How does it work?
Wafid sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions.If that is not successful, it sends a number of (potentially malicious) HTTP requests and uses simple logic to deduce which WAF it is If that is also not successful, it analyses the responses previously returned and uses another simple algorithm to guess if a WAF or security solution is actively responding to our attacks.
– Python 2.7.x and lxml python2 library
Use and download:
git clone https://github.com/Cryin/Wafid && cd Wafid
pip install lxml
python wafid.py -l