matrixleons / evilwafLinks
evilwaf is a penetration testing tool designed to detect and bypass common Web Application Firewalls (WAFs).
☆140Updated last week
Alternatives and similar repositories for evilwaf
Users that are interested in evilwaf are comparing it to the libraries listed below
Sorting:
- Living Off The Land (LOTL) persistent Reverse shell☆102Updated last year
- A blind SQL injection brute forcer☆111Updated 6 months ago
- Postman OSINT tool to extract creds, token, username, email & more from Postman Public Workspaces☆162Updated 6 months ago
- A Python http(s) server designed to assist in red teaming activities such as receiving intercepted data via POST requests and serving con…☆132Updated last year
- smugglo - an easy to use script for wrapping files into self-dropping HTML payloads to bypass content filters☆125Updated 7 months ago
- Find S3 AWS/GCP/Azure buckets while surfing. S3DNS acts as DNS server, follows CNAMEs and matches any bucket pattern☆109Updated last month
- Infiltrax is a post-exploitation reconnaissance tool for penetration testers and red teams, designed to capture screenshots, retrieve cli…☆79Updated last year
- A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit☆111Updated last year
- A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.☆200Updated last year
- Polymorphic Command & Control☆98Updated 7 months ago
- OSINT tool that finds domains, subdomains, directories, endpoints and files for a given seed URL.☆178Updated last year
- A real fake social engineering app☆127Updated 3 months ago
- A visual methodology tracking platform tailored for offensive security assessments☆223Updated last month
- ShadowPhish is an advanced APT awareness toolkit designed to simulate real-world phishing, malware delivery, deepfakes, smishing/vishing,…☆211Updated 6 months ago
- A Slack bot phishing framework for Red Teaming exercises☆165Updated last year
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆130Updated 9 months ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆154Updated 8 months ago
- MailSecOps is an email and mail gateway security testing tool. With this script, you can perform mail spoofing, relay tests and security …☆56Updated 11 months ago
- The purpose of this tool is: 1. to transliterate and generate possible usernames out of a full names list that may include names written …☆135Updated last year
- Next Generation DorX. Built by Dorks, for Dorks. 🤓☆112Updated 2 years ago
- reNgine-ng is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process vi…☆130Updated last week
- ☆303Updated last year
- 🎒 An up-to-date collection of precompiled binaries and hacking scripts.☆43Updated last month
- LazyOwn RedTeam/APT Framework is the first RedTeam Framework with an AI-powered C&C, featuring rootkits to conceal campaigns, undetectabl…☆115Updated last week
- This Python script checks for the CVE-2024-6387 vulnerability in OpenSSH servers. It supports multiple IP addresses, URLs, CIDR ranges, a…☆98Updated last year
- SprayShark is a modular G-Suite password sprayer with threading!☆52Updated 5 months ago
- RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…☆220Updated 7 months ago
- PowerShell Obfuscator☆213Updated 2 months ago
- Discover and monitor internet assets using favicon hashes across search engines.☆217Updated 3 weeks ago
- Information stealer logs parser☆81Updated last year