Bypassing a WAF by Finding the Origin IP
Ғылым және технология
Hi, thanks for watching our video about Bypassing Web Application Firewall !
In this video we’ll walk you through:
- What's a Web Application Firewall (WAF) ?
- How WAFs are structured ?
- How could a misconfiguration lead to a security issue ?
- How to find the Origin IP behind a WAF ?
- How could we automate the process ?
- How to properly configure a WAF to avoid those issues ?
This video couldn't have been made without the motivation of 0xtavian ❤️
LINKS
cf-bypass:
- github.com/Roni-Carta/cf-bypass
More about finding Origin IPs:
- blog.detectify.com/2019/07/31...
Security Trails:
- hubs.ly/Q017hXv60
Security Trails Referral Code:
- securitytrails.com/bug-bounty...
Cloudflare Documentation:
- www.cloudflare.com/ips/
- developers.cloudflare.com/
TIMESTAMPS
0:00 Intro
0:59 WAF Example: Cloudflare
1:45 How a WAF works ?
2:39 Possible Misconfiguration
2:59 What's the Origin IP ?
3:50 How to verify this issue ?
4:23 Favicon.ico Technique
5:11 Using Security Trails
6:30 Examples of Tools
7:01 cf-bypass
8:31 Impact in Bug Bounties
10:32 How to mitigate this issue ?
14:06 Surprise ???
ABOUT THE CHANNEL
The channel is about cybersecurity. We cover lots of cool stuff such as bug bounty hunting, cool vulnerabilities and breaking stuff for fun !
Follow me on Twitter:
/ 0xlupin
Don’t forget to subscribe!
CREDITS:
Presented by: Roni Carta alias Lupin
Sponsored By: Security Trails
With the Participation of: Cloudflare
Directed by: Roni Carta
Written by: Roni Carta
Featuring: Roni Carta & Tobias Rohrle
Edited by: Roni Carta
Music by: Roni Carta
3D Model by: Pudding_King
Thumbnail by: Justicia Satria
Sound Effects: Mixkit
Additional Footages: Pexels
Guest Star: LiveOverflow
Inspired by:
LiveOverflow, InsiderPHD
Stök, Sylvqin, Detectify
Пікірлер: 69
The quality in this video is awesome. I can't wait to see more from you.
@0xlupin
2 жыл бұрын
Cheers ! I'll try to improve the quality too hehe ;D
@KarIm-di4od
Жыл бұрын
@@0xlupin help me plz??
your content is pure gold literally
Very clear presentation. Bravo!
Very nice video, very nice edit and very interesting topic! I am very excited to see the upcoming videos!
@0xlupin
2 жыл бұрын
I'm really glad you liked it :D
Great Content :) looking forward to more of your videos. Also Liveoverflow in the end XD
@0xlupin
2 жыл бұрын
Thanks I'll try to improve the content in the future. And yeah LiveOverflow made me laugh so much haha
Niceeee video Lupin Very informative!!! I like a lot your videos, keep going boss 👌
@0xlupin
2 жыл бұрын
Thanks a lot, we'll do my best ;D
רוני האלוףףף גאה בך♥
also reduce the volume for the background music a bit
@0xlupin
2 жыл бұрын
Thanks for the feedback ! ;D
@vrvrvr81
2 жыл бұрын
@@0xlupin I would also drop the 3D video effects. I know they are cool but it hurts eyes :(
Very helpful ! Thank for sharing :)
@0xlupin
2 жыл бұрын
Thanks for the feedback. Glad it helped :)
This is a great video! Keep it up!
@0xlupin
2 жыл бұрын
Will do !
Great video!!!!!
Very nice explanation, and guest! Plus, awesome song! :3 Old-school. Hehe. I was born in 89. :3
Cheers for this awesome post .I finally got an excellent result will this lovely method when I tried it.I am enjoying it now
@0xlupin
2 жыл бұрын
That's awesome ! I hope you'll manage to use this method in Bug Bounties or Pentesting :)
Thank you sir, Great stuffs
@0xlupin
2 жыл бұрын
Cheers ! :)
Great insights!
@0xlupin
2 жыл бұрын
Thanks !
@scrumtuous
2 жыл бұрын
@@0xlupin You're welcome!
Great video 🔥🔥🔥
@0xlupin
2 жыл бұрын
🔥
Good video. I love the favicon method
@0xlupin
2 жыл бұрын
Thanks ! :D
This is why you lock down traffic to the origin IP to CloudFlare’s IP ranges.
@thighdude7
2 жыл бұрын
Exactly - don't reveal IP through other DNS records such as MX
Outstanding
Useful thank you
@0xlupin
2 жыл бұрын
Glad you liked it !
Oh LIveOverflow à la fin
Votre surnom sur YT suscite des attentes, mais elles ont été satisfaites. Continuez comme ça...
@0xlupin
2 жыл бұрын
Je suis content d'être à la hauteur alors ;)
subtitles be: "if you are a pentester or by green tea hunter...." 🤨🤔
@0xlupin
2 жыл бұрын
Green tea and hacking works well ;)
You rock 🤘
@0xlupin
2 жыл бұрын
😍
@hamza77v
2 жыл бұрын
@@0xlupin please do upload a few beginner guides as well. Much needed ☺️☺️☺️
What to do when it says please set a security_trails_api_ key in your environment variables
I was like wtf where did liveoverflow came from 😂😂😂
👌
@0xlupin
2 жыл бұрын
👌
hey thanks for the video: one simple question, how do you set the environmental variable?? :)
@AlonsoIsidoroRoman
2 жыл бұрын
export SECURITY_TRAIL_API_KEY=your_api_key
@0xlupin
2 жыл бұрын
Thanks for answering ! Indeed you need to add the variable to your env
Very nice presentation but it'll be nice if you keep the video short
@0xlupin
2 жыл бұрын
Thanks for the feedback :)
Bro it's information video but the edit makes it a yt random video with all these colors and music
@0xlupin
2 жыл бұрын
I don't know if this is positive or not, but that's what we were aiming for :D
Yo good video, but too many Colors fucking my eyes and the music is little bit to loud, but good video content
@0xlupin
2 жыл бұрын
Cheers for the feedbacks ! Def going to tone down the music ;)
It looks like the script is not working at all.
@0xlupin
2 жыл бұрын
That's maybe because when it doesn't find anything it returns nothing. I might need to add a finish message 0__0
@AlonsoIsidoroRoman
2 жыл бұрын
@@0xlupin Yes, i tried with an ip behind Cloudflare. Shodan and censys show that IP is behind cloudflare.
@0xlupin
2 жыл бұрын
@@AlonsoIsidoroRoman If your target is not vulnerable then the tool will not print anything back :)
@AlonsoIsidoroRoman
2 жыл бұрын
@@0xlupin what makes vulnerable to a target behind Cloudflare?
Please make beginner 2 advance level practical live website bug hunting, live website penetration testing, live website exploitation content video series... 🙏 😊 💯✌❤💚💙💜😍😘🤝
@0xlupin
2 жыл бұрын
That's a lot of stuff haha
@Free.Education786
2 жыл бұрын
@@0xlupin Thanks 😊 🙏 😘 ☺️ 💕 ❤️
only crap is found
this video is futile unless it has no practical in it