π₯ Web application firewalls (WAF) bypass
β57Nov 1, 2023Updated 2 years ago
Alternatives and similar repositories for WAF-Bypass
Users that are interested in WAF-Bypass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Chameleon Wordlistsβ15Sep 13, 2022Updated 3 years ago
- An ongoing & curated collection of awesome web vulnerability - Server-side request forgery software practices and remediation, librariesβ¦β24Feb 22, 2022Updated 4 years ago
- Automated bug bounty reconnaissance and scanning agentβ45Jun 20, 2026Updated last week
- Describe how to use ffuf different options with examplesβ14Jun 13, 2022Updated 4 years ago
- Grep subdomains from web pages.β42Feb 10, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean β’ AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A tool which allows HackerOne researchers to download their reports into a local, indexed, and searchable repositoryβ19Sep 29, 2022Updated 3 years ago
- β31Jun 5, 2023Updated 3 years ago
- PoC for CVE-2024-42327 / ZBX-25623β18Dec 3, 2024Updated last year
- Host Header Vulnerability Scanner Automated Toolβ29Apr 18, 2025Updated last year
- Reversing Citrix Gateway for XSSβ17Jul 3, 2023Updated 2 years ago
- AI-powered prompt optimization hook for Claude Code. Transforms simple prompts into comprehensive, structured instructions using Claude Oβ¦β41Jun 18, 2026Updated last week
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.β20Feb 2, 2024Updated 2 years ago
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticalβ¦β30Dec 19, 2023Updated 2 years ago
- β15Oct 7, 2016Updated 9 years ago
- Simple, predictable pricing with DigitalOcean hosting β’ AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Repository of various scripts related to Mobile PT. Copyrights and Licensing terms belong to respective owners.β12Nov 4, 2019Updated 6 years ago
- β25May 14, 2022Updated 4 years ago
- CVE-2022-3910β12Mar 14, 2023Updated 3 years ago
- Fetch data (open ports, CVEs, CPEs, ...) from shodan internetDB APIβ90Jan 9, 2023Updated 3 years ago
- β13Jun 10, 2024Updated 2 years ago
- This tool is just after the first refactoring pushed. Original is from Will Vandevanter (BuffaloWill). Only rearrange the code which willβ¦β34Jun 10, 2016Updated 10 years ago
- A tampered payload generator to Fuzz Web Application Firewallsβ34Nov 4, 2019Updated 6 years ago
- β14Dec 12, 2022Updated 3 years ago
- Spring Cloud Function SPEL RCE demoβ11Apr 2, 2022Updated 4 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI β’ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- RATs library 2003 to presentβ17Oct 14, 2023Updated 2 years ago
- Use these VDP in Bug Hunting, These VDP are checked and verified by Bug Huntersβ21Aug 9, 2022Updated 3 years ago
- PWNable pyjailβ13Jan 13, 2025Updated last year
- the POC of package.json RCEβ27Jun 24, 2025Updated last year
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTIβ27Jan 6, 2021Updated 5 years ago
- β14Jul 14, 2020Updated 5 years ago
- A Collection of Wordlists for Penetration Testingβ39Mar 13, 2026Updated 3 months ago
- CVE-2022-22963 Spring-Cloud-Function-SpEL_RCE_exploitβ15Mar 30, 2022Updated 4 years ago
- A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessageβ¦β129Sep 12, 2025Updated 9 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI β’ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Easier way to use advanced search syntax on common search engines like Google, Yandex, DuckDuckGo and more.β30Dec 1, 2025Updated 7 months ago
- Tweezer tool for tweezing tool to collect juicy information from filesβ16Jan 10, 2025Updated last year
- π explores techniques to exploit and manipulate buffer overflow vulnerabilities in a program.β23Jun 18, 2023Updated 3 years ago
- [Tool] Forge PHP FastCGI protocol to RCE with strict disable_functionsβ66Jun 7, 2019Updated 7 years ago
- Laravel PHP framework black-box vulnerability scannerβ41Sep 3, 2024Updated last year
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applicationsβ33Nov 4, 2022Updated 3 years ago
- β21Mar 4, 2025Updated last year