bypass-wafs

Bypassing WAF by abusing SSL/TLS Ciphers

WAF Cookie Fetcher is a Burp Suite extension written in Python, which uses a headless browser to obtain the values of WAF-injected cookies which are calculated in the browser by client-side JavaScript code and adds them to Burp's cookie jar. Requires PhantomJS.

Custom DIOS for SQL injection

Based on eval function PHP one-line backdoor