Menu
Forums
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Trending
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Upgrades
Log in
Register
What's new
Search
Search
Search titles only
By:
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Menu
Log in
Register
Navigation
Install the app
Install
More options
Contact us
Close Menu
Forums
Server Development
Habbo Retros
Habbo Tutorials
How to get a proxy for $0.01
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="MayoMayn" data-source="post: 395306" data-attributes="member: 71840"><p>You asked for reverse proxy vulnerabilities, here you got one:</p><p></p><p><a href="https://www.rapid7.com/db/modules/auxiliary/scanner/http/rewrite_proxy_bypass" target="_blank">https://www.rapid7.com/db/modules/auxiliary/scanner/http/rewrite_proxy_bypass</a></p><p></p><p><strong><em><span style="font-size: 12px">Apache Reverse Proxy Bypass Vulnerability Scanner</span></em></strong></p><p><span style="font-size: 12px"><em>Scan for poorly configured reverse proxy servers. By default, this module attempts to force the server to make a request with an invalid domain name. Then, if the bypass is successful, the server will look it up and of course fail, then responding with a status code 502. A baseline status code is always established and if that baseline matches your test status code, the injection attempt does not occur. "set VERBOSE true" if you are paranoid and want to catch potential false negatives. Works best against Apache and mod_re</em></span><em><span style="font-size: 12px">write</span></em></p></blockquote><p></p>
[QUOTE="MayoMayn, post: 395306, member: 71840"] You asked for reverse proxy vulnerabilities, here you got one: [URL]https://www.rapid7.com/db/modules/auxiliary/scanner/http/rewrite_proxy_bypass[/URL] [B][I][SIZE=3]Apache Reverse Proxy Bypass Vulnerability Scanner[/SIZE][/I][/B] [SIZE=3][I]Scan for poorly configured reverse proxy servers. By default, this module attempts to force the server to make a request with an invalid domain name. Then, if the bypass is successful, the server will look it up and of course fail, then responding with a status code 502. A baseline status code is always established and if that baseline matches your test status code, the injection attempt does not occur. "set VERBOSE true" if you are paranoid and want to catch potential false negatives. Works best against Apache and mod_re[/I][/SIZE][I][SIZE=3]write[/SIZE][/I] [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
Server Development
Habbo Retros
Habbo Tutorials
How to get a proxy for $0.01
Top