This is a pre-release for testing purposes, bleeding edge etc. Please provide feedback by filing issues and pull requests.
What's new?
- wafw00f can now be installed using setuptools and pip as a system tool
- you may now include or override headers by passing the
--headersfileor-Hoption - socks and http proxy support thanks to Louis-Philippe Huberdeau
- now detecting the following 36 WAFs (!!) thanks to many contributions from akun, Matt Foster, Brendan Coles and Denis Kolegov:
- Profense
- NetContinuum
- Anquanbao
- ChinaCache-CDN
- Incapsula WAF
- PowerCDN
- CloudFlare
- NSFocus
- Safedog
- West263CDN
- 360WangZhanBao
- Mission Control Application Shield
- USP Secure Entry Server
- Cisco ACE XML Gateway
- Barracuda Application Firewall
- Art of Defence HyperGuard
- BinarySec
- Teros WAF
- F5 BIG-IP LTM
- F5 BIG-IP APM
- F5 BIG-IP ASM
- F5 FirePass
- F5 Trafficshield
- InfoGuard Airlock
- Citrix NetScaler
- Trustwave ModSecurity
- IBM Web Application Security
- IBM DataPower
- DenyALL WAF
- Applicure dotDefender
- Juniper WebApp Secure
- Microsoft URLScan
- Aqtronix WebKnight
- eEye Digital Security SecureIIS
- Imperva SecureSphere
- Microsoft ISA Server
- Code cleanups, refactoring, optimizations and so on are included in this release