exploitio
exploitio
Hi, There is a problem on overriding `Host` Header ``` ./katana -u "http://o7waj64ndoxykgdbkqn9ocltokubi36s.oastify.com" -H "Host: TEST.o7waj64ndoxykgdbkqn9ocltokubi36s.oastify.com" -H "NEW-HEADER: NEW-HEADER" ``` We don't see any change in host header. (Check Image)
Katana JSONL file has issues on saving `POST` requests, for Example: ``` {"timestamp":"2024-05-02T16:28:07.690561274Z","request":{"method":"POST","endpoint":"http://testphp.vulnweb.com/secured/newuser.php","body":"signup=signup\u0026uuname=katana\u0026upass=katanaP@assw0rd1\u0026upass2=katanaP@assw0rd1\u0026urname=katana\u0026ucc=katana\u0026uemail=katana\u0026uphone=katana","headers":{"Content-Type":"application/x-www-form-urlencoded"},"tag":"form","attribute":"action","source":"http://testphp.vulnweb.com/signup.php","raw":"GET /secured/newuser.php HTTP/1.1\r\nHost: testphp.vulnweb.com\r\nUser-Agent: Go-http-client/1.1\r\nCookie: PHPSESSIONID=XXXXXXXXX\r\nHost-Header: hostname.tld\r\nX-Api-Key: XXXXX\r\nX-Powered-By: Raider\r\nAccept-Encoding: gzip\r\n\r\n"},"response":{"status_code":200,"headers":{"x_powered_by":"PHP/5.6.40-38+ubuntu20.04.1+deb.sury.org+1","content_encoding":"gzip","server":"nginx/1.19.0","date":"Thu, 02 May 2024 16:28:05 GMT","content_type":"text/html; charset=UTF-8","transfer_encoding":"chunked","connection":"keep-alive"},"body":"\u003chtml\u003e\u003chead\u003e\n\u003ctitle\u003eadd new user\u003c/title\u003e\n\u003cmeta...
when using `-store-field` katana stores data in a hardcoded location: `katana_field` We need some sort of customizability for the saving Directory for example: ``` katana /u sample.tld -store-field dir,file,path,key,value -store-field-dir...
I use `katana` for gathering `passive` and `active` crawling. There is no `raw` field in `passive` data: ``` {"timestamp":"2024-05-02T16:28:34.259259353Z","request":{"method":"GET","endpoint":"http://testphp.vulnweb.com:80/artists.php?artist=2"},"response":{"status_code":200,"headers":{}},"passive":{"source":"waybackarchive","reference":"http://web.archive.org/cdx/search/cdx?url=*.http://testphp.vulnweb.com/*\u0026output=txt\u0026fl=original\u0026collapse=urlkey"}} ``` and when we run `nuclei` on these requests, it can't...
In this request, we should have `username` and `password` but there is nothing in the body! ``` {"timestamp":"2024-05-04T11:06:04+03:30","url":"http://testphp.vulnweb.com/userinfo.php","request":{"header":{"Accept":"text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8","Accept-Encoding":"gzip, deflate","Accept-Language":"en-US,en;q=0.5","Connection":"close","Content-Length":"21","Content-Type":"application/x-www-form-urlencoded","Origin":"http://testphp.vulnweb.com","Referer":"http://testphp.vulnweb.com/login.php","Upgrade-Insecure-Requests":"1","User-Agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:125.0) Gecko/20100101 Firefox/125.0","host":"testphp.vulnweb.com","method":"POST","path":"/userinfo.php","scheme":"http"},"raw":"POST http://testphp.vulnweb.com/userinfo.php HTTP/1.1\r\nAccept:...