I just finished deploying a F5 BIG IP with AWAF. I managed to test many features including datasafe, TPS-based DDoS and antibot. But I haven’t been able to find exploits to test threat campaigns. The exploits I find in github only trigger WAF signatures but there are no logs of threat campaigns. Another feature I want to test is BDDoS. Could you please share some exploits or scripts to trigger the BDDoS protection and threat campaigns protection?
Thanks a lot in advance
Reach out to your local FSE. I recall at previous Agilitys labs have used such scripts and, in fact, the clouddocs.f5.com training references them. Your FSE may be able to get a copy of the scripts. Shame these aren't on GitHub.