ch0ic3/AllAboutBugBounty

mirror of https://github.com/daffainfo/AllAboutBugBounty.git synced 2024-12-18 18:36:12 +00:00

daffainfo a2c07348e3 Update structure each readme

2022-06-15 17:38:42 +07:00

666 B

Raw Blame History

Bypass 304 (Not Modified)

Delete "If-None-Match" header

GET /admin HTTP/1.1
Host: target.com
If-None-Match: W/"32-IuK7rSIJ92ka0c92kld"

Try this to bypass

GET /admin HTTP/1.1
Host: target.com

Adding random character in the end of "If-None-Match" header

GET /admin HTTP/1.1
Host: target.com
If-None-Match: W/"32-IuK7rSIJ92ka0c92kld"

Try this to bypass

GET /admin HTTP/1.1
Host: target.com
Host: target.com
If-None-Match: W/"32-IuK7rSIJ92ka0c92kld" b

References

https://anggigunawan17.medium.com/tips-bypass-etag-if-none-match-e1f0e650a521