Hacking, Hacking Tools, Top News, Vulnerability

WAFNinja – Web Application Firewall Attack Tool – WAF Bypass



WAFNinja is a Python-based Web Application Firewall Attack Tool designed to help penetration testers execute WAF bypass by automating the steps necessary to bypass input validation.

WAFNinja - Web Application Firewall Attack Tool - WAF Bypass

The tool was created with the objective to be easily extendible, simple to use and usable in a team environment.

What can WAFNinja Web Application Firewall Attack Tool Do?

Many payloads and fuzzing strings, which are stored in a local database file come shipped with the tool.

WAFNinja supports:

  • HTTP connections
  • GET requests
  • POST requests
  • Using Cookies (for pages behind auth)
  • Intercepting proxy

Using WAFNinja for WAF Bypass

Examples of Web Application Firewall Attacks

Fuzz:

Bypass:

Insert-fuzz:

You can also check out:

WAFW00F – Fingerprint & Identify Web Application Firewall (WAF) Products

You can download WAFNinja here:

WAFNinja-master.zip

Or read more here.



Source : DarkNet



Previous ArticleNext Article

Founder and Editor-in-Chief of ‘Professional Hackers India’. Technology Evangelist, Security Analyst, Cyber Security Expert, PHP Developer and Part time hacker.