Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Stop brute-forcing for prefix if parameter names on the page are retrieved using a pattern #36

Open
Impact-I opened this issue Mar 10, 2023 · 0 comments
Open

Stop brute-forcing for prefix if parameter names on the page are retrieved using a pattern #36

Impact-I opened this issue Mar 10, 2023 · 0 comments
Assignees
@Sh1Yo
Labels
enhancement New feature or request

Comments

@Impact-I
Copy link

Impact-I commented Mar 10, 2023
edited

x8 version:

[INF] Current Version: 4.2.0

Current Behavior:

If the application processes parameter names using a pattern, then x8 continues iterating without defining a pattern and assigns each found parameter that matches this pattern the status of a new found parameter.

Expected Behavior:

Determine the substring to which the server responds and stop brute force of words in the wordlist that have this substring if the parameter names on the page are retrieved using a pattern.

Steps To Reproduce:

x8 -u "https://mobi.yandex.com/support/direct/strategies/priority-goals.html"

Output Found: document, forgotpassword,formParams, form_token, format, formatdistribution, formatdown, formats, formatted_date, formatup,formautosave,formbuildertestmodel,formdata,formfactor,formid,formname,formsubmit,formtoken,formtype_db,formtype_db_x,formtype_mail,formtype_mail_x,lang,query,service

Here the substring is a prefix containing the word "form"

The server generates a response on the page for the keyword form by issuing an array for js called formParams:

"formParams":{"form_token":"ttt","format":"ttt","formatdistribution":"ttt","formatdown":"ttt","formats":"ttt","formatted_date":"ttt","formatup":"ttt","formautosave":"ttt","formbuildertestmodel":"ttt","formdata":"ttt","formfactor":"ttt","formid":"ttt","formname":"ttt","formsubmit":"ttt","formtoken":"ttt","formtype_db":"ttt","formtype_db_x":"ttt","formtype_mail":"ttt","formtype_mail_x":"ttt"},"service":{"metric_counters":["21

You can find the formParams array in the response by following the link below:

https://mobi.yandex.com/support/direct/strategies/priority-goals.html?form_token=ttt&format=ttt&formatdistribution=ttt&formatdown=ttt&formats=ttt&formatted_date=ttt&formatup=ttt&formautosave=ttt&formbuildertestmodel=ttt&formdata=ttt&formfactor=ttt&formid=ttt&formname=ttt&formsubmit=ttt&formtoken=ttt&formtype_db=ttt&formtype_db_x=ttt&formtype_mail=ttt&formtype_mail_x=ttt&lann=ttt

OS: Windows 10, Ubuntu 18.04
@Sh1Yo Sh1Yo added invalid This doesn't seem right wontfix This will not be worked on enhancement New feature or request and removed invalid This doesn't seem right wontfix This will not be worked on labels Mar 10, 2023
@Sh1Yo Sh1Yo assigned Impact-I and Sh1Yo and unassigned Impact-I Mar 10, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Sh1Yo Sh1Yo

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Sh1Yo @Impact-I