CoCalc -- fuzz-host-header-injection.yaml

GitHub Repository: projectdiscovery/nuclei
Path: blob/dev/integration_tests/fuzz/fuzz-host-header-injection.yaml
²⁰⁷⁰ views

1
id: host-header-injection
2

3
info:
4
  name: Host Header Injection
5
  author: pdteam
6
  severity: info
7
  description: Host header injection
8

9
variables:
10
  domain: "oast.fun"
11

12
http:
13
  - pre-condition:
14
      - type: dsl
15
        dsl:
16
          - 'method == "GET"'
17
          - 'contains(path,"/host-header-lab")' # for integration testing only
18
        condition: and
19
    
20
    fuzzing:
21
      - part: header
22
        type: replace
23
        mode: single
24
        fuzz:
25
          X-Forwarded-For: "{{domain}}"
26
          X-Forwarded-Host: "{{domain}}"
27
          Forwarded: "{{domain}}"
28
          X-Real-IP: "{{domain}}"
29
          X-Original-URL: "{{domain}}"
30
          X-Rewrite-URL: "{{domain}}"
31
          Host: "{{domain}}"
32
          # " Host": "{{domain}}" # space before host (not supported yet due to lack of unsafe mode)
33

34
    matchers:
35
      - type: status
36
        status: 
37
          - 200
38

39
      - type: word
40
        part: body
41
        words:
42
          - "Interactsh"
43
    matchers-condition: and
44

Product

Resources

Company