WAFW00F允许用户识别和指纹保护网站的Web应用程序防火墙(WAF)产品。
The Web Application Firewall Fingerprinting Tool.
— From Enable Security
-blue.svg){kind=icon}
To do its magic, WAFW00F does the following:
For further details, check out the source code on our main repository.
WAFW00F can detect a number of firewalls, a list of which is as below:
$ wafw00f -l? ,. ( . ) . "__ ?? (" ) )' ,' ) . (` '`(___()'`; ??? .; ) ' (( (" ) ;(, (( ( ;) " )")/,___ /` _"., ,._'_.,)_(..,( . )_ _' )_') (. _..( ' )\\ \\ |____|____|____|____|____|____|____|____|____|~ WAFW00F : v2.3.1 ~~ Sniffing Web Application Firewalls since 2014 ~[+] Can test for these WAFs:WAF Name Manufacturer-------- ------------360WangZhanBao 360 TechnologiesACE XML Gateway CiscoASP.NET Generic MicrosoftASPA Firewall ASPA Engineering Co.AWS Elastic Load Balancer AmazonAireeCDN AireeAirlock Phion/ErgonAlert Logic Alert LogicAliYunDun Alibaba Cloud ComputingAnYu AnYu TechnologiesAnquanbao AnquanbaoAppWall RadwareApproach ApproachArmor Defense ArmorArvanCloud ArvanCloudAstra Czar SecuritiesAzion Edge Firewall AzionAzure Application Gateway MicrosoftAzure Front Door MicrosoftBIG-IP AP Manager F5 NetworksBIG-IP AppSec Manager F5 NetworksBIG-IP Local Traffic Manager F5 NetworksBarikode Ethic NinjaBarracuda Barracuda NetworksBekchy Faydata Technologies Inc.Beluga CDN BelugaBinarySec BinarySecBitNinja BitNinjaBlockDoS BlockDoSBluedon Bluedon ISTBulletProof Security Pro AITpro SecurityCacheFly CDN CacheFlyCacheWall VarnishCdnNS Application Gateway CdnNs/WdidcNetChinaCache Load Balancer ChinaCacheChuang Yu Shield YunaqCloud Protector Rohde & Schwarz CyberSecurityCloudbric Penta SecurityCloudflare Cloudflare Inc.Cloudfloor Cloudfloor DNSCloudfront AmazonComodo cWatch Comodo CyberSecurityCrawlProtect Jean-Denis BrunDDoS-GUARD DDOS-GUARD CORP.DOSarrest DOSarrest Internet SecurityDataPower IBMDenyALL Rohde & Schwarz CyberSecurityDistil Distil NetworksDotDefender Applicure TechnologiesDynamicWeb Injection Check DynamicWebEdgecast Verizon Digital MediaEisoo Cloud Firewall EisooEnvoy EnvoyProxyExpression Engine EllisLabFastly Fastly CDNFirePass F5 NetworksFortiGate FortinetFortiGuard FortinetFortiWeb FortinetGoDaddy Website Protection GoDaddyGoogle Cloud App Armor Google CloudGreywizard Grey WizardHuawei Cloud Firewall HuaweiHyperGuard Art of DefenseISA Server MicrosoftImunify360 CloudLinuxIncapsula Imperva Inc.IndusGuard IndusfaceInstart DX Instart LogicJanusec Application Gateway JanusecJiasule JiasuleKS-WAF KnownSecKemp LoadMaster Progress SoftwareKeyCDN KeyCDNKona SiteDefender AkamaiLimeLight CDN LimeLightLiteSpeed LiteSpeed TechnologiesMalcare InactivMaxCDN MaxCDNMission Control Shield Mission ControlModSecurity SpiderLabsNAXSI NBS SystemsNSFocus NSFocus Global Inc.Nemesida PentestItNetContinuum Barracuda NetworksNetScaler AppFirewall Citrix SystemsNevisProxy AdNovumNewdefend NewDefendNexusGuard Firewall NexusGuardNinjaFirewall NinTechNetNullDDoS Protection NullDDoSOnMessage Shield BlackBaudOpen-Resty Lua Nginx FLOSSOracle Cloud OraclePT Application Firewall Positive TechnologiesPalo Alto Next Gen Firewall Palo Alto NetworksPentaWAF Global Network ServicesPerimeterX PerimeterXPowerCDN PowerCDNProfense ArmorLogicPuhui PuhuiQcloud Tencent CloudQiniu Qiniu CDNQrator QratorRSFirewall RSJoomla!RayWAF WebRay SolutionsReblaze ReblazeRequestValidationMode MicrosoftSEnginx NeusoftSabre Firewall SabreSafe3 Web Firewall Safe3Safedog SafeDogSafeline Chaitin Tech.SecKing SecKingSecuPress WP Security SecuPressSecure Entry United Security ProvidersSecureSphere Imperva Inc.ServerDefender VP Port80 SoftwareShadow Daemon ZecureShield Security One Dollar PluginSiteGround SiteGroundSiteGuard Sakura Inc.Sitelock TrueShieldSonicWall DellSquarespace SquarespaceSquidProxy IDS SquidProxyStackPath StackPathSucuri CloudProxy Sucuri Inc.Tencent Cloud Firewall Tencent TechnologiesTeros Citrix SystemsTrafficshield F5 NetworksTransIP Web Firewall TransIPUEWaf UCloudURLMaster SecurityCheck iFinity/DotNetNukeURLScan MicrosoftUTM Web Protection SophosVariti VaritiVarnish OWASPViettel CloudrityVirusDie VirusDie LLCWP Cerber Security Cerber TechWTS-WAF WTSWallarm Wallarm Inc.WatchGuard WatchGuard TechnologiesWebARX WebARX Security SolutionsWebKnight AQTRONIXWebLand WebLandWebSEAL IBMWebTotem WebTotemWest263 CDN West263CDNWordfence DefiantXLabs Security WAF XLabsXuanwudun XuanwudunYXLink YxLink TechnologiesYundun YundunYunjiasu Baidu Cloud ComputingYunsuo YunsuoZScaler AccentureZenedge ZenedgeaeSecure aeSecureeEye SecureIIS BeyondTrustpkSecurity IDS pkSecwpmudev WAF IncsubShieldon Firewall Shieldon.io
First, install the tools as described here.
For help you can make use of the --help option. The basic usage is to pass
an URL as an argument. Example:
$ wafw00f https://example.org______/ \( Woof! )\ ____/ ),, ) (_.-. - _______ ( |__|()``; |==|_______) .)|__|/ (' /|\ ( |__|( / ) / | \ . |__|\(_)_)) / | \ |__|~ WAFW00F : v2.3.1 ~The Web Application Firewall Fingerprinting Toolkit[*] Checking https://example.org[+] The site https://example.org is behind Edgecast (Verizon Digital Media) WAF.[~] Number of requests: 2
Run:
python3 -m pip install wafw00f
or
pip3 install wafw00f
It is also possible to run it within a docker container. Clone this repository first and build the Docker image using:
docker build . -t wafw00f
Now you can run:
docker run --rm -it wafw00f https://example.com
NOTE: Be careful to not break your system packages while installing wafw00f. Use venv as and when required.
Clone the repository:
git clone https://github.com/enablesecurity/wafw00f.git
Then:
cd wafw00f/python3 -m pip install .
Or, by using pipx directly:
pipx install git+https://github.com/EnableSecurity/wafw00f.git
Questions? Pull up an issue on GitHub Issue Tracker or contact me.
Pull requests, ideas and issues are highly welcome.
Some useful links:
Presently being developed and maintained by: