joohoi
commented
2 years ago Hi, I actually got a feature request for this, along with example code OOB, and it is definitely something that will be implemented in the near future!
Open 0xAwali opened 2 years ago
joohoi
commented
2 years ago Hi, I actually got a feature request for this, along with example code OOB, and it is definitely something that will be implemented in the near future!
it's not possible to FUZZ absolute URL e.g. I'm using
ffuf -request req.txt -w words.txt -u https://www.google.comand req.txt is
ffuf instead of FUZZing absolute URL it will FUZZ Host Header
this one will be awesome while facing reverse proxy , more details
https://blog.projectdiscovery.io/abusing-reverse-proxies-metadata/
https://blog.projectdiscovery.io/abusing-reverse-proxies-internal-access/