Share
## https://sploitus.com/exploit?id=FCFB3634-92E6-5B34-8974-1EFF5051F541
This repository is an offensive tool for testing web application firewalls (WAFs). It contains a collection of test cases and scripts to evaluate the effectiveness of WAFs against various types of attacks.

The tool includes test cases for common web application vulnerabilities such as:

Command Execution (e.g., PHP's `system()` function)
File Include (e.g., PHP's `include()` function)
File Upload (e.g., uploading malicious files)
Redirect (e.g., redirecting to malicious URLs)

The test cases are written in Perl and use various libraries such as LWP::UserAgent and HTTP::Request to simulate HTTP requests. The scripts are designed to test the WAF's ability to detect and block malicious traffic.

Some notable dependencies and tooling used in this repository include:

LWP::UserAgent
HTTP::Request
HTTP::Cookies
URI
URI::Split
URI::Escape
Getopt::Long
Term::ANSIColor

The execution context for these scripts is typically a web server or a WAF, and the scripts are designed to be run against a target web application or WAF.

Preconditions for running these scripts include:

The target web application or WAF must be configured to allow HTTP requests from