nuclei
nuclei copied to clipboard
Please support obfuscated encoding and kuo z for http posts
For http post data, the ability of WAF has been enhanced
- If it is not Chunked or Multipart at present, perform Chunked and Multipart obfuscation encoding.
- It is already Chunked, perform Transfer-Encoding: compress-deflate encoding
- It is already Multipart. If it is regular form data, you can try to use Chunked for encoding.
- Of course, there is also the encoding of the url path
- Send data using IBM037 and utf7 encoding
I believe there are many coding methods to bypass WAF. @tarunKoyalwar build_request.go
I originally wanted to try to participate, contribute, and complete this work. But I found that my energy was limited