wallarm / libdetection
Signature-free approach library to detect injection and commanding attacks
☆85Updated 2 years ago
Related projects: ⓘ
- WAF Research☆178Updated 2 years ago
- Tagging and annotation framework for scan data☆101Updated 5 years ago
- The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch☆111Updated 3 years ago
- use ambiguous HTTP to circumvent security systems☆94Updated last year
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆135Updated 4 years ago
- The ModSecurity Pcap Connector☆26Updated 8 years ago
- Passive DNS collection using Zeek☆181Updated last year
- Proof-of-concept program that is able to to hijack/hook/proxy Python module(s) thanks to $PYTHONPATH variable☆150Updated 7 years ago
- Web Input Vector Extractor Teaser☆128Updated 2 years ago
- HTTP/2 fuzzer written in Golang☆176Updated 8 years ago
- multitenant ModSecurity compatible WAF engine from Edgio☆89Updated 7 months ago
- passivedns-client provides a library and a query tool for querying several passive DNS providers☆197Updated 2 years ago
- Framework for Testing WAFs (FTW!)☆264Updated last year
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆60Updated 7 years ago
- Python bindings for libModSecurity (aka ModSecurity v3)☆23Updated 6 years ago
- Advanced web server fingerprinting for Nmap☆121Updated 6 years ago
- Internet data acquisition☆147Updated 3 years ago
- OpenVAS connector for versions 6, 7, 8 and 9☆80Updated 2 years ago
- Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)☆94Updated last year
- Chef Cookbook which provisions apache+mod_security+owasp-crs☆35Updated 6 years ago
- WAFBench (wb) is a tool to measure the performance of WAF(Web Application Firewall) . It's based on latest code of ab (ApacheBench), and …☆103Updated 2 years ago
- ssh key exchange layer for scapy☆13Updated 9 years ago
- ☆45Updated 8 years ago
- WhichCDN allows to detect if a given website is protected by a Content Delivery Network☆148Updated 7 years ago
- Rule sets for Sagan☆102Updated 3 years ago
- Burp Suite plugin which implement PyJFuzz for fuzzing web application.☆56Updated 7 years ago
- Struts Apache 2 based honeypot as well as a detection module for Apache 2 servers☆71Updated 7 years ago
- ☆83Updated 7 years ago
- Script to test if a server is vulnerable to the JetLeak vulnerability☆144Updated 8 years ago
- A regex based source code scanner.☆128Updated 7 years ago