waf_bypadd
WAF bypasser
A tool designed to bypass WAFs by padding HTTP requests with dummy data to evade detection and analysis.
This Burp Suite extension is designed to bypass Web Application Firewalls (WAFs) by padding HTTP requests with dummy data.
4 stars
1 watching
2 forks
Language: Python
last commit: over 1 year ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 nccgroup/burpsuitehttpsmuggler | A tool to bypass web application firewalls (WAFs) and test their effectiveness | 709 |
 codewatchorg/bypasswaf | An extension that automatically adds headers to Burp requests to bypass certain Web Application Firewall products. | 330 |
 vincentcox/bypass-firewalls-by-dns-history | Automatically identifies potential bypass points around web application firewalls (WAFs) by analyzing DNS history records and HTTP responses. | 1,197 |
 aws-solutions/aws-waf-security-automations | Automates deployment of AWS WAF security rules to protect against common web-based attacks | 857 |
 anof-cyber/pycript | A tool for bypassing client-side encryption in web applications during penetration testing and bug bounty activities | 186 |
 corazawaf/coraza-proxy-wasm | A Web Application Firewall built on top of Coraza and implementing the proxy-wasm ABI | 115 |
 b1ank1108/bypassav | A Python-based tool that generates bypassed anti-virus detection code by performing XOR operations on shellcode | 52 |
 bohops/ultimatewdacbypasslist | A centralized resource for bypassing Windows Device Guard Application Whitelisting (WDAC) policies. | 482 |
 mildsunrise/protobuf-inspector | Tool to analyze and reverse-engineer Protocol Buffers without their definition | 966 |
 globaldatanet/aws-firewall-factory | A tool to simplify the deployment and management of AWS Web Application Firewalls (WAFs) in cloud-based applications. | 235 |
| anof-cyber/paraforge | An extension for Burp Suite to extract parameters and endpoints from requests to create custom wordlists for testing | 140 |
 rhinosecuritylabs/iprotate_burp_extension | Allows IP address rotation on every request to bypass blocking mechanisms | 815 |
 pwntester/serialkillerbypassgadgetcollection | A collection of bypass gadgets to extend and wrap ysoserial payloads | 350 |
 akenofu/url_fuzzer_401_403_bypass | Fuzzes HTTP parser inconsistencies by inserting all ASCII characters at predefined insertion points in URLs | 7 |
 neuralegion/wafalyzer | A utility that analyzes HTTP responses to detect the presence of firewalls in web applications. | 34 |