.m. ,_
' ;M; ,;m `
;M;. , , ;SMM;
;;Mm; ,; ____ ;, ;SMM;
;;;MM; ; (.MMMMMM.) ; ,SSMM;;
,;;;mMp' l ';mmmm;/ j SSSMM;;
.;;;;;MM; .\,.mmSSSm,,/, ,SSSMM;;;
;;;;;;mMM; .;MMmSSSSSSSmMm; ;MSSMM;;;;
;;;;;;mMSM; ,_ ;MMmS;;;;;;mmmM; -,;MMMMMMm;;;;
;;;;;;;MMSMM; \"*;M;( ( '') );m;*"/ ;MMMMMM;;;;;,
.;;;;;;mMMSMM; \(@;! _ _ !;@)/ ;MMMMMMMM;;;;;,
;;;;;;;MMSSSM; ;,;.*o*> <*o*.;m; ;MMMMMMMMM;;;;;;,
.;;;;;;;MMSSSMM; ;Mm; ;M;,MMMMMMMMMMm;;;;;;.
;;;;;;;mmMSSSMMMM, ;Mm;, '- ,;M;MMMMMMMSMMMMm;;;;;;;
;;;;;;;MMMSSSMMMMMMMm;Mm;;, ___ ,;SmM;MMMMMMSSMMMM;;;;;;;;
;;'";;;MMMSSSSMMMMMM;MMmS;;, " ,;SmMM;MMMMMMSSMMMM;;;;;;;;.
! ;;;MMMSSSSSMMMMM;MMMmSS;;._.;;SSmMM;MMMMMMSSMMMM;;;;;;;;;
;;;;*MSSSSSSMMMP;Mm*"'q;' `;p*"*M;MMMMMSSSSMMM;;;;;;;;;
';;; ;SS*SSM*M;M;' `-. ;;MMMMSSSSSMM;;;;;;;;;,
;;;. ;P `q; qMM. ';MMMMSSSSSMp' ';;;;;;;
;;;; ', ; .mm! \. `. / ;MMM' `qSS' ';;;;;;
';;; ' mmS'; ; , `. ;'M' `S ';;;;;
`;;. mS;;`; ; ; ;M,! ' luk ';;;;
';; .mS;;, ; '. o ; oMM; ;;;;
';; MMmS;; `, ;._.' -_.'MM; ;;;
`;; MMmS;;; ; ; ; MM; ;;;
`'. 'MMmS;; `;) ', .' ,M;' ;;;
\ '' ''; ; ; ; ;' ;;
; ; `, ; ; ; ;;
|. ; ; (. ; ; _.-. ;;
.-----..__ / ; ; ;' ;\ _.-" .- `. ;;
;' ___ `*; `; '; ; ; ;' .-' : ;
; """*-. `. ; ; ; ; ' ,' / |
', `-_ (.--',`--'..' .' ',
`-_ `*-._'.\\\;||\\) ,'
`"*-._ "*`-ll_ll'l ,'
,==;*-._ "-. .'
_-' "*-=`*;-._ ;'
." ;' ;"*-. `
; ____ ;//' "- `,
`+ .-/ ".\\;
`*" / "'
— A K U M A – S C A N —
This is WAF Scanner
(Under Development)
›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹››‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹››‹›‹›‹
— WAF bypass techniques —
When you think that the target might have some waf, I'm sure you also think about how to
perform a bypass, and that's why I recommend...
• https://pentestit.medium.com/bypassing-waf-4cfa1aad16bf
›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹››‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹››‹›‹›‹
— Simple Code Compilation —
$ go get github.com/blackcrw/akumascan
$ cd $HOME/$your path golang$/src/github.com/blackcrw/akumascan
$ go install .
$ mv $HOME/$your path golang$/bin/akumascan /usr/share/bin/akuma
$ akuma -h
›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹››‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹›‹››‹›‹›‹
blackcrw @ 2021
Akuma Scan comes with the purpose of scanning/detecting WAF (Web Application Firewall) on a certain website. Made to be easy, accurate and agile.
Overview
You might also like...
Package for controlling the Windows firewall (aka Windows Filtering Platform, WFP)
wf What This is a package for controlling the Windows Filtering Platform (WFP), also known as the Windows firewall. See its docs: https://godoc.org/in
48 Dec 6, 2022
CrowdSec - an open-source massively multiplayer firewall able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global IP reputation database to protect the user network.
📚 Documentation 💠 Configuration Hub 💬 Discourse (Forum) 💬 Gitter (Live chat) 💃 This is a community driven project, we need your feedback. TL;DR
5.9k Jan 5, 2023
A Declarative Cloud Firewall Reverse Proxy Solution with Companion Mobile App
A declarative Cloud firewall reverse proxy solution with inbuilt DDoS protection and alerting mechanism to protect your servers and keeping an eye on those malicious requests
14 Aug 10, 2022
A FreeSWITCH specific scanning and exploitation toolkit for CVE-2021-37624 and CVE-2021-41157.
PewSWITCH A FreeSWITCH specific scanning and exploitation toolkit for CVE-2021-37624 and CVE-2021-41157. Related blog: https://0xinfection.github.io/p
24 Nov 2, 2022
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Axiom is a dynamic infrastructure framework to efficiently work with multi-cloud environments, build and deploy repeatable infrastructure focussed on
3.1k Dec 30, 2022
EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more.
EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptograp
519 Dec 10, 2022
Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.
Fast and customisable vulnerability scanner based on simple YAML based DSL. How • Install • For Security Engineers • For Developers • Documentation •
11.1k Dec 30, 2022
🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
Finder Of XSS, and Dal(달) is the Korean pronunciation of moon. What is DalFox 🌘 🦊 DalFox is a fast, powerful parameter analysis and XSS scanner, bas
2.2k Jan 5, 2023
Naabu - a port scanning tool written in Go that allows you to enumerate valid ports for hosts in a fast and reliable manner
Naabu is a port scanning tool written in Go that allows you to enumerate valid ports for hosts in a fast and reliable manner. It is a really simple tool that does fast SYN/CONNECT scans on the host/list of hosts and lists all ports that return a reply.
0 Jan 2, 2022
Coraza WAF is a golang modsecurity compatible web application firewall library
Coraza Web Application Firewall, this project is a Golang port of ModSecurity with the goal to become the first enterprise-grade Open Source Web Application Firewall, flexible and powerful enough to serve as the baseline for many projects.
849 Jan 9, 2023
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
Introduction Microsoft Application Inspector is a software source code characterization tool that helps identify coding features of first or third par
4k Dec 28, 2022
WIP. Converts Azure Container Scan Action output to SARIF, for an easier integration with GitHub Code Scanning
container-scan-to-sarif container-scan-to-sarif converts Azure Container Scan Action output to Static Analysis Results Interchange Format (SARIF), for
2 Jan 25, 2022
Open Source Web Application Firewall
DEPRECATED This repository started as a good idea but I didn't have enough time or desire to work on it. So, it's left here for historical / education
187 Nov 24, 2022
In 'n Out - See what goes in and comes out of PEs/DLLs
In 'n Out Parse and return PE information ino -v comsvcs.dll { "Name": "<string>", "Path": "<string>", "Type": "<string file|directory>", "Im
28 Dec 16, 2022
Coraza Server is the most ambitious implementation of Coraza WAF
Coraza Server is the most ambitious implementation of Coraza WAF, it's designed to integrate with systems written in different languages, like C, using multiple protocols like SPOA, REST and GRPC.
11 Dec 29, 2022
Coraza WAF Gin-gonic middleware
This is a test middleware for Ginonic powered by Coraza Web Application Firewall. You may check the WAF documentation at coraza.io Looking for contrib
17 Nov 9, 2022
Govuln - How to patch a vulnerability indirectly lifted into a Go Lang application in a manner which satsfies Twistlock scanning
govuln Desire to learn how to patch a vulnerability indirectly lifted into a Go
0 Feb 2, 2022
Gryffin is a large scale web security scanning platform.
Gryffin (beta) Gryffin is a large scale web security scanning platform. It is not yet another scanner. It was written to solve two specific problems w
2.1k Dec 27, 2022
zero-trust remote firewall instrumentation
ShieldWall embraces the zero-trust principle and instruments your server firewall to block inbound connections from every IP on any port, by default.
186 Jan 1, 2023