search

laluka / bypass-url-parser

bypass-url-parser
https://linktr.ee/TheLaluka
GNU Affero General Public License v3.0
1.03k stars 108 forks source link

New bypass mode - http_versions #7

Closed jtof-fap closed 2 years ago

jtof-fap commented 2 years ago

Added support for a new bypass mode -m http_versions.

jtof-fap commented 2 years ago

Diff of bup-payloads-2022-08-19.lst file with previous version:

diff --git a/tests-history/bup-payloads-2022-08-12.lst b/tests-history/bup-payloads-2022-08-19.lst
index 4da0488..3179c06 100644
--- a/tests-history/bup-payloads-2022-08-12.lst
+++ b/tests-history/bup-payloads-2022-08-19.lst
@@ -1,5 +1,5 @@

-Bypasser has generated 1781 payloads for 'http://127.0.0.1:8000/foo/bar' url:
+Bypasser has generated 1786 payloads for 'http://127.0.0.1:8000/foo/bar' url:
 [case_substitution] http://127.0.0.1:8000/Foo/bar
 [case_substitution] http://127.0.0.1:8000/fOo/bar
 [case_substitution] http://127.0.0.1:8000/foO/bar
@@ -825,6 +825,11 @@ Bypasser has generated 1781 payloads for 'http://127.0.0.1:8000/foo/bar' url:
 [http_methods] -X TRACE http://127.0.0.1:8000/foo/bar
 [http_methods] -X TRACK http://127.0.0.1:8000/foo/bar
 [http_methods] -X UPDATE http://127.0.0.1:8000/foo/bar
+[http_versions] --http0.9 http://127.0.0.1:8000/foo/bar
+[http_versions] --http1.0 http://127.0.0.1:8000/foo/bar
+[http_versions] --http1.1 http://127.0.0.1:8000/foo/bar
+[http_versions] --http2 http://127.0.0.1:8000/foo/bar
+[http_versions] --http2-prior-knowledge http://127.0.0.1:8000/foo/bar
 [mid_paths] http://127.0.0.1:8000/#?foo/bar
 [mid_paths] http://127.0.0.1:8000/#foo/bar
 [mid_paths] http://127.0.0.1:8000/%09%3bfoo/bar