Merge pull request #2595 from projectdiscovery/host-header-injection

Create host-header-injection.yaml
patch-1
Sandeep Singh 2021-09-06 18:56:09 +05:30 committed by GitHub
commit e31a75af04
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 32 additions and 0 deletions

View File

@ -0,0 +1,32 @@
id: host-header-injection
info:
name: Host Header Injection
author: princechaddha
severity: info
description: HTTP header injection is a general class of web application security vulnerability which occurs when Hypertext Transfer Protocol headers are dynamically generated based on user input.
reference:
- https://portswigger.net/web-security/host-header
- https://portswigger.net/web-security/host-header/exploiting
- https://www.acunetix.com/blog/articles/automated-detection-of-host-header-attacks/
tags: hostheader-injection,generic
requests:
- method: GET
path:
- "{{BaseURL}}"
headers:
Host: "{{randstr}}.tld"
matchers-condition: and
matchers:
- type: word
words:
- '{{randstr}}.tld'
part: body
condition: and
- type: status
status:
- 200