npm - @waftester/cli - Versions diffs - 2.8.0 - Mend

@waftester/cli 2.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (141) hide show

package/LICENSE +80 -0
package/LICENSE-COMMUNITY +28 -0
package/README.md +121 -0
package/bin/cli.js +152 -0
package/package.json +52 -0
package/payloads/community/README.md +45 -0
package/payloads/community/ai/ml-poisoning.json +173 -0
package/payloads/community/ai/prompt-injection.json +247 -0
package/payloads/community/ai/workflow-abuse.json +222 -0
package/payloads/community/auth/jwt.json +855 -0
package/payloads/community/auth/login-bypass.json +623 -0
package/payloads/community/auth/mfa.json +402 -0
package/payloads/community/auth/oauth.json +421 -0
package/payloads/community/auth/open-redirect.json +1028 -0
package/payloads/community/auth/session.json +404 -0
package/payloads/community/cache/deception.json +402 -0
package/payloads/community/cache/poisoning.json +403 -0
package/payloads/community/deserialization/gadget.json +375 -0
package/payloads/community/deserialization/prototype.json +370 -0
package/payloads/community/fuzz/content-type.json +397 -0
package/payloads/community/fuzz/headers.json +401 -0
package/payloads/community/fuzz/methods.json +397 -0
package/payloads/community/fuzz/obfuscation.json +362 -0
package/payloads/community/fuzz/special-chars.json +740 -0
package/payloads/community/fuzz/waf-bypass.json +452 -0
package/payloads/community/graphql/batching-abuse.json +271 -0
package/payloads/community/graphql/depth-limit.json +271 -0
package/payloads/community/graphql/introspection.json +267 -0
package/payloads/community/injection/crlf.json +569 -0
package/payloads/community/injection/ldap.json +357 -0
package/payloads/community/injection/nosqli.json +529 -0
package/payloads/community/injection/oscmd.json +662 -0
package/payloads/community/injection/rce-polyglots.json +452 -0
package/payloads/community/injection/sqli.json +681 -0
package/payloads/community/injection/ssti.json +584 -0
package/payloads/community/injection/upload-attacks.json +632 -0
package/payloads/community/injection/xpath.json +357 -0
package/payloads/community/injection/xxe.json +716 -0
package/payloads/community/logic/forced-browsing.json +405 -0
package/payloads/community/logic/idor.json +1026 -0
package/payloads/community/logic/privilege.json +337 -0
package/payloads/community/media/exif-injection.json +225 -0
package/payloads/community/media/metadata-poison.json +239 -0
package/payloads/community/protocol/http-smuggling.json +798 -0
package/payloads/community/protocol/http2-attacks.json +382 -0
package/payloads/community/protocol/websocket-abuse.json +375 -0
package/payloads/community/rate-limit/burst-simulation.json +286 -0
package/payloads/community/rate-limit/bypass-attempts.json +326 -0
package/payloads/community/rate-limit/zone-tests.json +332 -0
package/payloads/community/services/authentik.json +415 -0
package/payloads/community/services/immich.json +423 -0
package/payloads/community/services/n8n.json +366 -0
package/payloads/community/sqli-basic.json +182 -0
package/payloads/community/ssrf/cloud-metadata.json +999 -0
package/payloads/community/ssrf/dns-rebinding.json +503 -0
package/payloads/community/ssrf/internal-networks.json +627 -0
package/payloads/community/ssrf/protocol-smuggling.json +350 -0
package/payloads/community/ssti/multi-language-templates.json +191 -0
package/payloads/community/ssti/python-templates.json +200 -0
package/payloads/community/traversal/basic.json +675 -0
package/payloads/community/traversal/cloud-credentials.json +107 -0
package/payloads/community/traversal/config-files.json +193 -0
package/payloads/community/traversal/encoding.json +558 -0
package/payloads/community/traversal/null-byte.json +105 -0
package/payloads/community/traversal/symlink.json +93 -0
package/payloads/community/traversal/unicode.json +134 -0
package/payloads/community/traversal/unix-advanced.json +195 -0
package/payloads/community/traversal/windows-advanced.json +195 -0
package/payloads/community/waf-bypass/cloudflare-bypass.json +102 -0
package/payloads/community/waf-bypass/encoding-bypass.json +120 -0
package/payloads/community/waf-bypass/evasion-techniques.json +164 -0
package/payloads/community/waf-bypass/hpp-bypass.json +92 -0
package/payloads/community/waf-bypass/modsecurity-crs.json +220 -0
package/payloads/community/waf-bypass/protocol-attacks.json +101 -0
package/payloads/community/waf-bypass/sqlmap-tamper.json +252 -0
package/payloads/community/waf-bypass/unicode-charset.json +152 -0
package/payloads/community/waf-bypass/vendor-bypasses.json +72 -0
package/payloads/community/waf-validation/README.md +172 -0
package/payloads/community/waf-validation/bypass-techniques.json +272 -0
package/payloads/community/waf-validation/custom-rules.json +952 -0
package/payloads/community/waf-validation/evasion-techniques.json +272 -0
package/payloads/community/waf-validation/modsecurity-core.json +151 -0
package/payloads/community/waf-validation/owasp-top10.json +236 -0
package/payloads/community/waf-validation/regression-tests.json +227 -0
package/payloads/community/xss/csp-bypass.json +431 -0
package/payloads/community/xss/dom.json +389 -0
package/payloads/community/xss/filter-bypass.json +1242 -0
package/payloads/community/xss/mutation.json +263 -0
package/payloads/community/xss/polyglots.json +371 -0
package/payloads/community/xss/reflected.json +187 -0
package/payloads/community/xss/stored.json +330 -0
package/payloads/crlf-injection.json +182 -0
package/payloads/ids-map.json +155 -0
package/payloads/ldap-injection.json +182 -0
package/payloads/nosql-injection.json +227 -0
package/payloads/prototype-pollution.json +182 -0
package/payloads/request-smuggling.json +182 -0
package/payloads/version.json +28 -0
package/payloads/xss-advanced.json +227 -0
package/templates/README.md +221 -0
package/templates/nuclei/http/waf-bypass/crlf-bypass.yaml +146 -0
package/templates/nuclei/http/waf-bypass/lfi-bypass.yaml +152 -0
package/templates/nuclei/http/waf-bypass/nosqli-bypass.yaml +166 -0
package/templates/nuclei/http/waf-bypass/rce-bypass.yaml +171 -0
package/templates/nuclei/http/waf-bypass/sqli-basic.yaml +142 -0
package/templates/nuclei/http/waf-bypass/sqli-evasion.yaml +192 -0
package/templates/nuclei/http/waf-bypass/ssrf-bypass.yaml +130 -0
package/templates/nuclei/http/waf-bypass/ssti-bypass.yaml +147 -0
package/templates/nuclei/http/waf-bypass/xss-basic.yaml +163 -0
package/templates/nuclei/http/waf-bypass/xss-evasion.yaml +217 -0
package/templates/nuclei/http/waf-bypass/xxe-bypass.yaml +204 -0
package/templates/nuclei/http/waf-detection/akamai-detect.yaml +105 -0
package/templates/nuclei/http/waf-detection/aws-waf-detect.yaml +115 -0
package/templates/nuclei/http/waf-detection/azure-waf-detect.yaml +114 -0
package/templates/nuclei/http/waf-detection/cloudflare-detect.yaml +121 -0
package/templates/nuclei/http/waf-detection/modsecurity-detect.yaml +129 -0
package/templates/nuclei/workflows/waf-assessment-workflow.yaml +71 -0
package/templates/output/asff.tmpl +61 -0
package/templates/output/csv.tmpl +4 -0
package/templates/output/junit.tmpl +34 -0
package/templates/output/markdown-report.tmpl +92 -0
package/templates/output/slack-notification.tmpl +95 -0
package/templates/output/text-summary.tmpl +56 -0
package/templates/overrides/api-only.yaml +130 -0
package/templates/overrides/crs-tuning.yaml +204 -0
package/templates/overrides/false-positive-suppression.yaml +159 -0
package/templates/policies/owasp-top10.yaml +152 -0
package/templates/policies/pci-dss.yaml +124 -0
package/templates/policies/permissive.yaml +40 -0
package/templates/policies/standard.yaml +57 -0
package/templates/policies/strict.yaml +72 -0
package/templates/report-configs/compliance.yaml +173 -0
package/templates/report-configs/dark.yaml +136 -0
package/templates/report-configs/enterprise.yaml +175 -0
package/templates/report-configs/minimal.yaml +84 -0
package/templates/report-configs/print.yaml +139 -0
package/templates/workflows/api-scan.yaml +132 -0
package/templates/workflows/ci-gate.yaml +129 -0
package/templates/workflows/full-scan.yaml +133 -0
package/templates/workflows/quick-probe.yaml +80 -0
package/templates/workflows/waf-detection.yaml +89 -0

package/payloads/community/graphql/introspection.json ADDED Viewed

@@ -0,0 +1,267 @@
+[
+  {
+      "id": "GQL-INTRO-001",
+      "payload": "{\"query\": \"{ __schema { types { name } } }\"}",
+      "tags": [
+        "introspection",
+        "schema",
+        "quick",
+        "critical"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Standard introspection query for schema types",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-002",
+      "payload": "{\"query\": \"{ __type(name: \\\"User\\\") { name fields { name type { name } } } }\"}",
+      "tags": [
+        "introspection",
+        "type-query",
+        "quick"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Introspection for specific type structure",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-003",
+      "payload": "{\"query\": \"query IntrospectionQuery { __schema { queryType { name } mutationType { name } subscriptionType { name } types { ...FullType } directives { name description locations args { ...InputValue } } } } fragment FullType on __Type { kind name description fields(includeDeprecated: true) { name description args { ...InputValue } type { ...TypeRef } isDeprecated deprecationReason } inputFields { ...InputValue } interfaces { ...TypeRef } enumValues(includeDeprecated: true) { name description isDeprecated deprecationReason } possibleTypes { ...TypeRef } } fragment InputValue on __InputValue { name description type { ...TypeRef } defaultValue } fragment TypeRef on __Type { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name } } } } } } } }\"}",
+      "tags": [
+        "introspection",
+        "full-schema",
+        "quick",
+        "critical"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Complete GraphQL introspection query (GraphiQL/Altair default)",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-004",
+      "payload": "{\"query\": \"{ __schema { mutationType { fields { name } } } }\"}",
+      "tags": [
+        "introspection",
+        "mutations"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Introspection for available mutations",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-005",
+      "payload": "{\"query\": \"{ __schema { subscriptionType { fields { name } } } }\"}",
+      "tags": [
+        "introspection",
+        "subscriptions"
+    ],
+      "expected_block": true,
+      "severity_hint": "High",
+      "notes": "Introspection for subscription endpoints",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-006",
+      "payload": "{\"query\": \"{ __schema { directives { name args { name } } } }\"}",
+      "tags": [
+        "introspection",
+        "directives"
+    ],
+      "expected_block": true,
+      "severity_hint": "High",
+      "notes": "Introspection for available directives",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-007",
+      "payload": "{\"query\": \"query { \\n__schema { \\ntypes { \\nname \\n} \\n} \\n}\"}",
+      "tags": [
+        "introspection",
+        "whitespace-obfuscation"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Introspection with newline obfuscation",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-008",
+      "payload": "{\"query\": \"{__schema{types{name}}}\"}",
+      "tags": [
+        "introspection",
+        "no-whitespace"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Introspection without any whitespace",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-009",
+      "payload": "{\"query\": \"query { __type(name: \\\"Query\\\") { fields { name type { name kind } } } }\"}",
+      "tags": [
+        "introspection",
+        "query-type"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Introspection for root Query type fields",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-010",
+      "payload": "{\"query\": \"{ __type(name: \\\"Mutation\\\") { fields { name args { name type { name } } } } }\"}",
+      "tags": [
+        "introspection",
+        "mutation-args"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Introspection for mutation arguments",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-011",
+      "payload": "{\"query\": \"fragment TypeFields on __Type { name fields { name } } query { __schema { types { ...TypeFields } } }\"}",
+      "tags": [
+        "introspection",
+        "fragments"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Introspection using fragments",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-012",
+      "payload": "{\"query\": \"{ __type(name: \\\"__Schema\\\") { fields { name } } }\"}",
+      "tags": [
+        "introspection",
+        "meta-type"
+    ],
+      "expected_block": true,
+      "severity_hint": "High",
+      "notes": "Introspection on meta-types",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-013",
+      "payload": "{\"query\": \"query { __typename }\"}",
+      "tags": [
+        "introspection",
+        "typename"
+    ],
+      "expected_block": true,
+      "severity_hint": "Medium",
+      "notes": "Query for __typename (type name introspection)",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-014",
+      "payload": "{\"query\": \"{ __schema { types { name fields { name type { name kind ofType { name kind } } } } } }\"}",
+      "tags": [
+        "introspection",
+        "deep-type-info"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Deep introspection with nested type information",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-015",
+      "payload": "{\"query\": \"{ __schema { types(includeDeprecated: true) { name isDeprecated deprecationReason } } }\"}",
+      "tags": [
+        "introspection",
+        "deprecated"
+    ],
+      "expected_block": true,
+      "severity_hint": "High",
+      "notes": "Introspection including deprecated fields",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-016",
+      "payload": "{\"query\": \"{ __type(name: \\\"String\\\") { kind } }\"}",
+      "tags": [
+        "introspection",
+        "scalar-types"
+    ],
+      "expected_block": true,
+      "severity_hint": "Low",
+      "notes": "Introspection for scalar types",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-017",
+      "payload": "{\"query\": \"query\\u0020{\\u0020__schema\\u0020{\\u0020types\\u0020{\\u0020name\\u0020}\\u0020}\\u0020}\"}",
+      "tags": [
+        "introspection",
+        "unicode-obfuscation"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Introspection with Unicode space characters (U+0020)",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-018",
+      "payload": "{\"query\": \"{ __schema @skip(if: false) { types { name } } }\"}",
+      "tags": [
+        "introspection",
+        "directive-abuse"
+    ],
+      "expected_block": true,
+      "severity_hint": "High",
+      "notes": "Introspection with @skip directive",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-019",
+      "payload": "{\"query\": \"{ __schema @include(if: true) { types { name } } }\"}",
+      "tags": [
+        "introspection",
+        "directive-abuse"
+    ],
+      "expected_block": true,
+      "severity_hint": "High",
+      "notes": "Introspection with @include directive",
+      "destructive": false,
+      "category": "GraphQL"
+  },
+  {
+      "id": "GQL-INTRO-020",
+      "payload": "{\"query\": \"query GetSchema { __schema { types { name } } }\", \"operationName\": \"GetSchema\"}",
+      "tags": [
+        "introspection",
+        "named-operation"
+    ],
+      "expected_block": true,
+      "severity_hint": "Critical",
+      "notes": "Named operation introspection query",
+      "destructive": false,
+      "category": "GraphQL"
+  }
+]