New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

重发器详细功能实现 #40

Open

1 task

Jiang-Niao opened this issue Apr 23, 2020 · 2 comments

Assignees

Member

Jiang-Niao commented Apr 23, 2020

使用修改cookie的方式判断是否存在信息泄漏漏洞

Member

99Kies commented Apr 23, 2020

with open(filename, 'w') as fp:
    fp.write('xxx')

99Kies assigned 99Kies and Jiang-Niao

Member Author

Jiang-Niao commented Apr 24, 2020

大致思路

用户提供二至三个账户进行扫描
提取cookie进行网卡抓包
使用别的cookie去进行重发，其余数据不变，通过返回的数据进行判断，没有字节差异的忽略，状态码不为200的忽略，实现更高精度和速度
筛选出的数据进行语义分析判断，查看是否存在信息泄漏或者越权

匹配机制

用户A携带cookie访问页面，提出匹配到的关键数据
用户B携带cookie访问页面，提出匹配到的关键数据
两个用户进行相似度估计，一般在90%以上认为存在漏洞，70～80判定为疑似存在，需要人工判断
匹配结果放入一个本地的html文件中，类似X-ray，样本在群里有

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment