WAFtester — WAF Security Testing
Version updated for https://github.com/waftester/waftester-action to version v1.0.21.
- This action is used across all versions by ? repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
The WAFtester GitHub Action enables automated testing, fingerprinting, and bypassing of Web Application Firewalls (WAFs) directly within GitHub Actions workflows. It streamlines security testing by running scans against target URLs, generating SARIF reports with detailed findings, and uploading results to GitHub’s Security tab for analysis. This action helps developers identify vulnerabilities, detect WAF vendor implementations, and assess WAF effectiveness across various attack scenarios.
Release notes
WAFtester Action v1.0.21
Updates bundled CLI to WAFtester 2.9.11.
See CLI changelog for details.
Usage
- uses: waftester/waftester-action@v1
with:
target: https://app.example.com