• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
LLODO – Education and technology

LLODO - Education and technology

Find your international education - university and college study education programs, student Exam, and course information.

  • Technology News
  • Blog Anony
  • Technology Quiz
You are here: Home / Blog Anony / Change Header to Bypass WAF when scanning Website vulnerabilities with Scan Tools

Change Header to Bypass WAF when scanning Website vulnerabilities with Scan Tools

05/06/2022 by admin Leave a Comment

When using software to scan for security holes, it usually won’t get through the WAF trick wall, just sending the first request is blocked, including crawling. You can bypass WAF by changing the packet’s header with one of the following headers. Depending on each Scan Tool, there will be different ways to change.

In addition to changing the Header, you need to pay attention to adjust Chrome’s user-agent, encoding to UTF-8, reduce the frequency of sending Request. Thus, the ability to Bypass WAF by tool scan vulnerability will be more effective.

List of Headers used to Bypass WAF

X-Forwarded-Host
X-Forwarded-Port
X-Forwarded-Scheme
Origin:
nullOrigin: [siteDomain].attacker.com
X-Frame-Options: Allow
X-Forwarded-For: 127.0.0.1
X-Client-IP: 127.0.0.1
Client-IP: 127.0.0.1
Proxy-Host: 127.0.0.1
Request-Uri: 127.0.0.1
X-Forwarded: 127.0.0.1
X-Forwarded-By: 127.0.0.1
X-Forwarded-For: 127.0.0.1
X-Forwarded-For-Original: 127.0.0.1
X-Forwarded-Host: 127.0.0.1
X-Forwarded-Server: 127.0.0.1
X-Forwarder-For: 127.0.0.1
X-Forward-For: 127.0.0.1
Base-Url: 127.0.0.1
Http-Url: 127.0.0.1
Proxy-Url: 127.0.0.1
Redirect: 127.0.0.1
Real-Ip: 127.0.0.1
Referer: 127.0.0.1
Referrer: 127.0.0.1
Refferer: 127.0.0.1
Uri: 127.0.0.1
Url: 127.0.0.1
X-Host: 127.0.0.1
X-Http-Destinationurl: 127.0.0.1
X-Http-Host-Override: 127.0.0.1
X-Original-Remote-Addr: 127.0.0.1
X-Original-Url: 127.0.0.1
X-Proxy-Url: 127.0.0.1
X-Rewrite-Url: 127.0.0.1
X-Real-Ip: 127.0.0.1
X-Remote-Addr: 127.0.0.1
X-Custom-IP-Authorization:127.0.0.1
X-Originating-IP: 127.0.0.1
X-Remote-IP: 127.0.0.1
X-Original-Url:
X-Forwarded-Server:
X-Host:
X-Forwarded-Host:
X-Rewrite-Url:

In the following article, I will guide you to scan Website vulnerabilities with Nuclei and configure it to bypass WAF when blocked.

Filed Under: Blog Anony Tagged With: Anony Hack, News Tech Anony

Related posts:

  1. Tips to download blocked PDF and Word files on Google Drive
  2. How to turn an ordinary photo into a painting
  3. How to get TOTHOST’s 150K for free to create VPS/Hosting
  4. 82 Awesome Websites to Help You Learn Everything in Life
  5. 10 Basic Linux Commands for Newbies
  6. 12 search engines to help you discover the hidden Web
  7. 8 security risks when playing Online Games you need to know
  8. Use SpiderFoot to let OSINT find other people’s information on the Internet
  9. How to convert images to Excel with Vietnamese support
  10. Instructions for receiving gifts from Microsoft Rewards
  11. Google Opinion Rewards Monetization Guide – Opinion Rewards
  12. How to instantly receive 200,000 VND from KBank – KASIKORNBANK
  13. A little Writeup about the Ignite challenge
  14. Instructions for Adding Data WARP+ of App 1.1.1.1 for high-speed access
  15. How to install BullFrog Assistant – Green frog signs iOS certificate
  16. Create an alarm system when Website has problems with Uptime Kuma
  17. How to customize Windows 11 interface more like Windows 10
  18. Instructions to get 200,000 free courses of Udemy
  19. How to use InAppBrowser to check if your browser is tracking you?
  20. 3 ways to notify the Website is down / Downtime via Email and Telegram

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Recent Posts

  • In a trademark battle between an NFT artist and a big brand, Hermès, the artist just lost
  • How to Handle Challenging Behaviors in the Classroom
  • Spotify now lets you select which playlists you’d like to impact your recommendations less
  • The Role of Artificial Intelligence in Healthcare
  • Meet the prolific Russian espionage crew hacking spymasters and lawmakers




Categories

  • Blog Anony (438)
  • Blog Education (112)
  • Family and Friends 1 (63)
  • Family and Friends 2 (80)
  • Family and Friends 3 (80)
  • Family and Friends 4 (84)
  • Family and Friends 5 (82)
  • Grade 1 Math (61)
  • Grade 2 Math (96)
  • Grade 3 English (68)
  • Grade 3 Math (67)
  • Grade 4 English (68)
  • Grade 4 Math (77)
  • Grade 5 English (68)
  • Grade 5 Math (88)
  • Grade 6 English (104)
  • Grade 6 Math (67)
  • Grade 6 Physics (30)
  • Grade 7 English (104)
  • Grade 7 Math (57)
  • Grade 7 Physics (30)
  • Grade 8 Biology (64)
  • Grade 8 Chemistry (43)
  • Grade 8 English (104)
  • Grade 8 Math (75)
  • Grade 8 Physics (29)
  • Grade 9 Biology (63)
  • Grade 9 Chemistry (56)
  • Grade 9 English (104)
  • Grade 9 Math (61)
  • Grade 9 Physics (62)
  • Houseware (126)
  • Learning English (50)
  • Linux Quiz (300)
  • Software (31)
  • Technology News (10,131)
  • Technology Quiz (850)
  • Windows Quiz (200)

Copyright (c) 2023 · LLODO.COM - About Us - Privacy Policy - Contact Us - Site map
Link: Question Answer English - Hoc edu - QA Math