rebind-server

command module
v0.0.0-...-1b9596d Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jun 9, 2023 License: BSD-3-Clause-Clear Imports: 6 Imported by: 0

README

This is a web server that will shut off in response to requests to /block. This is useful for exploiting DNS rebinding against Chrome and Edge, as described in the accompanying blog post.

Installation

Ensure that you have golang properly installed, and then install this tool with:

go get github.com/intruder-io/rebind-server@latest

Usage

The port to listen on can be specified with -p, and the directory to serve files from can be specified with -a (default ./assets). So, to listen on port 9000, serving files from ./my-exploit, you can run:

rebind-server -p 9000 -a ./my-exploit

The server will shut off after a request is made to /block. While testing, it can often be helpful to run the server in a loop:

while :; do rebind-server -p 8080; sleep 2; done

You will likely have to run this server directly on the host - TCP forwarding won't work.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.