There are 2 repositories under web-attacks topic.
LAYER7 BEST FLOODING ( SIMPLE TOOL FOR WRITE PROTECT )
Attack Detection, Parameter Optimization and Performance Analysis in Enterprise Networks (ML Networks) for Intrusion Detection System IDS.
OCS-WAF: a Web Application Firewall based on anomaly detection using One-Class SVM classifier
"Force Cannon" is a brute force tool made in ruby, that performs attacks on login forms using the POST method without robust filters or protections.
Install a WebShell on hardened and deployed WebScripts (using Apache and mod_wsgi).
If you run any of this stuff and it harms your device it's not anyone but your own fault
A collection of lab reports submitted as part of the CSC435 (Computer Security) course at the Lebanese American University.
This package implement a WebShell for CGI and WSGI server.
http methods fuzzer