oss-sec mailing list archives
Re: Checking existence of firewalled URLs via javascript's script.onload
From: Jeremy Stanley <fungi () yuggoth org>
Date: Thu, 20 Apr 2023 11:51:37 +0000
On 2023-04-20 10:58:42 +0300 (+0300), Georgi Guninski wrote: [...]
I can't imagine how can you check for open port/URL without javascript, can you give reference or explanation? You can make request, but without javascript you can't read the result.
If the attacker controls the destination, they can simply record whether the connection is successfully established at the remote end. While this may not tell them much about what specific hosts the victim has access to reach, it can easily leak general egress filtering information. -- Jeremy Stanley
Attachment:
signature.asc
Description:
Current thread:
- Checking existence of firewalled URLs via javascript's script.onload Georgi Guninski (Apr 19)
- Re: Checking existence of firewalled URLs via javascript's script.onload Peter Philip Pettersson (Apr 19)
- Re: Checking existence of firewalled URLs via javascript's script.onload Georgi Guninski (Apr 20)
- Re: Checking existence of firewalled URLs via javascript's script.onload Jeremy Stanley (Apr 20)
- Re: Checking existence of firewalled URLs via javascript's script.onload Georgi Guninski (Apr 20)
- Re: Checking existence of firewalled URLs via javascript's script.onload Peter Philip Pettersson (Apr 19)