GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → p0dalirius → ipsourcebypass

p0dalirius / ipsourcebypass

Licence: other
This Python script can be used to bypass IP source restrictions using HTTP headers.

Programming Languages

python
139335 projects - #7 most used programming language

Labels

httptoolippentestingheadersbugbountybypass

Projects that are alternatives of or similar to ipsourcebypass

requests-ip-rotator
A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
Stars: ✭ 323 (-0.92%)
Mutual labels:  ip, bugbounty, bypass
allsafe
Intentionally vulnerable Android application.
Stars: ✭ 135 (-58.59%)
Mutual labels:  bugbounty, bypass
Payloadsallthethings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+9994.79%)
Mutual labels:  bugbounty, bypass
Allaboutbugbounty
All about bug bounty (bypasses, payloads, and etc)
Stars: ✭ 758 (+132.52%)
Mutual labels:  bugbounty, bypass
Pentest Guide
Penetration tests guide based on OWASP including test cases, resources and examples.
Stars: ✭ 1,316 (+303.68%)
Mutual labels:  bugbounty, bypass
Asnip
ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Stars: ✭ 126 (-61.35%)
Mutual labels:  ip, bugbounty
Android Reports And Resources
A big list of Android Hackerone disclosed reports and other resources.
Stars: ✭ 590 (+80.98%)
Mutual labels:  bugbounty, bypass
x-frame-options
x-frame-options bypass
Stars: ✭ 29 (-91.1%)
Mutual labels:  headers, bypass
Hosthunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (+30.98%)
Mutual labels:  ip, bugbounty
Information collection handbook
Handbook of information collection for penetration testing and src
Stars: ✭ 447 (+37.12%)
Mutual labels:  ip, bypass
Cloudmare
Cloudflare, Sucuri, Incapsula real IP tracker.
Stars: ✭ 213 (-34.66%)
Mutual labels:  ip, bypass
koa-ip-filter
koa middleware to filter request IPs or custom ID with glob patterns, array, string, regexp or matcher function. Support custom 403 Forbidden message and custom ID.
Stars: ✭ 23 (-92.94%)
Mutual labels:  ip
DDos-Attack-OVH-
Powerful DDoS Attack
Stars: ✭ 155 (-52.45%)
Mutual labels:  bypass
IPpy
🚀 Ping IP addresses and domains in parallel to find the accessible and inaccessible ones.
Stars: ✭ 54 (-83.44%)
Mutual labels:  ip
wordlist generator
Unique wordlist generator of unique wordlists.
Stars: ✭ 41 (-87.42%)
Mutual labels:  bugbounty
credcheck
Credentials Checking Framework
Stars: ✭ 50 (-84.66%)
Mutual labels:  bugbounty
IAT API
Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.
Stars: ✭ 63 (-80.67%)
Mutual labels:  bypass
py-scripts-other
A collection of some of my scripts
Stars: ✭ 79 (-75.77%)
Mutual labels:  bugbounty
Spoofmac
💼 Change your MAC address for debugging
Stars: ✭ 2,687 (+724.23%)
Mutual labels:  ip
Mercury
Mercury is a hacking tool used to collect information and use the information to further hurt the target
Stars: ✭ 236 (-27.61%)
Mutual labels:  ip
View All Similar Projects ➔

ipsourcebypass

This Python script can be used to bypass IP source restrictions using HTTP headers.
GitHub release (latest by date) YouTube Channel Subscribers

Features

  • 17 HTTP headers.
  • Multithreading.
  • JSON export with --json outputfile.json.
  • Auto-detecting most successful bypasses.

Usage

$ ./ipsourcebypass.py -h
[~] IP source bypass using HTTP headers, v1.2

usage: ipsourcebypass.py [-h] [-v] -i IP [-t THREADS] [-x PROXY] [-k] [-L] [-j JSONFILE] [-C] [-H HEADERS] [-S] url

This Python script can be used to test for IP source bypass using HTTP headers

positional arguments:
  url                   e.g. https://example.com:port/path

optional arguments:
  -h, --help            show this help message and exit
  -v, --verbose         arg1 help message
  -i IP, --ip IP        IP to spoof.
  -t THREADS, --threads THREADS
                        Number of threads (default: 5)
  -x PROXY, --proxy PROXY
                        Specify a proxy to use for requests (e.g., http://localhost:8080)
  -k, --insecure        Allow insecure server connections when using SSL (default: False)
  -L, --location        Follow redirects (default: False)
  -j JSONFILE, --jsonfile JSONFILE
                        Save results to specified JSON file.
  -C, --curl            Generate curl commands for each request.
  -H HEADERS, --header HEADERS
                        arg1 help message
  -S, --save            Save all HTML responses.

Auto-detecting responses that stands out

Results are sorted by uniqueness of their response's length. This means that the results with unique response length will be on top, and results with response's length occurring multiple times at the bottom:

Two different result lengths Four different result lengths

Contributing

Pull requests are welcome. Feel free to open an issue if you want to add other features.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].