I have been doing self learning from 2 years...None of the tutorials said about detecting a WAF or wafw00f tool...Thanks a lot for such amazing and detailed content :)
thank you I'm in a ctf competition for fun no time limit and I been having the dumbest luck for 2 days. exploits won't work ect and then i come here I've been watching for videos and they are really helpful thank you
Yes, i agree finding out what WAF your target is using would defenently help the process go smoother because you would know how to craft a payload to bypass and find bugs to exploit them and of course report them.
thank you I'm in a ctf competition for fun no time limit and I been having the dumbest luck for 2 days. exploits won't work ect and then i come here I've been watching for videos and they are really helpful thank you
many thanks again ive learnt so much from You and others like you,your tutorials never ever fail me...go back a year or so ago and i didnt know a fraction of what i know now - thanks to you :-)
Hii like the video and details could you please tell is it possible that server owner can track this sent reauest by tool like who is trying to check firewalls
Hi HackerSploit, thanks for wonderful video. I was running dotdefender WAS on metasploitable machine and when i tried wafw00f , it was not able to detect dotdefender waf...any guess what wrong i could have done ? thanks
Hi, great tutorial! Do you have any idea why wafw00f does not detect ModSecurity OWASP rule based WAF? I can confirm from my backend logs that wafw00f scan is detected as critical and mitigated, but the tool is not recognizing it as fully fledged WAF. Maybe I'm using outdated wafw00f?
Hi please I would like to ask how to integrate my server under the waf protection , I run ubuntu 20.04 as waf with modsecurity then centos 7 as server app I wanto to add my centos under the waf for protections but do not know how
First of all i would like to thank you for great educational videos ⚘ My question is do you have any idea how to get ms teams group member IP address and other informations ?
CloudFlare is not a WAF, is a CDN. You can use ZAP with 10.000 connections/sec with not problem. And to do a brute force attack A WAF authorize only a limit number connection / sec and/or a specifical IP adress.
Hello HackerSploit! first of all, a big thank you for your work! this have been a guide and a helping hand for me. second i got some Q's i hope you will take some time to answer! - As a new "member" as an ethical hacker, should i go get a laptop, only foy my Kali? - i cant really do anything on my VM, i feel. - i've watched hours and hours of videos, yours and others. Do you got any place i should look for guides and that? - and the last; How long time did it take you to become this knowlegded about Ethical hacking, that you found yourself comfortbel enough to make theese videos? Im from denmark, so im really sorry for my bad gramma and spelling! Best regard. - Stasse
Hello there, I usually scan with nmap and wafw00f seems interesting tool. I have a question basically I want to know to install IDS in metasploitable Linux.
first of all make sure you are using kali linux, you can enable the 'secret' Linux subsystem in windows, tutorial: ruclips.net/video/Bm4lrz_tqMk/видео.html Then get Kali Linux in the microsoft store. After that go into kali linux and type: sudo apt-get install wafw00f
Yes, I had a web application firewall detected when doing a brute force attack. The attack was denied after 2nd try. The most common is dosarrest and cloudflare. So how can I bypass it? How do I encode it?
you know one thing that crazy about me is that i used kali linux when i was 12 and at 13 i know almost everything about kali linux what i did was crazy i grab the dns server from my school and scan the whole network for computers online and remotely attack the computer and putting viruses on half the school computers and they know i did it the only they could do is never let me back on the school computers and now they got these shitty ass chrome laptops now. dam its crazy how i hacked to so many websites and gain controll of it crazy thing bout it is im only 14.
I have been doing self learning from 2 years...None of the tutorials said about detecting a WAF or wafw00f tool...Thanks a lot for such amazing and detailed content :)
Thanks. My greatest teacher of all time!!!
thank you I'm in a ctf competition for fun no time limit and I been having the dumbest luck for 2 days. exploits won't work ect and then i come here I've been watching for videos and they are really helpful thank you
Yes, i agree finding out what WAF your target is using would defenently help the process go smoother because you would know how to craft a payload to bypass and find bugs to exploit them and of course report them.
Thank you so much sir.
Your are my fav teacher.
Lots of love from India
thank you I'm in a ctf competition for fun no time limit and I been having the dumbest luck for 2 days. exploits won't work ect and then i come here I've been watching for videos and they are really helpful thank you
i can not find a words describe how good you are you are amazing teacher
This is great stuff I didn't know it even existed.
many thanks again ive learnt so much from You and others like you,your tutorials never ever fail me...go back a year or so ago and i didnt know a fraction of what i know now - thanks to you :-)
this script is for detecting firewall.so once we identifying its firewall,is there any recomended tool or script for bypass it?
Please do a video on preforming SQL Injection
Install Shodan plugin in your chorme, way better to simply show wich WAF an webapp are
Thanks for the info 💕
i see your video after long time but once more i am impressed to u r video..........
Create a video on how to bypass the waf akamai it will be much appreciated boss
What is that bios-like interface??
Bhai tu kaam ki chiz upload karta hai.
Love you
Bro, you're videos are the best. Keep up the good work. You've taught me so much!
Hii like the video and details could you please tell is it possible that server owner can track this sent reauest by tool like who is trying to check firewalls
how anonymous is it though ? should i hide my ip when i do the firewall check ??
Wow, amazing explanation!!
How to do firewall detection anonymously? I mean tools like wafw00f nmap is kinda noisy tool right? 😅
I have a request vid for the furure. System Hardening. Your thoughts and steps to take. Thanks man.
Yes, you had mentioned it earlier. I am just deciding between the OS ( Windows or Debian). I am definitely working on a great guide.
HackerSploit sweeeeeet
HackerSploit ty soo much that is realy cool, i can't wait
If there is a firewall and we are detecting it using thos tool will the firewall tell the website owner that it is being detected?
Can you please suggest me which is best VMware or virtual box?
What is the meaning of number of requests
Hack the box ke upar detailed video bnao
Hey Hackersploit!
can you make a video on mousejacking?
Hi HackerSploit, thanks for wonderful video. I was running dotdefender WAS on metasploitable machine and when i tried wafw00f , it was not able to detect dotdefender waf...any guess what wrong i could have done ? thanks
4:10
liked how you manipulated your words
Glad to see your vids are about hacking still. Love your lessons bro
Hi, great tutorial! Do you have any idea why wafw00f does not detect ModSecurity OWASP rule based WAF? I can confirm from my backend logs that wafw00f scan is detected as critical and mitigated, but the tool is not recognizing it as fully fledged WAF. Maybe I'm using outdated wafw00f?
How you bring up the black box
Hi please I would like to ask how to integrate my server under the waf protection , I run ubuntu 20.04 as waf with modsecurity then centos 7 as server app I wanto to add my centos under the waf for protections but do not know how
First of all i would like to thank you for great educational videos ⚘
My question is do you have any idea how to get ms teams group member IP address and other informations ?
Booyakasha, HackerSploit my man, you Rock.
Thanks mate
Thanks Love from bangladesh
CloudFlare is not a WAF, is a CDN.
You can use ZAP with 10.000 connections/sec with not problem. And to do a brute force attack
A WAF authorize only a limit number connection / sec and/or a specifical IP adress.
Sooo... You told me that Veil Evasion video for Quasarrat would be up by the end of last week or start of this week... Hello???
Hello HackerSploit!
first of all, a big thank you for your work! this have been a guide and a helping hand for me.
second i got some Q's i hope you will take some time to answer!
- As a new "member" as an ethical hacker, should i go get a laptop, only foy my Kali? - i cant really do anything on my VM, i feel.
- i've watched hours and hours of videos, yours and others. Do you got any place i should look for guides and that?
- and the last; How long time did it take you to become this knowlegded about Ethical hacking, that you found yourself comfortbel enough to make theese videos?
Im from denmark, so im really sorry for my bad gramma and spelling!
Best regard.
- Stasse
Thx for this Mr.wafw00f
Really helpful .
this is very good. thanks
What is wordpress?
How'd I create a bootable Kali usb
How you bypass web apps with cloudflare as the web app firewall.
Will you make a tutorial on how to get Kali Linux on the Raspberry Pi 3 ?
Please how do i install the wafwoof on my windows10 PC
Hey hackersploit can you show me how to speed up kali linux because its really slow for me and im using a usb to boot up kail
how to test my application
bro
what about manual
awesome stuff
Make a tutorial on how to make a virtual machine on kali linix to test our hacks
Great video!
Hello there, I usually scan with nmap and wafw00f seems interesting tool. I have a question basically I want to know to install IDS in metasploitable Linux.
It help to identify the Waf only otherwise we have to guess there's waf or ids
use snort as IDS in metasploitable, its the best testing IDS according to my knowledge
Thank you very much for this very useful information
how to run a wordpress server?
Thank you so much ❤
Thanks a lot. Your're the best!!!
great work and wonderfull video for beginners
I perfomed detection and its saying site is behind waf or some sort of security solution can anyone help me with this?
can you do a tutorial on how to bypass cloudflare?
thank you
by the way why you are not on kik anymore?
Why it says ERROR:root:Site any website / appears to be down
sir please make the video of creating own phising page sir you are so great
Uganda?? Nice..... 😀😀😀
Nice again... you might want to change the static image to align with the others in the series... (visual search breaks on this) ;)
Finally my requested video is up
Hello bro thanks for teaching us a lot of things, please can you teach us how SMTP scanner more brute force work on webmail and others?
Do iOS application also
nice explanation!
Thanks for the video =)
when I type in wafw00f into my terminal it says command not found. please help!
first of all make sure you are using kali linux, you can enable the 'secret' Linux subsystem in windows, tutorial:
ruclips.net/video/Bm4lrz_tqMk/видео.html
Then get Kali Linux in the microsoft store.
After that go into kali linux and type: sudo apt-get install wafw00f
thanks nice tool
After long wait✌
Make a social engineering video
I did wafw00f google.com and it said no WAF detected. why is this?
I think because google doesn't want use firewall
Thanks!
amazing 👏💓
Yes, I had a web application firewall detected when doing a brute force attack. The attack was denied after 2nd try.
The most common is dosarrest and cloudflare.
So how can I bypass it? How do I encode it?
I was wondering The same
Thanks 👍
Hola hermano, me gusto mucho tu video aunque no haya entendido una chota.
Hi, sorry, I need some help... Do you know how to recover a deleted instagram account? Thank you 😄
You need to contact Instagram help
Bro make videos on catch the flag events
Thankful . Please provide more script
Thank you.
Thank u
Thx 🙏🏻
Its saying that Google And Facbook Dosnt Hace a FireWall I am Confused
cheers mate
Terima kasih
thanks sir
Sir i like your all video but you can't get results it's half video, plz make full video to get results
E 'stato fantastico
hi Alexis i follow your videos it very good and very interesting i want you make a video about ss7 and how to hack android or ios with that .tnx
Please support subtitle in Indonesia leangue
Respect
CloudFare Sucks!
For us.
~_
Easily bypassed :)
you know one thing that crazy about me is that i used kali linux when i was 12 and at 13 i know almost everything about kali linux what i did was crazy i grab the dns server from my school and scan the whole network for computers online and remotely attack the computer and putting viruses on half the school computers and they know i did it the only they could do is never let me back on the school computers and now they got these shitty ass chrome laptops now. dam its crazy how i hacked to so many websites and gain controll of it crazy thing bout it is im only 14.
@øranuto husband what
Noice 🙂
❤❤❤
Please, make a video on hackthebox .eu explaining what is it and how to use it.
Talking about
RIP elgonstudios.com :(