Comments (2)
This is not a bug because there is an option to "force http on rawdata mode". Find the below reference the HTTP by default is set to false, If you need to send the HTTP request please use --http
so you can send a request via HTTP.
Command for force HTTP on rawdata mode
dalfox file --rawdata raw_request.txt --http --poc-type=http-request
Output
Reference
Line 267 in efcef0f
Please @hahwul close this issue.
from dalfox.
Hi @darshanpjpt
As @rudSarkar explained, when using rawdata, it is basically recognized as HTTPS and can be fixed as HTTP through flag. This is because you cannot identify whether HTTP or HTTPS was used in the Raw HTTP request.
As it is not a bug, I will close the issue. If there's a problem, please re-open it again :D
from dalfox.
Related Issues (20)
- onresize=alert(45) HOT 1
- Scanning Router Login pages HOT 2
- Testing script injection HOT 6
- Inconsistent output HOT 1
- --output-request is not working when raw request is provided as input
- Blind XSS not working
- Xss.ht file HOT 2
- [G] Found dalfox-google-api via built-in grepping HOT 1
- Dalfox Installation Issue
- Multi threading functionality
- Docker: Version of GLIBC dependencies is not met
- config parameter not working HOT 1
- Feature Request: Custom Injection Point Support in DalFox
- Bug with scan website HOT 1
- Using TOP SOCKS
- "Dalfox" is not a command HOT 1
- POC issue HOT 1
- Support to Caido's active workflows
- Add logging time for detecting blind xss
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dalfox.