扫描网站WAF类型

作者: Jackey_song | 来源:发表于2020-05-03 23:16 被阅读0次

WAFwaf是一个web应用的保护装置,入侵检测系统IDS,入侵阻止系统IPS.nmap

nmap -p 80 --script http-waf-detect.nse www.baidu.com

Nmap scan report for www.baidu.com (61.135.169.125) Host is up (0.0042s latency).

Other addresses for www.baidu.com (not scanned):61.135.169.121

PORT STATE SERVICE

80/tcp open http | http-waf-detect: IDS/IPS/WAF detected: |_www.baidu.com:80/?p4yl04d3=<script>alert(document.cookie)</script>

更加准确的检查可使用--script=http-waf-fingerprint

Wafw00f

这款工具可以识别很多厂家的web防火墙

wafw00f -l

InfoGuard Airlock

Anquanbao

Barracuda Application Firewall

Better WP Security

BinarySec

BlockDoS

ChinaCache-CDN

Cisco ACE XML Gateway

CloudFlare

Comodo WAF

DenyALL WAF

Applicure dotDefender

Edgecast / Verizon Digital media

F5 BIG-IP APM

F5 BIG-IP ASM

F5 BIG-IP LTM

F5 FirePass

F5 Trafficshield

FortiWeb

Art of Defence HyperGuard

IBM Web Application Security

IBM DataPower

Imperva SecureSphere

Incapsula WAF

Microsoft ISA Server

Mission Control Application Shield

Trustwave ModSecurity

ModSecurity (OWASP CRS)

Naxsi

NetContinuum

Citrix NetScaler

AdNovum nevisProxy

NSFocus

PowerCDN

Profense

Radware AppWall

Safedog

eEye Digital Security SecureIIS

Sucuri WAF

Teros WAF

Microsoft URLScan

USP Secure Entry Server

Wallarm

Aqtronix WebKnight

Juniper WebApp Secure

West263CDN

360WangZhanBao

网友评论

本文标题：扫描网站WAF类型

本文链接：https://www.haomeiwen.com/subject/hldsghtx.html

延伸阅读

深度阅读

您也可以注册成为美文阅读网的作者，发表您的原创作品、分享您的心情！

扫描网站WAF类型

WAFwaf是一个web应用的保护装置,入侵检测系统IDS,入侵阻止系统IPS.nmap

相关文章

网友评论

延伸阅读

深度阅读

栏目导航

热点阅读