ch0ic3/AllAboutBugBounty
1
0
Fork 0
mirror of https://github.com/daffainfo/AllAboutBugBounty.git synced 2025-02-01 07:37:26 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge branch 'master' of https://github.com/daffainfo/AllAboutBugBounty

Browse Source
This commit is contained in:
MD15 2021-02-03 21:16:50 +07:00
commit 191cab1378
1 changed files with 17 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
Bypass Captcha.md
View File

@ -57,3 +57,20 @@ X-Forwarded-For: 127.0.0.1
X-Remote-IP: 127.0.0.1 X-Remote-IP: 127.0.0.1
X-Remote-Addr: 127.0.0.1 X-Remote-Addr: 127.0.0.1
``` ```
6. Change some specific characters of the captcha parameter and see if it is possible to bypass the restriction.
```
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=xxxxxxxxxxxxxx&_Username=daffa&_Password=test123
```
Try this to bypass
```
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=xxxdxxxaxxcxxx&_Username=daffa&_Password=test123
```