HomeLinuxWafw00f-allows one to identify and fingerprint Web Application Firewall

Wafw00f-allows one to identify and fingerprint Web Application Firewall

Hello guy’s in this article we are going to discuss about how to identify web application firewall in simple way using linux and termux.

Screenshot 2020 11 06 06 21 15

What is wafw00f?

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

How dose it works?

To do its magic, WAFW00F does the following:

  • Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions.
  • If that is not successful, it sends a number of (potentially malicious) HTTP requests and uses simple logic to deduce which WAF it is.
  • If that is also not successful, it analyses the responses previously returned and uses another simple algorithm to guess if a WAF or security solution is actively responding to our attacks.

What does it detect?

WAFW00F can detect a number of firewalls, a list of which is as below 

Screenshot 2020 11 06 06 26 57
Screenshot 2020 11 06 06 27 21
Screenshot 2020 11 06 06 27 56
Screenshot 2020 11 06 06 28 17

How to install and use?

Just type thisbelow command to install wafw00f in your termux and linux terminal.

pip install wafw00f

Screenshot 2020 11 06 06 16 56

Once you install wafw00f type this below command to find web application firewall.

wafw00f (victim website)

Screenshot 2020 11 06 06 18 24

RELATED ARTICLES

Leave A Reply

Please enter your comment!
Please enter your name here
Captcha verification failed!
CAPTCHA user score failed. Please contact us!

Most Popular