Egyscan
waf-bypass
Egyscan | waf-bypass | |
---|---|---|
1 | 5 | |
179 | 1,108 | |
- | 6.9% | |
8.2 | 7.7 | |
6 days ago | 3 days ago | |
Python | Python | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Egyscan
waf-bypass
- WAF Bypass Tool - check your WAF before an attacker does
- WAF bypass is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does.
-
Nemesida WAF Free – free Nginx WAF with the minimum False Positive and amazing Web visualisation
We can also recommend our waf-bypass tool to check your WAF https://github.com/nemesida-waf/waf-bypass
-
Does Your Waf Have False Positive
Did you check this ruleset with some bypass tools? Like https://github.com/nemesida-waf/waf-bypass or https://github.com/wallarm/gotestwaf ? I assume you have a lot of bypassed attacks (false negative).
What are some alternatives?
phpvuln - 🕸️ Audit tool to find common vulnerabilities in PHP source code
imagemagick-lfi-poc - ImageMagick LFI PoC [CVE-2022-44268]
Vailyn - A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
MHDDoS - Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods
CVE-2021-40444 - CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit
Cloudmare - Cloudflare, Sucuri, Incapsula real IP tracker.
hackerone-reports - Top disclosed reports from HackerOne
HULK - Hulk DDos Attack script created using python libs
EJS-Exploit - Remote Code Execution EJS Web Applications using express-fileupload
adversarial-robustness-toolbox - Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams
PoC-CVE-2022-30190 - POC CVE-2022-30190 : CVE 0-day MS Offic RCE aka msdt follina
onelinepy - Python Obfuscator to generate One-Liners and FUD Payloads.