ago