项目作者: CSecGroup

项目描述 :
Wafid identify and fingerprint Web Application Firewall (WAF) products.
高级语言: Python
项目地址: git://github.com/CSecGroup/wafid.git
创建时间: 2018-02-22T08:11:31Z
项目社区:https://github.com/CSecGroup/wafid

开源协议:GNU General Public License v3.0

下载


wafid

Wafid identify and fingerprint Web Application Firewall (WAF) products.

How does it work?

Wafid sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions.If that is not successful, it sends a number of (potentially malicious) HTTP requests and uses simple logic to deduce which WAF it is If that is also not successful, it analyses the responses previously returned and uses another simple algorithm to guess if a WAF or security solution is actively responding to our attacks

For further details, check out the source code on the main site, github.com/CSecGroup/wafid.

What does it detect?

It detects a number of WAFs.

  1. python wafid.py -l
  2. __ __ _____ ___________.__ .___
  3. / \ / \/ _ \ \_ _____/|__| __| _/
  4. \ \/\/ / /_\ \ | __) | |/ __ |
  5. \ / | \| \ | / /_/ |
  6. \__/\ /\____|__ /\___ / |__\____ |
  7. \/ \/ \/ \/
  8. WAFid - Web Application Firewall identify Tool
  9. By Code Security Group
  10. WAFid can identify these WAFs:
  11. 360
  12. Safedog
  13. NetContinuum
  14. Anquanbao
  15. Baidu Yunjiasu
  16. Knownsec KS-WAF
  17. BIG-IP
  18. Barracuda
  19. BinarySEC
  20. BlockDos
  21. Cisco ACE
  22. CloudFlare
  23. NetScaler
  24. FortiWeb
  25. jiasule
  26. Newdefend
  27. Palo Alto
  28. Safe3WAF
  29. Profense
  30. West263CDN
  31. WebKnight
  32. Wallarm
  33. USP Secure Entry Server
  34. Sucuri WAF
  35. Radware AppWall
  36. PowerCDN
  37. Naxsi
  38. Mission Control Application Shield
  39. IBM WebSphere DataPower
  40. Edgecast
  41. Applicure dotDefender
  42. Comodo WAF
  43. ChinaCache-CDN
  44. NSFocus

Also you can add waf id with finger.xml!

How do I use it?

Usage: python wafid.py -u URL

More Info

More information about the services that I offer at Code Security Group.

Questions?

contact sbha0909@gmail.com">me