Skip to content

RistBS/4xxBypasser

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

50 Commits

misc/nginx

misc/nginx

 
 

4xxbypasser.py

4xxbypasser.py

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

banner.py

banner.py

 
 

install.sh

install.sh

 
 

requirements.txt

requirements.txt

 
 

Repository files navigation

4xxBypasser

a tool to bypass negative HTTP status codes on the client side (4xx)

Liscence : MIT license

Creator

Devs

Installation :

git clone https://github.com/RistBS/4xxBypasser
cd 4xxBypasser && sudo pip3 install -r requirements.txt
sudo python3 4xxbypasser.py

Arguments / options available:

  • Proxy: put http proxies (can avoid connection refusals)
  • Params: add parameters if ever the status code indicates it (401 for example)
  • Path: the path that returns the 4xx code

Format for the args Proxy et Params :

Params > {'p1':'hello', 'p2':'world'}

Proxy > {"http": "proxy"}

Nginx Alias Traversal Attack :

Vulnerable code :

location /admin {
    alias /var/www/site/data;
}

URL with a Payload : http://site.com/admin../<path/file>

About

a tool to bypass negative HTTP status codes on the client side (4xx)

Topics

bypass 403-forbidden 4xx

Resources

Readme

License

MIT license
Activity

Stars

23 stars

Watchers

1 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages