XORpass – An encoder to bypass WAF
XORpass is an encoder to bypass WAF filters using XOR operations. Installation & Usage git clone https://github.com/devploit/XORpasscd XORpass$ python3 xorpass.py -h Example of bypass: Using clear PHP function: Using XOR bypass of that function: $ python3 xorpass.py -e “system(ls)” Why does PHP treat our payload as a string? The ^ is the exclusive or … Read more