The Tool is not producing intended result

Question

The Tool is not producing intended result

Closed this issue 6 months ago · 2 comments

sn1p3rt3s7 commented 6 months ago

Hi,

Command:
prips 93.184.215.0/28 | ./hakoriginfinder -h http://example.com/index.html | grep -v "NOMATCH"

Issue: Matching all the IP addresses given in 93.184.215.0/24 range

The expected output should be
MATCH for 93.184.215.14 and NOMATCH for others

Answer 1 · 2024-06-21T10:21:27.000Z

Looks like all the other IP addresses in the subnet range accept the host header and loads example.com page. All part of same Organization 🤔

Answer 2 · 2024-06-21T10:28:05.000Z

Hey, this is working exactly as intended.

If you check manually with curl, the response from all of these IPs with the Host header set to example.com is identical to the response of navigating to example.com directly.

Here's a diff to prove it:

/$ diff <(curl -s -H "Host: example.com" 93.184.215.11) <(curl -s example.com)
/$ diff <(curl -s -H "Host: example.com" 93.184.215.10) <(curl -s example.com)
/$