Reduce false-positives in Open Redirect regexes

[JorianWoltjer]

Template / PR Information

I noticed a large number of false positives in a large-scale scan I did with the nuclei templates. This was primarily due to most regexes counting a Location header like the following as an open redirect:

Location: interact.sh

But this actually redirects to the relative path /interact.sh instead of being an open redirect. In the original regex, the protocol prefix was optional, but it should actually be required.

The change is simply as follows (regex101):

Before: (?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/?(\/|[^.].*)?$
After:  (?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/?(\/|[^.].*)?$

In the commits, I made the change to all regexes that used the optional protocol because they are all incorrect. See the files changed for all templates that are affected.

Template Validation

I've validated this template locally?

• YES
• NO

[DhiyaneshGeek]

Hi @JorianWoltjer Thank you so much for updating the template and fixing the false positive

Cheers 🍻