From 461b5d5a9eea6dd8ec979b81fa2691bcf81c894b Mon Sep 17 00:00:00 2001 From: kroosec Date: Tue, 12 Jun 2012 23:26:24 +0000 Subject: [PATCH] http-waf-fingerprint: Added credit to wafw00f and w3af in description field. --- scripts/http-waf-fingerprint.nse | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/scripts/http-waf-fingerprint.nse b/scripts/http-waf-fingerprint.nse index 02bc24395..5b9d50cf7 100644 --- a/scripts/http-waf-fingerprint.nse +++ b/scripts/http-waf-fingerprint.nse @@ -9,6 +9,8 @@ Tries to detect the presence of web application firewall and its type and versio This works by sending a number of requests and looking in the responses for known behavior and fingerprints such as Server header, cookies and headers values. + +Credit to wafw00f and w3af for some fingerprints. ]] --- @@ -30,7 +32,7 @@ categories = {"discovery", "intrusive"} -- -- Version 0.1: --- - Initial version based on work done with wafw00f. +-- - Initial version based on work done with wafw00f and w3af. -- - Removed many false positives. -- - Added fingeprints for WAFs such as Incapsula WAF, Cloudflare, USP-SES ,Cisco ACE XML Gateway and ModSecurity. -- - Added fingerprints and version detection for Webknight and BinarySec, Citrix Netscaler and ModSecurity