Technique:
Some useful filter evasion characters:
%0a%0d => CRLF
%00 => Nullbyte
%E2%80%AE => RTL Character (writes payloads backwards)
Tool:
https://github.com/gchq/CyberChef
Must Have!
Cyber Chef from the GCHQ aka the British CIA! Perfect for web application tests especially but also Internal and External Penetration Tests
Download HERE
Lecture:
Check out all the entries of this series!
- Technique Tool and Lecture #14
- Technique Tool and Lecture #13
- Technique, Tool and Lecture #12
- Technique, Tool and Lecture #11
- Technique Tool and Lecture #10
- Technique, Tool and Lecture #9
- Technique, Tool and Lecture #8
- Technique, Tool and Lecture #7
- Technique, Tool and Lecture #6
- Technique, Tool and Lecture #5
- Technique, Tool and Lecture #4
- Technique, Tool and Lecture #3
- Technique, Tool and Lecture #2
- Technique, Tool and Lecture #1
END TRANSMISSION