[研究]用 wafw00f 2.3.1檢測 WAF (Kali Linux 2025.1c)

[研究]用 wafw00f 2.3.1檢測 WAF (Kali Linux 2025.1c)

2025-05-08

Wafw00f 並不是一個正式的縮寫（如每個字母代表一個詞的那種），而是一個駭客圈常見的風格化名稱，用來表示它的功能與用途：

Waf：代表 Web Application Firewall（WAF）

w00f：是一種駭客文化中的寫法，類似「woof」（狗叫聲），常用來表示「嗅探」或「偵測」的動作，有點像是「嗅出防火牆」的意思。

所以，Wafw00f 大致可以理解為：「嗅出網站是否有 WAF 的工具」。

┌──(kali㉿kali)-[~] └─$ wafw00f -h Usage: wafw00f url1 [url2 [url3 ... ]] example: wafw00f http://www.victim.org/ Options: -h, --help show this help message and exit -v, --verbose Enable verbosity, multiple -v options increase verbosity -a, --findall Find all WAFs which match the signatures, do not stop testing on the first one -r, --noredirect Do not follow redirections given by 3xx responses -t TEST, --test=TEST Test for one specific WAF -o OUTPUT, --output=OUTPUT Write output to csv, json or text file depending on file extension. For stdout, specify - as filename. -f FORMAT, --format=FORMAT Force output format to csv, json or text. -i INPUT, --input-file=INPUT Read targets from a file. Input format can be csv, json or text. For csv and json, a `url` column name or element is required. -l, --list List all WAFs that WAFW00F is able to detect -p PROXY, --proxy=PROXY Use an HTTP proxy to perform requests, examples: http://hostname:8080, socks5://hostname:1080, http://user:pass@hostname:8080 -V, --version Print out the current version of WafW00f and exit. -H HEADERS, --headers=HEADERS Pass custom headers via a text file to overwrite the default header set. -T TIMEOUT, --timeout=TIMEOUT Set the timeout for the requests. --no-colors Disable ANSI colors in output. ┌──(kali㉿kali)-[~] └─$

下面，判斷正確，沒 WAF

┌──(kali㉿kali)-[~] └─$ wafw00f https://(遮蔽)/ ? ,. ( . ) . " __ ?? (" ) )' ,' ) . (` '` (___()'`; ??? .; ) ' (( (" ) ;(, (( ( ;) " )") /,___ /` _"., ,._'_.,)_(..,( . )_ _' )_') (. _..( ' ) \\ \\ |____|____|____|____|____|____|____|____|____| ~ WAFW00F : v2.3.1 ~ ~ Sniffing Web Application Firewalls since 2014 ~ [*] Checking https://(遮蔽)/ [+] Generic Detection results: [-] No WAF detected by the generic detection [~] Number of requests: 7 ┌──(kali㉿kali)-[~] └─$

下面，判斷錯誤，有 WAF

┌──(kali㉿kali)-[~] └─$ wafw00f https://(遮蔽)/ ______ / \ ( W00f! ) \ ____/ ,, __ 404 Hack Not Found |`-.__ / / __ __ /" _/ /_/ \ \ / / *===* / \ \_/ / 405 Not Allowed / )__// \ / /| / /---` 403 Forbidden \\/` \ | / _ \ `\ /_\\_ 502 Bad Gateway / / \ \ 500 Internal Error `_____``-` /_/ \_\\ ~ WAFW00F : v2.3.1 ~ The Web Application Firewall Fingerprinting Toolkit [*] Checking https://(遮蔽)/ [+] Generic Detection results: [-] No WAF detected by the generic detection [~] Number of requests: 7 ┌──(kali㉿kali)-[~] └─$

下面，判斷正確，有 WAF

┌──(kali㉿kali)-[~] └─$ wafw00f https://(遮蔽)/ ______ / \ ( W00f! ) \ ____/ ,, __ 404 Hack Not Found |`-.__ / / __ __ /" _/ /_/ \ \ / / *===* / \ \_/ / 405 Not Allowed / )__// \ / /| / /---` 403 Forbidden \\/` \ | / _ \ `\ /_\\_ 502 Bad Gateway / / \ \ 500 Internal Error `_____``-` /_/ \_\\ ~ WAFW00F : v2.3.1 ~ The Web Application Firewall Fingerprinting Toolkit [*] Checking https://(遮蔽)/ [+] The site https://(遮蔽)/ is behind Cloudflare (Cloudflare Inc.) WAF. [~] Number of requests: 2 ┌──(kali㉿kali)-[~] └─$

(完)

相關