Skip to content

KingOfBugbounty/Discovery-Header-Bug-Bounty

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits

.gitattributes

.gitattributes

 
 

.gitignore

.gitignore

 
 

200dds.txt

200dds.txt

 
 

README.md

README.md

 
 

requirements.txt

requirements.txt

 
 

results.txt

results.txt

 
 

searchHEADER.py

searchHEADER.py

 
 

Repository files navigation

👑 Discovery Header DoD Bug-Bounty

Did you know that DoD accepts server headers? 😲 (example: apache"version" , php"version") ?

In this code it is possible to extract all headers from the URLS. Tracking versions and being able to report as cwe-200 on hackerone.

the 200dds file is an example:

You can put your list of treated URLS.

asciicast

Install dependencies

git clone https://github.com/KingOfBugbounty/Discovery-Header-Bug-Bounty.git

cd Discovery-Header-Bug-Bounty

pip install -r requirements.txt

python3 searchHEADER.py -h

usage: searchHEADER.py [-h] help

positional arguments:
  help        Run to code = python3 searchHEADER.py FileToUrls

optional arguments:
  -h, --help  show this help message and exit

Project

Open Source? Yes! Telegram

Buy Me A Coffee

About

Discovery Header Bug Bounty to DoD

Resources

Readme
Activity

Stars

43 stars

Watchers

2 watching

Forks

17 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages