f5-awaf-export-policies

A small script to export all AWAF policies from a BIG-IP device.

This script leverages BIG-IP iControl REST API to export ALL AWAF policies in the system and saves them locally. The policies can be exported in the following formats: xml, plc and json.

Note: JSON format only works with TMOS version 16.x.

Tested with BIG-IP 16.1 but should work with older versions.

Usage

usage: f5-awaf-export-policies.py [-h] --device DEVICE --username USERNAME
                                  --password PASSWORD
                                  [--format {json,xml,plc}] [--output OUTPUT]

A small script to export all AWAF policies from a BIG-IP device.

optional arguments:
  -h, --help            show this help message and exit
  --device DEVICE, -d DEVICE
  --username USERNAME, -u USERNAME
  --password PASSWORD, -p PASSWORD
  --format {json,xml,plc}, -f {json,xml,plc}
  --output OUTPUT, -o OUTPUT

Sample Output

$ python f5-awaf-export-policies.py -d 192.168.0.245 -u admin -p "XXXXXXX" -o ./output 
AWAF Policy /PartitionB/awaf_policy_app4 saved to file ./output/PartitionB-awaf_policy_app4.xml.
AWAF Policy /PartitionB/awaf_policy_app3 saved to file ./output/PartitionB-awaf_policy_app3.xml.
AWAF Policy /PartitionA/awaf_policy_app2 saved to file ./output/PartitionA-awaf_policy_app2.xml.
AWAF Policy /PartitionA/awaf_policy_app1 saved to file ./output/PartitionA-awaf_policy_app1.xml.
AWAF Policy /PartitionC/awaf_policy_app6 saved to file ./output/PartitionC-awaf_policy_app6.xml.
AWAF Policy /PartitionC/awaf_policy_app5 saved to file ./output/PartitionC-awaf_policy_app5.xml.

A small script to export all AWAF policies from a BIG-IP device

Related tags

Overview

f5-awaf-export-policies

Usage

Sample Output

Owner

recover Firefox and more browsers logins

Workshop Material on VM-based Deobfuscation

This Repository is an up-to-date version of Harvard nlp's Legacy code and a Refactoring of the jupyter notebook version as a shell script version.

Hack computer in the form of RAR files from all types of clients, even Linux

POC for CVE-2022-1388

Extendable payload obfuscation and delivery framework

Proof of Concept Exploit for vCenter CVE-2021-21972

PortSwigger Burp Plugin for the Log4j (CVE-2021-44228)

Cobalt Strike < 4.4 dos CVE-2021-36798

Dumps the payload.bin image found in Android update images.

Operational information regarding the vulnerability in the Log4j logging library.

A honey token manager and alert system for AWS.

A tool to extract the IdP cert from vCenter backups and log in as Administrator

LdapRelayScan - Check for LDAP protections regarding the relay of NTLM authentication

Anti-Nuke capabilities, powerful moderation features, auto punishments, captcha-verification and more.

A secure password generator written in python

Lnkbomb - Malicious shortcut generator for collecting NTLM hashes from insecure file shares

Script hecho en python para sacar la informacion del numero de telefono, Hecha con el API de numverify

Unauthenticated Sqlinjection that leads to dump data base but this one impersonated Admin and drops a interactive shell

Statistical Random Number Generator Attack Against The Kirchhoff-law-johnson-noise (Kljn) Secure Key Exchange Protocol