Wafw00F: The Web Application Firewall Fingerprinting Tool
Posted by iNoticiero
on sábado, 6 de junio de 2020
0
How does wafw00f work?
To do its magic, WAFW00F does the following steps:
- Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions.
- If that is not successful, wafw00f sends a number of (potentially malicious) HTTP requests and uses simple logic to deduce which WAF it is.
- If that is also not successful, wafw00f analyses the responses previously returned and uses another simple algorithm to guess if a WAF or security solution is actively responding to wafw00f's attacks.
For further details, check out the source code on EnableSecurity's main repository.
What does it detect? WAFW00F can detect a number of firewalls, a list of which is as below:
wafw00f's installation
If you're using Debian-based distro, enter this commands to install wafw00f:
sudo apt update && sudo apt install wafw00f
But if you're using another Linux distro, enter these commands to install wafw00f:
How to use wafw00f?
The basic usage is to pass an URL as an argument. Example:
Final Words to you
Questions? Pull up an issue on GitHub Issue Tracker or contact to EnableSecurity.
Pull requests, ideas and issues are highly welcome. If you wish to see how WAFW00F is being developed, check out the development board.
Some useful links:
Presently being developed and maintained by:
- Sandro Gauci (@SandroGauci)
- Pinaki Mondal (@0xInfection)
Related articles
- Hacker Computer
- Pentest Devices
- Hacking Software
- Pentest Os
- Hacking The Art Of Exploitation
- Pentest+ Vs Oscp
- Pentest Basics
- Pentest Questions
- Pentest Report Generator
- Hacking Page
- Pentest Android App
- Hacking Online Games
- Pentest Dns
- Pentest Tools
- Hacking To The Gate
- Hacking Language
- Pentestmonkey Cheat Sheet
- Hacking The Art Of Exploitation
Tagged as:
About the Author
Write admin description here..
Get Updates
Subscribe to our e-mail newsletter to receive updates.
Share This Post
Related posts
0 comentarios:
Publicar un comentario