mmarting / unwaf
Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unwaf will check SPF records.
☆81Updated 6 months ago
Alternatives and similar repositories for unwaf:
Users that are interested in unwaf are comparing it to the libraries listed below
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆66Updated 3 weeks ago
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆37Updated 3 months ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆27Updated 6 months ago
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆48Updated 3 weeks ago
- Gather results of dorks across a number of search engines☆97Updated 2 months ago
- ☆34Updated 2 months ago
- Fast subdomains enumeration tool for penetration testers and bug bounty hunters☆22Updated last month
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆70Updated last month
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆30Updated last year
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆93Updated 5 months ago
- Dive into a handpicked selection of tools, guides, and tips tailored for beginners in Bug Bounty and Penetration Testing. 🐛🛡️☆30Updated 6 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆36Updated 7 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆57Updated 2 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 3 months ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆39Updated 3 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆58Updated 4 months ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆67Updated 2 months ago
- Bypass Reset Password Code Lead to Account Takeover☆22Updated 5 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆102Updated last month
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆33Updated 3 months ago
- shef - extract/scrape IPs from shodan without any API key☆43Updated last month
- Private Nuclei Templates☆95Updated 3 weeks ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆113Updated 2 months ago
- Automated Subdomain Enumeration and Scanning Tool☆111Updated last year
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆32Updated last year
- A Powerful Recon Engine☆58Updated 2 months ago