{ "proxy":{ "match_replace_rules":[ { "comment":"Emulate IE", "enabled":false, "is_simple_match":false, "rule_type":"request_header", "string_match":"^User-Agent.*$", "string_replace":"User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" }, { "comment":"Emulate iOS", "enabled":false, "is_simple_match":false, "rule_type":"request_header", "string_match":"^User-Agent.*$", "string_replace":"User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3" }, { "comment":"Emulate Android", "enabled":false, "is_simple_match":false, "rule_type":"request_header", "string_match":"^User-Agent.*$", "string_replace":"User-Agent: Mozilla/5.0 (Linux; U; Android 2.2; en-us; Droid Build/FRG22D) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1" }, { "comment":"Require non-cached response", "enabled":false, "is_simple_match":false, "rule_type":"request_header", "string_match":"^If-Modified-Since.*$" }, { "comment":"Require non-cached response", "enabled":false, "is_simple_match":false, "rule_type":"request_header", "string_match":"^If-None-Match.*$" }, { "comment":"Hide Referer header", "enabled":false, "is_simple_match":false, "rule_type":"request_header", "string_match":"^Referer.*$" }, { "comment":"Require non-compressed responses", "enabled":false, "is_simple_match":false, "rule_type":"request_header", "string_match":"^Accept-Encoding.*$" }, { "comment":"Ignore cookies", "enabled":false, "is_simple_match":false, "rule_type":"response_header", "string_match":"^Set-Cookie.*$" }, { "comment":"Rewrite Host header", "enabled":false, "is_simple_match":false, "rule_type":"request_header", "string_match":"^Host: foo.example.org$", "string_replace":"Host: bar.example.org" }, { "comment":"Add spoofed CORS origin", "enabled":false, "is_simple_match":true, "rule_type":"request_header", "string_replace":"Origin: foo.example.org" }, { "comment":"Remove HSTS headers", "enabled":false, "is_simple_match":false, "rule_type":"response_header", "string_match":"^Strict\\-Transport\\-Security.*$" }, { "comment":"Disable browser XSS protection", "enabled":false, "is_simple_match":true, "rule_type":"response_header", "string_replace":"X-XSS-Protection: 0" }, { "comment":"Show Hiddden UI", "enabled":true, "is_simple_match":true, "rule_type":"response_body", "string_match":"hidden", "string_replace":"hizzen" }, { "comment":"Show Hiddden UI", "enabled":true, "is_simple_match":true, "rule_type":"response_body", "string_match":"display: none", "string_replace":"display: n0ne" }, { "comment":"Change disable to enable", "enabled":true, "is_simple_match":true, "rule_type":"response_body", "string_match":"disable", "string_replace":"enable" }, { "comment":"Change from false to true", "enabled":true, "is_simple_match":true, "rule_type":"response_body", "string_match":"false", "string_replace":"true" }, { "comment":"Bypass WAF", "enabled":true, "is_simple_match":true, "rule_type":"request_header", "string_replace":"X-Forwarded-Host:: 127.0.0.1" }, { "comment":"Bypass WAF", "enabled":true, "is_simple_match":true, "rule_type":"request_header", "string_replace":"X-Forwarded-By: 127.0.0.1" }, { "comment":"Bypass WAF", "enabled":true, "is_simple_match":true, "rule_type":"request_header", "string_replace":"X-Forwarded-Scheme: 127.0.0.1" }, { "comment":"Easy replace XSS payload", "enabled":true, "is_simple_match":true, "rule_type":"request_header", "string_match":"xss_payload", "string_replace":"\">" } ] } }