Identywaf - Blind Waf Identification Tool
identYwaf is an identification tool that tin recognize spider web protection type (i.e. WAF) based on blind inference. Blind inference is beingness done yesteryear inspecting responses provoked yesteryear a railroad train of predefined offensive (non-destructive) payloads, where those are used entirely to trigger the spider web protection organization inwards betwixt (e.g.
http://?aeD0oowi=1 AND 2>1 ). Currently it supports to a greater extent than than lx dissimilar protection products (e.g. aeSecure, Airlock, CleanTalk, CrawlProtect, Imunify360, MalCare, ModSecurity, Palo Alto, SiteGuard, UrlScan, Wallarm, WatchGuard, Wordfence, etc.), spell the knowledge-base is constantly growing.Also, equally role of this project, screenshots of feature responses for dissimilar spider web protection systems are beingness gathered (manually) for the time to come reference.
Screenshots
Installation
You tin download the latest zipball yesteryear clicking here.
Preferably, yous tin download identYwaf yesteryear cloning the Git repository:
git clone --depth 1 https://github.com/stamparm/identYwaf.gitidentYwaf plant out of the box amongst Python version 2.6.x too 2.7.x on whatever platform.
Usage
$ python identYwaf.py __ __ ____ ___ ___ ____ ______ | T T __ __ ____ _____ 50 j| \ / _]| \ | T| | || T__T T / T| __| | T | \ / [_ | _ Yl_j l_j| || | | |Y o || l_ | | | D YY _]| | | | | |___ || | | || || _| j 50 | || [_ | | | | | | ! \ / | | || ] |____jl_____jl_____jl__j__j l__j l____/ \_/\_/ l__j__jl__j (1.0.X) Usage: python identYwaf.py [options] Options: --version Show program's version lay out too boot the bucket -h, --help Show this assist message too boot the bucket --delay=DELAY Delay (sec) betwixt tests (default: 0) --timeout=TIMEOUT Response timeout (sec) (default: 10) --proxy=PROXY HTTP proxy address (e.g. "http://127.0.0.1:8080") 