A lightweight toolkit for testing Web Application Firewall (WAF) effectiveness and identifying security gaps. This repository is available as a template that you can quickly customize for your own WAF testing needs.
☆57Apr 17, 2025Updated 11 months ago
Alternatives and similar repositories for waf-testing
Users that are interested in waf-testing are comparing it to the libraries listed below
Sorting:
- CrlfiX☆21Jan 30, 2025Updated last year
- A collection of curated YARA rules used as part of the Filescan.io service☆22Feb 18, 2026Updated last month
- Generate Azure Network Diagrams, using diagram-as-code (Graphviz)☆12Jan 31, 2026Updated last month
- BPFView: Process and Network Activity Correlation☆34May 17, 2025Updated 10 months ago
- Tool to check the CloudTrail configuration and the services where trails are sent, to detect potential attacks to CloudTrail logging.☆13May 25, 2024Updated last year
- Cloudflare WAF rules to protect websites☆10Mar 26, 2022Updated 3 years ago
- ☆14Nov 8, 2024Updated last year
- Rule exclusion plugin for WordPress.☆28Feb 23, 2026Updated 3 weeks ago
- Detect userland hooks placed by AV/EDR☆28Sep 4, 2023Updated 2 years ago
- Bad Zone - Its a script, for block Global Bad ASN addresses in 3-step installation bash script☆14Feb 20, 2023Updated 3 years ago
- ☆15May 23, 2024Updated last year
- MCP server implementation for NIST Cybersecurity Framework 2.0☆54Dec 6, 2025Updated 3 months ago
- A collection of things I've created or found that I think is useful for Azure Sentinel.☆18Jan 28, 2026Updated last month
- Original PoC for CVE-2023-30367☆16Jan 4, 2024Updated 2 years ago
- All combinations of various characters, to get the desired word☆21Dec 13, 2023Updated 2 years ago
- A scanner for the FortiNet vulnerability CVE-2025-64446☆30Nov 18, 2025Updated 4 months ago
- ☆19May 1, 2025Updated 10 months ago
- ☆13Feb 9, 2024Updated 2 years ago
- JaelesFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications☆22May 1, 2024Updated last year
- top usernames from azure survey 2025☆15Apr 25, 2025Updated 10 months ago
- ☆36Mar 28, 2025Updated 11 months ago
- Scripts usados en mi formación de Offensive Security por medio de la suscripción Learn Unlimited☆16Apr 23, 2022Updated 3 years ago
- Make your swine run like it's Divine☆10Mar 14, 2025Updated last year
- Automatically deploy preconfigured SSL ready GoPhish instances into Azure using Terraform.☆17Apr 30, 2021Updated 4 years ago
- WikiLeaks Vault 7 CIA Hacking Tools☆16Sep 9, 2017Updated 8 years ago
- A C project that generates usernames based on input lists and format you decide yourself☆11Jan 23, 2025Updated last year
- nxdomain subdomain enumeration☆10Jul 17, 2022Updated 3 years ago
- CVE-2024-25641 - RCE Automated Exploit - Cacti 1.2.26☆10Aug 28, 2024Updated last year
- Pentester plugin for Oh-My-Zsh. Boosting efficiency & and saving time with common initial tasks for pentesting☆17Jan 23, 2025Updated last year
- ☆18Mar 15, 2026Updated last week
- A Completely Modular LLM Reverse Engineering, Red Teaming, and Vulnerability Research Framework.☆54Nov 9, 2024Updated last year
- Shell wrapper with keylogger (local log or syslog)☆13Nov 1, 2017Updated 8 years ago
- ☆26Dec 4, 2023Updated 2 years ago
- A tool for leveraging elevated acess over a computer to boot the computer into Windows Safe Mode, alter settings, and then boot back into…☆16Nov 6, 2021Updated 4 years ago
- Código Fonte☆16Jan 28, 2024Updated 2 years ago
- ☆18Jan 8, 2025Updated last year
- On-Premises Open Cyber Threat Intelligence Platform☆11Oct 29, 2024Updated last year
- The source code and documentation repo of Travens' API gateway in Bangkit Capstone Project, built using Go, Gin-gonic, and Mongo-DB☆11May 27, 2022Updated 3 years ago
- a small script to collect information from a management point☆37Jan 19, 2026Updated 2 months ago