Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.
☆223Oct 16, 2023Updated 2 years ago
Alternatives and similar repositories for wafpass
Users that are interested in wafpass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆824Dec 6, 2017Updated 8 years ago
- Automatic bypass (brute force) waf☆994Mar 9, 2022Updated 4 years ago
- Tools for auditing WAFS☆465Nov 24, 2020Updated 5 years ago
- WEB SERVICE SECURITY ASSESSMENT TOOL☆390Sep 24, 2021Updated 4 years ago
- An open source XSS vulnerability scanner.☆61Nov 22, 2018Updated 7 years ago
- F-Scrack is a single file bruteforcer supports multi-protocol☆310Sep 5, 2017Updated 8 years ago
- A Ruby framework designed to aid in the penetration testing of WordPress systems.☆1,044Nov 24, 2019Updated 6 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆104Jun 1, 2018Updated 7 years ago
- The Inspector tool is a privilege escalation helper (PoC), easy to deployed on web server, this tool can list process running with root, …☆122Oct 2, 2018Updated 7 years ago
- ☆139Jul 13, 2017Updated 8 years ago
- Simple script to automate brutforcing blind sql injection vulnerabilities☆50Jul 16, 2017Updated 8 years ago
- Feigong,针对各种情况自由变化的mysql注入脚本,In view of the different things freely change the mysql injection script☆107Jan 24, 2017Updated 9 years ago
- 用于扫描git,svn泄露☆78Jul 29, 2015Updated 10 years ago
- An automated script that download potential exploit for linux kernel from exploitdb, and compile them automatically☆497Sep 21, 2021Updated 4 years ago
- acunetix☆62Mar 27, 2020Updated 5 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Oct 12, 2017Updated 8 years ago
- ☆332Jan 8, 2018Updated 8 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Jan 31, 2017Updated 9 years ago
- Analyse SQL injection attempts in web server logs☆82Jan 11, 2017Updated 9 years ago
- WhichCDN allows to detect if a given website is protected by a Content Delivery Network☆151May 5, 2017Updated 8 years ago
- A collection of curated Java Deserialization Exploits☆591May 16, 2021Updated 4 years ago
- WAF Research☆184Jun 22, 2022Updated 3 years ago
- This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…☆160Dec 9, 2021Updated 4 years ago
- Fingerprints servers, finds exploits, scans WebDAV. May or may not also make coffee.☆123Jul 9, 2019Updated 6 years ago
- wiki.wooyun.org的部分快照网页☆80Oct 19, 2016Updated 9 years ago
- ☆614Oct 4, 2024Updated last year
- WAF Exploitation Framework☆13Aug 25, 2023Updated 2 years ago
- ☆64Sep 5, 2017Updated 8 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Sep 19, 2017Updated 8 years ago
- Source Code Intelligence☆30Aug 21, 2017Updated 8 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆628Feb 5, 2019Updated 7 years ago
- Next Generation Firewall Audit and Bypass Tool☆266Apr 24, 2017Updated 8 years ago
- Add headers to all Burp requests to bypass some WAF products☆330Jan 28, 2018Updated 8 years ago
- PoC code for crashing windows active directory☆35Sep 19, 2018Updated 7 years ago
- Python framework for IT security tools☆268Jan 28, 2017Updated 9 years ago
- A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.☆43May 1, 2020Updated 5 years ago
- ☆14May 13, 2018Updated 7 years ago
- 仓库已经废弃,新仓库地址☆47May 26, 2017Updated 8 years ago
- WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr …☆491Oct 3, 2024Updated last year