We need to understand if there is also an inline web application firewall that we should be aware of. Kali addresses this need by providing wafw00f
, a tool that will attempt to detect most commonly used web application firewalls. This script was created by Sandro Gauci and Wendel G. Henrique, and it can be downloaded from the project site download section at https://github.com/sandrogauci/wafw00f.
Invoke the command from your Kali terminal using the following commands:
# wafw00f ^ ^ _ __ _ ____ _ __ _ _ ____ ///7/ /.' \ / __////7/ /,' \ ,' \ / __/ | V V // o // _/ | V V // 0 // 0 // _/ |_n_,'/_n_//_/ |_n_,' \_,' \_,'/_/ < ...' WAFW00F - Web Application Firewall Detection Tool By SandroGauci&&Wendel G. Henrique Usage: wafw00f.py url1 [url2 [url3 ... ]] example: wafw00f http://www.victim.org/ wafw00f...