WAFW00F

The Web Application Firewall Fingerprinting Tool. Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions. If that is not successful, it sends a number of (potentially malicious) HTTP requests and uses simple logic to deduce which WAF it is. If that is also not successful, it analyses the responses previously returned and uses another simple algorithm to guess if a WAF or security solution is actively responding to our attacks. For further details, check out the source code on our main repository.

Features

Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions
Web Application Firewall Fingerprinting Tool
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website
It sends a number of (potentially malicious) HTTP requests and uses simple logic to deduce which WAF it is
It analyses the responses previously returned and uses another simple algorithm to guess if a WAF or security solution is actively responding to our attacks

Project Samples

Project Activity

See All Activity >

License

BSD License

Follow WAFW00F

WAFW00F Web Site

User Reviews

Be the first to post a review of WAFW00F!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

Python

Related Categories

Python Web Application Firewalls (WAF)

Registered

2023-08-02

Similar Business Software

Alibaba Cloud WAF

Web Application Firewall (WAF) protects your website servers against intrusions. Our service detects and blocks malicious traffic directed to your websites and applications. WAF secures your core business data and prevents server malfunctions caused by malicious activities and attacks. Alibaba...

See Software
MONITORAPP AIWAF

Web Application Firewall(WAF) AIWAF. Most security breaches happen on the web, to defend against web attacks, a dedicated web firewall system is required. AIWAF strongly defends various web attacks. Web security is no longer optional. It's essential. The web is vulnerable. Because the HTTP/HTTPS...

See Software
Qualys WAF

Qualys Web Application Firewall (WAF) is a virtual appliance-based service that reduces the operational cost and complexity of application security. Leveraging a unified platform, it continuously detects attacks using inhouse inspection logics and rulesets, and virtually patches web application...

See Software
Atomic ModSecurity Rules

Atomic ModSecurity Rules is a comprehensive WAF rule set with hundreds of ModSecurity WAF rules to protect applications against web attacks and is fully backed by expert support. WAF Rules to Strengthen ModSecurity Against: - SQL injection - Cross-site scripting - Cross-site request...

See Software
Fortinet FortiWeb Web Application Firewall

Unprotected web applications and APIs are the easiest point of entry for hackers and vulnerable to a number of attack types. FortiWeb's AI-enhanced and multi-layered approach protects your web apps from the OWASP Top 10 and more. FortiWeb ML customizes the protection of each application,...

See Software
Fastly Next-Gen WAF

The Fastly Next-Gen WAF provides advanced protection for your applications, APIs, and microservices, wherever they live, from a single unified solution. Reporting and alerting feedback loops provide Layer 7 visibility across your entire app and API footprint. Integrations with your DevOps and...

See Software

Report inappropriate content

WAFW00F

WAFW00F allows one to identify and fingerprint Web App Firewall

Get an email when there's a new version of WAFW00F

Features

Project Samples

Project Activity

Categories

License

Follow WAFW00F

User Reviews

Additional Project Details

Operating Systems

Programming Language

Related Categories

Registered