waf-bypass
Cloudmare
Our great sponsors
waf-bypass | Cloudmare | |
---|---|---|
5 | 1 | |
1,098 | 1,233 | |
7.7% | - | |
7.7 | 4.1 | |
5 days ago | 9 months ago | |
Python | Python | |
MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
waf-bypass
- WAF Bypass Tool - check your WAF before an attacker does
- WAF bypass is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does.
-
Nemesida WAF Free – free Nginx WAF with the minimum False Positive and amazing Web visualisation
We can also recommend our waf-bypass tool to check your WAF https://github.com/nemesida-waf/waf-bypass
-
Does Your Waf Have False Positive
Did you check this ruleset with some bypass tools? Like https://github.com/nemesida-waf/waf-bypass or https://github.com/wallarm/gotestwaf ? I assume you have a lot of bypassed attacks (false negative).
Cloudmare
What are some alternatives?
imagemagick-lfi-poc - ImageMagick LFI PoC [CVE-2022-44268]
Nginx-Lua-Anti-DDoS - A Anti-DDoS script to protect Nginx web servers using Lua with a HTML Javascript based authentication puzzle inspired by Cloudflare I am under attack mode an Anti-DDoS authentication page protect yourself from every attack type All Layer 7 Attacks Mitigating Historic Attacks DoS DoS Implications DDoS All Brute Force Attacks Zero day exploits Social Engineering Rainbow Tables Password Cracking Tools Password Lists Dictionary Attacks Time Delay Any Hosting Provider Any CMS or Custom Website Unlimited Attempt Frequency Search Attacks HTTP Basic Authentication HTTP Digest Authentication HTML Form Based Authentication Mask Attacks Rule-Based Search Attacks Combinator Attacks Botnet Attacks Unauthorized IPs IP Whitelisting Bruter THC Hydra John the Ripper Brutus Ophcrack unauthorized logins Injection Broken Authentication and Session Management Sensitive Data Exposure XML External Entities (XXE) Broken Access Control Security Misconfiguration Cross-Site Scripting (XSS) Insecure Deserializati
MHDDoS - Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods
Blood - Layer 7 DDoS Panel with Cloudflare Bypass ( UAM, CAPTCHA, BFM, etc.. ) [GET https://api.github.com/repos/firstapostle/Blood: 403 - Repository access blocked]
HULK - Hulk DDos Attack script created using python libs
MHDDoS - Best DDoS Attack Script Python3, Cyber Attack With 51 Methods [Moved to: https://github.com/MatrixTM/MHDDoS]
adversarial-robustness-toolbox - Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams
exabgp - The BGP swiss army knife of networking
onelinepy - Python Obfuscator to generate One-Liners and FUD Payloads.
PyTCP - PyTCP is a fully functional TCP/IP stack written in Python. It supports TCP stream-based transport with reliable packet delivery based on a sliding window mechanism and basic congestion control. It also supports IPv6/ICMPv6 protocols with SLAAC address configuration. It operates as a user space program attached to the Linux TAP interface.
badblood - SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038)
hosts - 🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.