wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website. (by EnableSecurity)
Awesome-WAF
π₯ Web-application firewalls (WAFs) from security standpoint. (by 0xInfection)
| wafw00f | Awesome-WAF | |
|---|---|---|
| 5 | 5 | |
| 5,593 | 6,597 | |
| 1.3% | 1.6% | |
| 6.4 | 3.7 | |
| 4 months ago | 6 months ago | |
| Python | Python | |
| BSD 3-clause "New" or "Revised" License | Apache License 2.0 |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
wafw00f
Posts with mentions or reviews of wafw00f.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2024-09-18.
-
6 Essential WebRTC Security Best Practices for 2025
The most notable vendor doing such vulnerability and penetration testing for VoIP and WebRTC is likely Enable Security - be sure to subscribe to their newsletter for more security advice around communication technologies.
-
5 Best Free and Open Source WAF for 2025
Link: wafw00f on GitHub
-
Top Open-Source WAF Projects: Secure Your Website with the Best Tools
Official GitHub: wafw00f Stars: 5.1K
-
wafw00f VS wafme0w - a user suggested alternative
2 projects | 8 Dec 2022
-
Python Scanner, Faster than Nmap.
I am thinking about implementation of https://github.com/EnableSecurity/wafw00f.
Awesome-WAF
Posts with mentions or reviews of Awesome-WAF.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2024-09-18.
-
5 Best Free and Open Source WAF for 2025
Link: Awesome-WAF on GitHub
-
Top Open-Source WAF Projects: Secure Your Website with the Best Tools
Official GitHub: Awesome-WAF Stars: 6.1K
-
xss waf bypass
This: https://github.com/0xInfection/Awesome-WAF
-
Web Application Security related Dissertation ideas
Regardless, I would start with OWASP and their top ten list to see if anything interests you. If you're interested in WAF research, 0xInfection did some wonderful work you can read here.
- Can a WAF prevent XSS attacks?
What are some alternatives?
When comparing wafw00f and Awesome-WAF you can also consider the following projects:
openrasp - π₯Open source RASP solution
awesome-honeypots - an awesome list of honeypot resources
ModSecurity - ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
best-of-ml-python - π A ranked list of awesome machine learning Python libraries. Updated weekly.
RollerScanner - RollerScanner β Fast Port Scanner Written On Python
awesome-scala - A community driven list of useful Scala libraries, frameworks and software.