This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

Last update: Mar 31, 2022

Overview

f5-waf-enforce-sigs-CVE-2021-44228

This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

Overview

This script enforces all signatures present in the list below related to CVE-2021-44228 across all policies in blocking mode in the Adv. WAF/ASM.

sigs = ['200104768', '200104769', '200004450', '200004451','200004474','200104770','200104771']

https://support.f5.com/csp/article/K19026212

This was tested on BIG-IP ASM/Adv.WAF v15.x but I expect this to work in v13/v14/v16 as well.

Prerequisites

Python 3.7+

The host machine needs to have connection to the BIG-IP management interface.

How to Use

usage: f5-waf-enforce-sig-CVE-2021-44228 device

positional arguments:
  device      File with IP adrresses of the target BIG-IP devices separated by line

Owner

Ismael Gonçalves

GitHub Repository

Scan publicly accessible assets on your AWS cloud environment

poro Description Scan for publicly accessible assets on your AWS environment Services covered by this tool: AWS ELB API Gateway S3 Buckets RDS Databas

134 Dec 16, 2022

an impacket-dependent script exploiting CVE-2019-1040

dcpwn an impacket-dependent script exploiting CVE-2019-1040, with code partly borrowed from those security researchers that I'd like to say thanks to.

71 Nov 30, 2022

An easy-to-use wrapper for NTFS-3G on macOS

ezNTFS ezNTFS is an easy-to-use wrapper for NTFS-3G on macOS. ezNTFS can be used as a menu bar app, or via the CLI in the terminal. Installation To us

34 Dec 01, 2022

Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage and potential attacks.

Dependency Combobulator Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage

84 Dec 23, 2022

A secure password generator written in python

gruvbox-factory 🏭 "The main focus when developing gruvbox is to keep colors easily distinguishable, contrast enough and still pleasant for the eyes"

430 Dec 27, 2022

GitLab CE/EE Preauth RCE using ExifTool

CVE-2021-22205 GitLab CE/EE Preauth RCE using ExifTool This project is for learning only, if someone's rights have been violated, please contact me to

164 Dec 10, 2022

A python script to decrypt media files encrypted using the Android application 'Decrypting 'LOCKED Secret Calculator Vault''. Will identify PIN / pattern.

3 Sep 26, 2022

Infoga is a tool gathering email accounts informations (ip,hostname,country,...) from different public source

Infoga - Email OSINT Infoga is a tool gathering email accounts informations (ip,hostname,country,...) from different public source (search engines, pg

1.8k Jan 04, 2023

Vulnerability Scanner & Auto Exploiter You can use this tool to check the security by finding the vulnerability in your website or you can use this tool to Get Shells

About create a target list or select one target, scans then exploits, done! Vulnnr is a Vulnerability Scanner & Auto Exploiter You can use this tool t

108 Dec 04, 2021

In this program, I generate the strong password from existing password without class using python. The special thing in this program is that is generate very strong password from our existing password. It replaces some elements from password and put another elements in it.

Strong-password-Generator-from-existing-password-using-python In this program, I generate the strong password from existing password without class usi

4 Sep 24, 2021

This enforces signatures for CVE-2021-44228 across all policies on a BIG-IP ASM device

Related tags

Overview

f5-waf-enforce-sigs-CVE-2021-44228

Overview

Prerequisites

How to Use

Owner

Ismael Gonçalves

Scan publicly accessible assets on your AWS cloud environment

an impacket-dependent script exploiting CVE-2019-1040

An easy-to-use wrapper for NTFS-3G on macOS

Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage and potential attacks.

A secure password generator written in python

GitLab CE/EE Preauth RCE using ExifTool

A python script to decrypt media files encrypted using the Android application 'Decrypting 'LOCKED Secret Calculator Vault''. Will identify PIN / pattern.

Infoga is a tool gathering email accounts informations (ip,hostname,country,...) from different public source

Vulnerability Scanner & Auto Exploiter You can use this tool to check the security by finding the vulnerability in your website or you can use this tool to Get Shells

In this program, I generate the strong password from existing password without class using python. The special thing in this program is that is generate very strong password from our existing password. It replaces some elements from password and put another elements in it.

a cool, easily usable and customisable subdomains scanner

Official implementation of the paper "Backdoor Attacks on Self-Supervised Learning".

Facebook account cloning/hacking advanced tool + dictionary attack added | Facebook automation tool

A repository to detect the ARP spoofing in any devices and prevent Man in the Middle(MITM) attack using Python3

Bypass's HCaptcha by overloading their api causing it to throwback a generated uuid. (Released due to exposure)

DoSer.py - Simple DoSer in Python

A scanner and a proof of sample exploit for log4j RCE CVE-2021-44228

This is simple python FTP password craker. To crack FTP login using wordlist based brute force attack

The Web Application Firewall Paranoia Level Test Tool.

Advanced subdomain scanner, any domain hidden subdomains