Forwarded from CTF Community | Hints
module 1- Introduction to WAFs, WAF types and WAF Bypassing.pdf
481.3 KB
Introduction to WAFs, WAF types and WAF Bypassing #Web
Forwarded from CTF Community | Hints
Automated Detection of Web Application Firewall
https://github.com/EnableSecurity/wafw00f
#web
#Pentest
@ctfplay
https://github.com/EnableSecurity/wafw00f
#web
#Pentest
@ctfplay
GitHub
GitHub - EnableSecurity/wafw00f: WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting…
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website. - EnableSecurity/wafw00f
Forwarded from CTF Community | Hints
Heavy-duty and Advanced Cross Site Scripting Scanner
https://github.com/haroonawanofficial/XSS-Finder
#web #xss #tool
@ctfplay
https://github.com/haroonawanofficial/XSS-Finder
#web #xss #tool
@ctfplay
Hidden parameters discovery suite written in Rust.
Features:
A lot of things to customize: key template, value template, encodings, and even injection points.
Supports 6 main methods: GET, POST, PUT, PATCH, DELETE, HEAD.
Has built in 2 main body types: json, urlencode.
Able to discover parameters with not random value, like admin=true
Compares responses line-by-line.
Adds to every request cachebuster by default.
#Rust #CTF #redteaming #parameters #web
https://github.com/Sh1Yo/x8
Features:
A lot of things to customize: key template, value template, encodings, and even injection points.
Supports 6 main methods: GET, POST, PUT, PATCH, DELETE, HEAD.
Has built in 2 main body types: json, urlencode.
Able to discover parameters with not random value, like admin=true
Compares responses line-by-line.
Adds to every request cachebuster by default.
#Rust #CTF #redteaming #parameters #web
https://github.com/Sh1Yo/x8
GitHub
GitHub - Sh1Yo/x8: Hidden parameters discovery suite
Hidden parameters discovery suite. Contribute to Sh1Yo/x8 development by creating an account on GitHub.
Forwarded from CTF Community | Hints