Open princechaddha opened 2 years ago
Potential follow up ticket:
The feature request is problematic as the timeout is one important error that it's necessary to track to drop unresponsive hosts. Instead, we need to ignore the error cache and perform the template flow. The implementation should:
So no support for detecting timeouts still? This feature could also be useful in detecting potential subdomain takeover vulnerabilities.
Please describe your feature request:
Add support for a matcher that detects whether the host results in a timeout or not.
Describe the use case of this feature:
This can be useful for detecting DOS templates since we can verify that the host cannot be reached after the request with the payload has been sent.
Another use case would be adding an additional matcher to oast templates where the server timeouts while sending arbitrary requests, for these hosts, we have to only rely on the callbacks . This will prevent false positives on the honeypots that simply send requests to any URL they receive.