From 8bc21766d22bcfd4a4e6b6264d4e6c37d4d9068e Mon Sep 17 00:00:00 2001 From: PinkDev1 <5990@protonmail.com> Date: Tue, 8 Feb 2022 12:36:00 -0300 Subject: [PATCH] Added "enumXFF" tool (#16) --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 7a50a1b..f6791f4 100644 --- a/README.md +++ b/README.md @@ -3883,6 +3883,7 @@ User-Agent: Mozilla/4.0 (compatible; MSIE5.01; Windows NT) - [abuse-ssl-bypass-waf](https://github.com/LandGrey/abuse-ssl-bypass-waf) - A tool which finds out supported SSL/TLS ciphers and helps in evading WAFs. - [SQLMap Tamper Scripts](https://github.com/sqlmapproject/sqlmap) - Tamper scripts in SQLMap obfuscate payloads which might evade some WAFs. - [Bypass WAF BurpSuite Plugin](https://portswigger.net/bappstore/ae2611da3bbc4687953a1f4ba6a4e04c) - A plugin for Burp Suite which adds some request headers so that the requests seem from the internal network. +- [enumXFF](https://github.com/infosec-au/enumXFF) - Eumerating IPs in X-Forwarded-Headers to bypass 403 restrictions ## Blogs and Writeups > Many of the content mentioned above have been taken from some of the following excellent writeups.