wafw00f

Script to identify and fingerprint Web Application Firewalls (WAF). Tester will need to encode attacks to bypass the WAF.

Installation

cd /usr/bin
git clone https://github.com/EnableSecurity/wafw00f.git

Usage

Detect if a website is behind a WAF

URL="http://www.domain.com"
wafw00f $URL