module
Apache Reverse Proxy Bypass Vulnerability Scanner
| Disclosed | Created |
|---|---|
| N/A | 2018-05-30 |
Disclosed
N/A
Created
2018-05-30
Description
Scan for poorly configured reverse proxy servers.
By default, this module attempts to force the server to make
a request with an invalid domain name. Then, if the bypass
is successful, the server will look it up and of course fail,
then responding with a status code 502. A baseline status code
is always established and if that baseline matches your test
status code, the injection attempt does not occur.
"set VERBOSE true" if you are paranoid and want to catch potential
false negatives. Works best against Apache and mod_rewrite
By default, this module attempts to force the server to make
a request with an invalid domain name. Then, if the bypass
is successful, the server will look it up and of course fail,
then responding with a status code 502. A baseline status code
is always established and if that baseline matches your test
status code, the injection attempt does not occur.
"set VERBOSE true" if you are paranoid and want to catch potential
false negatives. Works best against Apache and mod_rewrite
Author
chao-mu
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.