# Firewalls

Attack the castle doors!

# Web Application Firewalls (WAF)

  • Awesome WAF - Known Bypasses - Known WAF bypasses
  • Abuse SSL Bypass - Bypassing WAF by abusing SSL/TLS Ciphers. last-commit
  • FTW - Framework for Testing WAFs (FTW!). last-commit
  • gotestwaf - Test different WAF for detection logic and bypasses. last-commit
  • hakoriginfinder - Tool for discovering the origin host behind a reverse proxy. last-commit
  • IdentYwaf - Blind WAF identification tool. last-commit
  • Lightbulb Framework - Tools for auditing WAFS. last-commit
  • WAF Bench - Tool to measure the performance of WAF. last-commit
  • WAF Bypass - This script will search for DNS A history records and check if the server replies for that domain. last-commit
  • WAF Ninja - Tool which contains two functions to attack Web Application Firewalls. last-commit
  • WAF Tester - WAF Testing Tool. last-commit
  • wafw00f - Allows one to identify and fingerprint WAF products protecting a website. last-commit
  • WhatWaf - Detect and bypass web application firewalls and protection systems last-commit