Class: Snackhack2::BypassHTTP

Inherits:

Object

• Object
• Snackhack2::BypassHTTP

Defined in:

lib/snackhack2/bypass_403.rb

Instance Attribute Summary

• #bypass ⇒ Object

  Returns the value of attribute bypass.

• #site ⇒ Object

  Returns the value of attribute site.

• #wordlist ⇒ Object

  Returns the value of attribute wordlist.

Instance Method Summary

• #basic ⇒ Object
• #dots ⇒ Object
• #forward_for ⇒ Object
• #initialize ⇒ BypassHTTP constructor

  A new instance of BypassHTTP.

• #uppercase ⇒ Object
• #url_encode ⇒ Object
• #web_request(bypass) ⇒ Object

Constructor Details

#initialize ⇒ BypassHTTP

Returns a new instance of BypassHTTP.

# File 'lib/snackhack2/bypass_403.rb', line 9

def initialize
  @site     = site
  @wordlist = File.join(__dir__, 'lists', 'directory-list-2.3-big.txt')
  @bypass   = '//'
end

Instance Attribute Details

#bypass ⇒ Object

Returns the value of attribute bypass.

# File 'lib/snackhack2/bypass_403.rb', line 7

def bypass
  @bypass
end

#site ⇒ Object

Returns the value of attribute site.

# File 'lib/snackhack2/bypass_403.rb', line 7

def site
  @site
end

#wordlist ⇒ Object

Returns the value of attribute wordlist.

# File 'lib/snackhack2/bypass_403.rb', line 7

def wordlist
  @wordlist
end

Instance Method Details

#basic ⇒ Object

# File 'lib/snackhack2/bypass_403.rb', line 43

def basic
  web_request('//')
end

#dots ⇒ Object

# File 'lib/snackhack2/bypass_403.rb', line 64

def dots
  web_request('..;/')
end

#forward_for ⇒ Object

# File 'lib/snackhack2/bypass_403.rb', line 15

def forward_for
  File.readlines(@wordlist).each do |r|
    r = r.strip
    Async do
      url = File.join(@site, @bypass, r)
      r = HTTParty.get(url, headers: {
                         "X-Forwarded-For": '127.0.0.1'
                       })
      puts url
      puts r.code
      puts "\n"
    end
  end
end

#uppercase ⇒ Object

# File 'lib/snackhack2/bypass_403.rb', line 47

def uppercase
  File.readlines(@wordlist).each do |r|
    r = r.strip.gsub(/./) { |s| s.send(i[upcase downcase].sample) }
    Async do
      url = File.join(@site, r)
      puts url
      r = Snackhack2.get(url)
      puts r.code
      puts "\n"
    end
  end
end

#url_encode ⇒ Object

# File 'lib/snackhack2/bypass_403.rb', line 60

def url_encode
  web_request('%2e')
end

#web_request(bypass) ⇒ Object

# File 'lib/snackhack2/bypass_403.rb', line 30

def web_request(bypass)
  File.readlines(@wordlist).each do |r|
    r = r.strip
    Async do
      url = File.join(@site, bypass, r)
      r = Snackhack2.get(url)
      puts url
      puts r.code
      puts "\n"
    end
  end
end