绕过某云WAF防重放检查的脚本
原理是利用py代码实现了网站给请求包加时间戳签名的过程,填入token和hex值便可通过此脚本计算出sign参数值,再将sign值填入请求包内发送即可伪造签名绕过某云的防重放检查
token值抓包获取,hex使用F12在网站前端获取
-
Notifications
You must be signed in to change notification settings - Fork 0
OracleNep/Prevent-re-release-bypass
About
绕过某云waf抓包检测放重发机制脚本
Topics
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published