Added "enumXFF" tool (#16)

This commit is contained in:
PinkDev1 2022-02-08 12:36:00 -03:00 committed by GitHub
parent 9fe48ee146
commit 8bc21766d2
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -3883,6 +3883,7 @@ User-Agent: Mozilla/4.0 (compatible; MSIE5.01; Windows NT)
- [abuse-ssl-bypass-waf](https://github.com/LandGrey/abuse-ssl-bypass-waf) - A tool which finds out supported SSL/TLS ciphers and helps in evading WAFs.
- [SQLMap Tamper Scripts](https://github.com/sqlmapproject/sqlmap) - Tamper scripts in SQLMap obfuscate payloads which might evade some WAFs.
- [Bypass WAF BurpSuite Plugin](https://portswigger.net/bappstore/ae2611da3bbc4687953a1f4ba6a4e04c) - A plugin for Burp Suite which adds some request headers so that the requests seem from the internal network.
- [enumXFF](https://github.com/infosec-au/enumXFF) - Eumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
## Blogs and Writeups
> Many of the content mentioned above have been taken from some of the following excellent writeups.