waf-bypass
There are 22 repositories under waf-bypass topic.
0xInfection/Awesome-WAF
🔥 Web-application firewalls (WAFs) from security standpoint.
devploit/nomore403
Tool to bypass 403/40X response codes.
0xacb/recollapse
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
blacklanternsecurity/TREVORproxy
A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them billions of unique source addresses!
devploit/XORpass
Encoder to bypass WAF filters using XOR operations.
gagaltotal/Bypass-WAF-SQLMAP
Bypass WAF SQL Injection SQLMAP
Xib3rR4dAr/filter-var-sqli
Bypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )
kh4sh3i/WAF-Bypass
🔥 Web application firewalls (WAF) bypass
Zeyad-Azima/WAF_Bypass_Guide
Guide For WAF Bypass Techniques
r3kind1e/Log4Shell-obfuscated-payloads-generator
Generate primary obfuscated or secondary obfuscated CVE-2021-44228 or CVE-2021-45046 payloads to evade WAF detection.
papocch10/encode-me
Payload encoder for bypass WAF
fijimunkii/shodan-waf-bypass
Firewall bypass script based on shodan search results
hupe1980/scan4log4shell
Scanner to send specially crafted requests and catch callbacks of systems that are impacted by log4j log4shell vulnerability and to detect vulnerable log4j versions on your local file-system
e-m3din4/domain-a-tricks
A Domain-Recon Automated Tool.
e-m3din4/the-nurse
A WAF Bypass tool assisting in the use of SQLMap Tampers list according to specific WAF vendors.
miniact/mangyaWAF
A Machine Learning Based Web Application firewall
1337r0j4n/WOW-WSO
WOW WSO Web Shell ( 1337r0j4n's edition )
idrisawad/Vulnerability_Scanner
This script is a powerful and efficient tool for identifying vulnerabilities in web applications. Its multi-threading, fingerprinting, exploit verification, WAF bypass and logging features make it a valuable addition to any security tester's toolkit.
ImKKingshuk/StealthNewSQL
StealthNewSQL : The Ultimate NewSQL Injection Tool - Your All-in-One Solution for NewSQL Database Security! 🛡️ Uncover, exploit, and secure NewSQL database vulnerabilities with this feature-packed command-line tool. Whether you're a penetration tester, security researcher, or developer, StealthNewSQL equips you with the ultimate power! 💥
Pyenb/CloudCheck
Checks if a given website, or list of websites, use the cloudflare service or not.
itssherwin/IPFinder
Finds server IP behind the WAFs or Cloud services
n1ghtf4l1/jubilant-robot-hacker
Collecting flags by evading, poisoning, stealing, and fooling AI/ML.