Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

0xAwali/UnkeyInput

BranchesTags

Repository files navigation

Unkey Input

Burp suite extension to find unkey headers OR parameters

UnkeyInput UnkeyInput

UnkeyInput

Features

1 - Unique cache key per every request

  • Random _parameter , _Cookie and User-Agent
  • Remove If-Modified-Since and If-None-Match

2 - add top HTTP headers to your incoming HTTP requests

GET /?_parameter=372586408566 HTTP/1.1
Host: 0ad800b603698249817511ea0076000a.web-security-academy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/372586408566 Safari/372586408566
Cookie: _Cookie=372586408566
Pragma: akamai-x-check-cacheable,akamai-x-cache-on
Fastly-Debug: 1
X-Http-Forwarded-For: X-Http-Forwarded-For-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Forwarded-For-Original: X-Forwarded-For-Original-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Forwarded-Client-Ip: X-Forwarded-Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Cluster-Client-Ip: X-Cluster-Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Original-Forwarded-For: X-Original-Forwarded-For-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Wap-Client-Ip: X-Wap-Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
Fastly-Client-Ip: Fastly-Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Client-Ip: X-Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Wap-Profile: X-Wap-Profile-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Proxyuser-Uri: X-Proxyuser-Uri-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Remote-Ip: X-Remote-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Wap-Network-Client-Ip: X-Wap-Network-Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Originating-Ip: X-Originating-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
Client-Ip: Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Host: X-Host-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Forwarded-Uri: X-Forwarded-Uri-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
Cf-Connecting-Ip: Cf-Connecting-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-True-Ip: X-True-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Rewrite-Url: X-Rewrite-Url-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Original-Url: X-Original-Url-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Proxyuser-Ip: X-Proxyuser-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Proxyuser-Host: X-Proxyuser-Host-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
Referer: Referer-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Forwarded-Host: X-Forwarded-Host-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Remote-Addr: X-Remote-Addr-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Original-Host: X-Original-Host-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Originating-Host: X-Originating-Host-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
True-Client-Ip: True-Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Real-Host: X-Real-Host-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
Akamai-Client-Ip: Akamai-Client-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Forwarded-Path: X-Forwarded-Path-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Original-Cookie: X-Original-Cookie-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Forwarded-By: X-Forwarded-By-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
Forwarded: Forwarded-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Forwarded-For: X-Forwarded-For-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Original-User-Agent: X-Original-User-Agent-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Real-Ip: X-Real-Ip-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Forwarded-Server: X-Forwarded-Server-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E
X-Original-Referer: X-Original-Referer-<xss>%3Cxss%3E%253Cxss%253E\u003Cxss\u003E

3 - Contain context menu to fuzz

  • TitleCase Headers
  • LowerCase Headers
  • UpperCase Headers
  • Hyphen to Underscore
  • Duplicate Headers
  • Hex to Headers
    • Hex Before Headers
    • Hex After Headers
  • Duplicate Header With Space
  • Fuzz Parameters
    • Query
    • Body
  • Fuzz Cookie

Reference

Beyond Web Caching Vulnerabilities

© Copyright

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

16 stars

Watchers

1 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages
Morty Proxy This is a proxified and sanitized view of the page, visit original site.