f5-awaf-export-policies

A small script to export all AWAF policies from a BIG-IP device.

This script leverages BIG-IP iControl REST API to export ALL AWAF policies in the system and saves them locally. The policies can be exported in the following formats: xml, plc and json.

Note: JSON format only works with TMOS version 16.x.

Tested with BIG-IP 16.1 but should work with older versions.

Usage

usage: f5-awaf-export-policies.py [-h] --device DEVICE --username USERNAME
                                  --password PASSWORD
                                  [--format {json,xml,plc}] [--output OUTPUT]

A small script to export all AWAF policies from a BIG-IP device.

optional arguments:
  -h, --help            show this help message and exit
  --device DEVICE, -d DEVICE
  --username USERNAME, -u USERNAME
  --password PASSWORD, -p PASSWORD
  --format {json,xml,plc}, -f {json,xml,plc}
  --output OUTPUT, -o OUTPUT

Sample Output

$ python f5-awaf-export-policies.py -d 192.168.0.245 -u admin -p "XXXXXXX" -o ./output 
AWAF Policy /PartitionB/awaf_policy_app4 saved to file ./output/PartitionB-awaf_policy_app4.xml.
AWAF Policy /PartitionB/awaf_policy_app3 saved to file ./output/PartitionB-awaf_policy_app3.xml.
AWAF Policy /PartitionA/awaf_policy_app2 saved to file ./output/PartitionA-awaf_policy_app2.xml.
AWAF Policy /PartitionA/awaf_policy_app1 saved to file ./output/PartitionA-awaf_policy_app1.xml.
AWAF Policy /PartitionC/awaf_policy_app6 saved to file ./output/PartitionC-awaf_policy_app6.xml.
AWAF Policy /PartitionC/awaf_policy_app5 saved to file ./output/PartitionC-awaf_policy_app5.xml.

A small script to export all AWAF policies from a BIG-IP device

Related tags

Overview

f5-awaf-export-policies

Usage

Sample Output

Owner

Yuyu Scanner is a Web Reconnaissance & Web Analysis Scanner to find assets and information about targets.

A toolkit for web reconnaissance, it's fast and easy to use.

Acc-Data-Gen - Allows you to generate a password, e-mail & token for your Minecraft Account

Phoenix Framework is an environment for writing, testing and using exploit code.

Ingest GreyNoise.io malicious feed for CVE-2021-44228 and apply null routes

Python3 script for scanning CVE-2021-44228 (Log4shell) vulnerable machines.

Subdomain enumeration,Web scraping and finding usernames automation script written in python

com_media allowed paths that are not intended for image uploads to RCE

This program is a WiFi cracker, you can test many passwords for a desired wifi to find the wifi password!

Providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-44228) in their AWS account.

The Modern Hash Identification System

Searches filesystem for CVE-2021-44228 and CVE-2021-45046 vulnerable instances of log4j library, including embedded (jar/war/zip) packaged ones.

Visibility and Mitigation for Log4J vulnerabilities

NEW FACEBOOK CLONER WITH NEW PASSWORD, TERMUX FB CLONE, FB CLONING COMMAND. M

Uma ferramenta de segurança da informação escrita em python3,capaz de dar acesso total ao computador de alguém!

IDA loader for Apple's iBoot, SecureROM and AVPBooter

NS-LOOKUP - A python script for scanning website for getting ip address of a website

On-demand scanning for container registries

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Confluence Server Webwork OGNL injection