tilde_enum icon indicating copy to clipboard operation
tilde_enum copied to clipboard
verified publisher icon WebBreacher

error did not receive http respond 200 code

Open Rosle23 opened this issue 8 years ago • 4 comments

Hi, got 200 code back error, image Server is vulnerable and this script working well https://github.com/irsdl/IIS-ShortName-Scanner.... Server vulnerable with HTTP method OPTIONS. Is it able to choose a http method using Your code, or need to reprogram ?

Thanks

Rosle23 avatar Sep 29 '17 10:09 Rosle23

Thanks for reaching out. According to the response code that came back (403), it looks like you may have some authentication in front of this application. This script currently does not handle authenticated applications.

WebBreacher avatar Oct 02 '17 00:10 WebBreacher

Are you planning on supporting authenticated applications at any point?

EDIT: @Roslekas I'm not sure if you still need this issue resolved, but you can comment out the code 200 check to skip that part, though you'll need to use the "-f" option in order for this to work.

b4cktr4ck2 avatar Mar 19 '18 17:03 b4cktr4ck2

@1kozlovsas I am no longer actively developing/maintaining to this tool. I don't have the time or the systems set up to properly test any longer.

I'm happy to add community-supported submissions to it if people wish to submit.

WebBreacher avatar Mar 20 '18 01:03 WebBreacher

Just want to bring this one back up. @WebBreacher It also might be that the directory doesn't allow directory listings and there isn't a default page. I'm working on a app that has this vulnerability and the other two IIS scanners found the other directories but weren't as full featured as yours, but unfortunately I'm running into this issue as well.

mubix avatar Jan 11 '20 04:01 mubix