disabled DOS via illegal header name, because of net/http limitations

Hackmanit · Jan 13, 2022 · b15374e · b15374e
1 parent 5f5d58b
commit b15374e
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/pkg/techniques.go b/pkg/techniques.go
@@ -808,8 +808,10 @@ func DOS() reportResult {
 	headerDOSTemplate(&repResult, values, "User-Agent", "blacklisted security scanners ", true)
 
 	// DOS via illegal header name
+	/* Currently disabled because of net/http throws error because of illegal character TODO: workaround
 	values = []string{"foobar"}
 	headerDOSTemplate(&repResult, values, "Ill\\egal", "illegal header name ", true)
+	*/
 
 	// DOS via Max-Forwards (Webserver/Cache returns request)
 	values = []string{"0", "1", "2"}