Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix rate limiting does not work on query fuzzing #3532

Merged
merged 2 commits into from
Apr 12, 2023
Merged

Fix rate limiting does not work on query fuzzing #3532

merged 2 commits into from
Apr 12, 2023

Conversation

RamanaReddy0M
Copy link
Contributor

@RamanaReddy0M RamanaReddy0M commented Apr 12, 2023
edited
Loading

Proposed changes

#3458 Rate Limiting not working on Query Fuzzing

Checklist

  • Pull request is created against the dev branch
  • All checks passed (lint, unit/integration/regression tests etc.) with my changes
  • I have added tests that prove my fix is effective or that my feature works
  • I have added necessary documentation (if appropriate)

@RamanaReddy0M RamanaReddy0M linked an issue Apr 12, 2023 that may be closed by this pull request
Rate Limiting not working on Query Fuzzing #3458
Closed
@RamanaReddy0M RamanaReddy0M self-assigned this Apr 12, 2023
ShubhamRasal
ShubhamRasal approved these changes Apr 12, 2023
View reviewed changes
Copy link
Contributor

@ShubhamRasal ShubhamRasal left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm -

❯ cat /tmp/query.txt |./nuclei -t ~/fuzzing-templates/ -m -rl 5 -silent
[open-redirect] [http] [medium] http://127.0.0.1:8082/redirect?redirect_url=https://evil.com
[reflected-xss] [http] [medium] http://127.0.0.1:8082/request?url=https://example.com'"><41577
[reflected-xss] [http] [medium] http://127.0.0.1:8082/email?text=important_user'"><85775
[reflected-xss] [http] [medium] http://127.0.0.1:8082/info?name=redirected_from_url'"><35932

❯ curl http://localhost:9092/metrics | jq
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   184  100   184    0     0   204k      0 --:--:-- --:--:-- --:--:--  179k
{
  "duration": "0:00:04",
  "errors": "0",
  "hosts": "7",
  "matched": "0",
  "percent": "1",
  "requests": "20",
  "rps": "5",
  "startedAt": "2023-04-12T21:43:22.709358756+05:30",
  "templates": "16",
  "total": "1015"
}

@ehsandeep ehsandeep merged commit 6ffdfcf into dev Apr 12, 2023
@ehsandeep ehsandeep deleted the issue-3458-rate-limiting-not-work-on-query-fuzzing branch April 12, 2023 18:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ehsandeep ehsandeep ehsandeep approved these changes

@ShubhamRasal ShubhamRasal ShubhamRasal approved these changes

Assignees

@RamanaReddy0M RamanaReddy0M

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Rate Limiting not working on Query Fuzzing
3 participants
@RamanaReddy0M @ehsandeep @ShubhamRasal