-
-
Notifications
You must be signed in to change notification settings - Fork 76
During script
c0dejump edited this page Jan 25, 2022
·
5 revisions
-
Bypass forbidden page:
Try to bypass code response 403/401 page
With methods: POST, PUT, PATCH, OPTIONS With original url: http:https://toto.com/admin header="X-Originating-URL": admin With IP authorization: Head: X-Originating-IP, X-Forwarded, Forwarded, Forwarded-For, Forwarded-For-IP, X-Forwarder-For, X-Forwarded-For, X-Forwarded-For-Original, X-Forwarded-By, X-Forwarded-Host, X-Remote-IP, X-Remote-Addr, X-Client-IP, Client-IP, Access-Control-Allow-Origin, Origin, X-Custom-IP-Authorization, X-Forwarded-For IP: 127.0.0.1, 127.0.0.2, *, 8.8.8.8, null, 192.168.0.2, 10.0.0.1, localhost, 0.0.0.0,::1,0:0:0:0:0:0:0:1 With Payload pages: page+"/.", "/"+page+"/", "./"+page+"/./", "%2e/"+page, page+"/.;/", ".;/"+page, page+"..;", page+"/;/", page+"..%3B", page+"/%3B", page+".%3B/", page+"~", page+"/..;/", page+"%20", page+"%09", page+"%00", page+"??", page+"#", page+"/*", page+"/*/"
-
Detect & Bypass WAF:
Detect if a WAF actived & Try to bypass it
See "detect_waf" to see all supported waf Same IP authorization about Bypass forbidden
-
html actions:
get all links, download files found and search S3 links
-
Scan errors:
When the scan is finish, Re-check all link which was in error during the scan
-
Report:
When the scan is finish, create a HTML report