matrixleons / evilwafLinks
evilwaf is a penetration testing tool designed to detect and bypass common Web Application Firewalls (WAFs).
β302Updated 2 months ago
Alternatives and similar repositories for evilwaf
Users that are interested in evilwaf are comparing it to the libraries listed below
Sorting:
- This script automates SQL injection testing using SQLMap with AI-powered decision making.β393Updated 2 months ago
- π€ LLM-powered agent for automated Google Dorking in bug hunting & pentesting.β228Updated last month
- A tool that helps you find the real IP addresses hiding behind Cloudflare by checking subdomains.β290Updated 2 months ago
- Prompts for performing tests on your Kali Linux using Gemini-cli, ChatGPT, DeepSeek, CursorAI, Claude Code, and Copilot.β208Updated last month
- Passive leak enumeration tool.β260Updated 2 weeks ago
- EVA is an AI-assisted penetration testing agent that enhances offensive security workflows by providing structured attack guidance, conteβ¦β284Updated 2 weeks ago
- β169Updated last month
- A fast WordPress plugin enumeration toolβ760Updated last week
- β341Updated this week
- A comprehensive penetration testing operations dashboard for managing projects, tasks, findings, clients, and assets. Built with Next.js,β¦β296Updated last month
- A New Approach to Directory Bruteforce with WaybackLister v1.0β225Updated 5 months ago
- Injectra is a Python-based tool for injecting custom payloads into various file types using their magic numbers. It supports file types lβ¦β145Updated last year
- Burp Suite extension that adds built-in MCP tooling, AI-assisted analysis, privacy controls, passive and active scanning and moreβ481Updated this week
- Analyze Android native `.so` filesβ119Updated 6 months ago
- Automation tool to testing and confirm the xss vulnerability.β306Updated 6 months ago
- React Shell & Next.js RSC Exploit Tool (CVE-2025-55182)β183Updated last month
- API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).β231Updated 2 weeks ago
- Find S3 AWS/GCP/Azure buckets while surfing. S3DNS acts as DNS server, follows CNAMEs and matches any bucket patternβ121Updated 5 months ago
- BrowserBruter is a powerful web form fuzzing automation tool designed for web security professionals and penetration testers. This Pythonβ¦β333Updated 4 months ago
- β196Updated last week
- WebRecon is an advanced Open Source Intelligence (OSINT) web reconnaissance tool designed for cybersecurity professionals, penetration teβ¦β236Updated 2 weeks ago
- Find XSS payloads that actually work by filtering them based on real-world constraints instead of blind payload spraying.β133Updated 3 weeks ago
- Generate an undetectable PE ( .exe ), which bypasses windows defender / AVβ129Updated 8 months ago
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulatβ¦β163Updated 8 months ago
- β261Updated 4 months ago
- AI-powered subdomain enumeration tool with local LLM analysis via Ollama - 100% private, zero API costsβ386Updated 2 months ago
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Thβ¦β262Updated 7 months ago
- β231Updated 3 months ago
- Physical penetration testing is a critical aspect of security assessment that involves simulating real-world attacks to evaluate the effeβ¦β86Updated 2 weeks ago
- β144Updated 8 months ago