-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathssrf-header-randomly.bcheck
More file actions
38 lines (32 loc) · 1.13 KB
/
ssrf-header-randomly.bcheck
File metadata and controls
38 lines (32 loc) · 1.13 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
metadata:
language: v2-beta
name: "Insert Collaboarator header Randomly"
description: "Inserts collab payloads in headers 23% of the time"
author: "BuffaloWill"
tags: "ssrf", "active", "bce"
define:
z="{random_str(1)}"
collaborator_address = {generate_collaborator_address()}
given request then
if {z} matches "[a-f]" then
send request called check:
appending headers:
"X-Forwarded-Proto": `{collaborator_address}`,
"Referer": `{collaborator_address}`,
"X-Forwarded-For": `{collaborator_address}`,
"True-Client-IP": `{collaborator_address}`,
"X-Client-IP": `{collaborator_address}`,
"X-Real-IP": `{collaborator_address}`
if dns interactions then
report issue:
severity: info
confidence: certain
detail: "Received interaction from the header indicated"
end if
if http interactions then
report issue:
severity: high
confidence: certain
detail: "Received interaction from the header indicated"
end if
end if