Alternatives and similar repositories for what-the-waf

Users that are interested in what-the-waf are comparing it to the libraries listed below

• vah13 / SAP_vulnerabilities
  DoS PoC's for SAP products
  ☆51Updated 8 years ago
• khr0x40sh / metasploit-modules
  ☆35Updated 9 years ago
• agienka / blindy
  Simple script to automate brutforcing blind sql injection vulnerabilities
  ☆50Updated 8 years ago
• floyd-fuh / burp-HttpFuzzer
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Updated 9 years ago
• oways / SA-CORE-2018-004
  SA-CORE-2018-004 POC #drupalgeddon3
  ☆41Updated 7 years ago
• jpiechowka / jenkins-cve-2016-0792
  Exploit for Jenkins serialization vulnerability - CVE-2016-0792
  ☆49Updated 8 years ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆51Updated 9 years ago
• Hood3dRob1n / CVE-2016-3714
  ImaegMagick Code Execution (CVE-2016-3714)
  ☆69Updated 9 years ago
• darkr4y / pentest-script
  scripts used in my pentest work.
  ☆44Updated 10 years ago
• Z-0ne / ScanS2-045-Nmap
  Struts2 S2-045-Nmap NSE script
  ☆51Updated 8 years ago
• t0kx / exploit-CVE-2015-1427
  Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container
  ☆32Updated 7 years ago
• yehia-mamdouh / XSSYA-V-2.0
  ☆83Updated 9 years ago
• Stahlz / JQShell
  A weaponized version of CVE-2018-9206
  ☆62Updated 7 years ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 8 years ago
• DanMcInerney / nmap-parser
  Parses Nmap XML files
  ☆25Updated 10 years ago
• hatRiot / rpcshell
  Axis2 RPC Shell
  ☆15Updated 10 years ago
• silentsignal / burp-collab-gw
  Simple socket-based gateway to the Burp Collaborator
  ☆34Updated 9 years ago
• AceRockson / WAFFLE
  Web Application Firewall For Limited Exploitation
  ☆17Updated 8 years ago
• breenmachine / various
  ☆20Updated 2 years ago
• incredibleindishell / LDAP-credentials-collector-backdoor-generator
  This script generate backdoor code which log username password of an user who have passed HTTP basic auth using LDAP credentials.
  ☆59Updated 8 years ago
• zynga / hiccup
  [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …
  ☆42Updated 7 years ago
• nopernik / msfvenom-bc-generator
  Metasploit msfvenom Bash Completions Generator
  ☆43Updated 9 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 13 years ago
• svincode / BlueTeam
  A bunch of scripts used for network defense during competitions.
  ☆15Updated 10 years ago
• SECFORCE / sftp-exploit
  OpenSSH <=6.6 SFTP misconfiguration universal exploit
  ☆27Updated 7 years ago
• DiabloHorn / DiabloHorn
  Projects and POCs
  ☆61Updated 11 years ago
• roo7break / serialator
  Python script to exploit CVE-2015-4852.
  ☆31Updated 9 years ago
• TheRook / CSRF-Request-Builder
  ☆77Updated 10 years ago
• allyshka / exploits
  ☆82Updated 4 years ago
• getcode2git / exserial
  Java Untrusted Deserialization Exploits Tools
  ☆67Updated 10 years ago