frankiestein
Eternal Poster
- Joined
- Aug 8, 2017
- Posts
- 666
- Reaction
- 1,174
- Points
- 414
- Age
- 40
We all know Globe's hub is You do not have permission to view the full content of this post.
Log in or register now. but do you know that every site is using a reverse proxy? Yes, they do and that is to prevent their home sites to be used as payload.
How? If you use You do not have permission to view the full content of this post. Log in or register now. as your payload, even if it's 200 OK status, your browsing will be suspended.
Why? Because its ip address has a discrepancy. You can confirm this by clicking on Info.
Then copy the IP address 54.241.3.103 and check for its status.
The host You do not have permission to view the full content of this post. Log in or register now. and its IP address 54.241.3.103 are not the same when their statuses are checked. The former is 200 OK while the latter is 301 moved permanently. This explains why its not advisable to use these 200 payloads that have different status for their equivalent IP addresses.
My point is, there are reverse proxies used that are suitable for us to use as payloads.
What is a reverse proxy?
In You do not have permission to view the full content of this post. Log in or register now., a reverse proxy is a type of You do not have permission to view the full content of this post. Log in or register now. that retrieves resources on behalf of a You do not have permission to view the full content of this post. Log in or register now. from one or more You do not have permission to view the full content of this post. Log in or register now.. These resources are then returned to the client as if they originated from the Web server itself.
Resource: You do not have permission to view the full content of this post. Log in or register now.
For Globe's hub, here is its reverse proxy:
When using reverse proxy, check on Back Query when generating your payload whether you use front, normal, or back inject.
Happy hunting for the best payload you can use. I hope this add to your knowledge on setting up your http injector. Enjoy!
How? If you use You do not have permission to view the full content of this post. Log in or register now. as your payload, even if it's 200 OK status, your browsing will be suspended.
Why? Because its ip address has a discrepancy. You can confirm this by clicking on Info.
Then copy the IP address 54.241.3.103 and check for its status.
The host You do not have permission to view the full content of this post. Log in or register now. and its IP address 54.241.3.103 are not the same when their statuses are checked. The former is 200 OK while the latter is 301 moved permanently. This explains why its not advisable to use these 200 payloads that have different status for their equivalent IP addresses.
My point is, there are reverse proxies used that are suitable for us to use as payloads.
What is a reverse proxy?
In You do not have permission to view the full content of this post. Log in or register now., a reverse proxy is a type of You do not have permission to view the full content of this post. Log in or register now. that retrieves resources on behalf of a You do not have permission to view the full content of this post. Log in or register now. from one or more You do not have permission to view the full content of this post. Log in or register now.. These resources are then returned to the client as if they originated from the Web server itself.
Resource: You do not have permission to view the full content of this post. Log in or register now.
For Globe's hub, here is its reverse proxy:
Spoiler contents are visible only to Established Members.
When using reverse proxy, check on Back Query when generating your payload whether you use front, normal, or back inject.
Happy hunting for the best payload you can use. I hope this add to your knowledge on setting up your http injector. Enjoy!
Attachments
-
You do not have permission to view the full content of this post. Log in or register now.
Last edited: