kh4sh3i / WAF-Bypass
π₯ Web application firewalls (WAF) bypass
β28Updated last year
Related projects β
Alternatives and complementary repositories for WAF-Bypass
- A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etcβ54Updated 2 months ago
- β55Updated 7 months ago
- β70Updated 4 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS APIβ58Updated last month
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]β53Updated last year
- Here Are Some Bug Bounty Resource From Twitterβ84Updated 5 months ago
- A tool that automates the search for IDOR vulnerabilities in web apps and APIsβ50Updated 3 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.β68Updated 10 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's namβ¦β89Updated 7 months ago
- A simple plugin to export JS files from one or multiple targetsβ39Updated last year
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.β27Updated 3 months ago
- Web Crawler for Identifying Entry Pointsβ11Updated 7 months ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fiβ¦β35Updated this week
- Parse FFUF results in GUI with option to sort based by response code , size , keywordβ86Updated 2 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attemptsβ56Updated last month
- A collection of solutions for every PortSwigger Academy Lab (in progress)β88Updated 2 years ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)β74Updated 5 months ago
- β47Updated 5 months ago
- A collection of Bug Bounty Tips collected from GitHub to all bug bounty huntersβ26Updated 11 months ago
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilitiesβ31Updated last year
- β51Updated this week
- Describe how to use ffuf different options with examplesβ80Updated last year
- β27Updated 5 months ago
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suiteβ75Updated last year
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identifβ¦β57Updated last week
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty huntersβ27Updated 11 months ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.β23Updated last year
- Nodesub is a command-line tool for finding subdomains in bug bounty programsβ136Updated 3 months ago
- FireHawk: The Elite Firebase Security Testing Utilityβ18Updated 5 months ago
- KakHunt is a python GUI Tool private tool which earns me 100s of bugs every month. It spawns URLS and filters Sensitive Info.β50Updated last year