daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update headless-open-redirect.yaml 

Rearranged %0a, %0d, and %00 payloads to fix the issue when the template is not working. Added a new #/oast.live payload.
patch-1
SomeKirill 2024-03-05 16:37:22 +02:00 committed by GitHub
parent ac49e272ca
commit 1179efaeea
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
headless/headless-open-redirect.yaml
View File

@ -21,9 +21,6 @@ headless:
- action: waitload - action: waitload
payloads: payloads:
redirect: redirect:
- '%0a/oast.live/'
- '%0d/oast.live/'
- '%00/oast.live/'
- '%09/oast.live/' - '%09/oast.live/'
- '%5C%5Coast.live/%252e%252e%252f' - '%5C%5Coast.live/%252e%252e%252f'
- '%5Coast.live' - '%5Coast.live'
@ -112,6 +109,10 @@ headless:
- 'cgi-bin/redirect.cgi?oast.live' - 'cgi-bin/redirect.cgi?oast.live'
- 'out?oast.live' - 'out?oast.live'
- 'login?to=http://oast.live' - 'login?to=http://oast.live'
- '#/oast.live'
- '%0a/oast.live/'
- '%0d/oast.live/'
- '%00/oast.live/'
stop-at-first-match: true stop-at-first-match: true
matchers: matchers:
- type: word - type: word