Origin detection not work

Question

Origin detection not work

istefy opened this issue 5 years ago · 2 comments

test rule:

id: test
info:
  name: Test 
  risk: Critical
type: fuzz

payloads:
    - 'test'

requests:
  - generators:
      - Query("[[.original]]{{.payload}}")
    detections:
      - OriginResponseTime() > 0

jaeles scan -s test.yaml -u https://example.com\?param\=1 -v --debug
Jaeles beta v0.7 by @j3ssiejjj
[0000]  INFO Load config from: /root/.jaeles/config.yaml
[0000]  INFO Summary output: out/jaeles-summary.txt
[0000]  INFO Signatures Loaded: 1
[0000]  INFO Signature Loaded: test.yaml
[0000]  INFO Start Scan with ID: 61343531626561382d376436302d313165612d613733392d393630303030313263303833
[0000]  INFO Input Loaded: 1
[0000] DEBUG Checking backround task
[0000] DEBUG Generator: Query("[[.original]]test")
[0000] DEBUG injectedString: [[.original]]test
[0000] DEBUG paramName: undefined
[0000] DEBUG New Parsed Reuqest: 1
[Sent] GET https://example.com?param=1test 200 OK HTTP/1.1 0.42473274
[0000] DEBUG Detection: OriginResponseTime() > 0

istefy commented 5 years ago

Thanks

Answer 1 · 2020-04-13T09:18:07.000Z

You need to define an origin section like this

id: test
info:
  name: Test
  risk: Critical
type: fuzz

origin:
  method: GET
  redirect: false
  headers:
    - User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55
  url: >-
    {{.BaseURL}}

payloads:
  - "test"

requests:
  - generators:
      - Query("[[.original]]{{.payload}}")
    detections:
      - OriginResponseTime() > 0