[Owasp-leaders] Apache Byte Range Server DoS

Munir Njiru munir.njiru at owasp.org
Fri Jul 22 08:00:11 UTC 2016


Hi All,
Thought you might find this nice. This is a none invasive version of the
exploit that restricts the byte ranges to 11 bytes to avoid a full DoS ,
good for a PoC to show that the vulnerability is there without damage. :)

https://github.com/alienwithin/php-utilities/tree/master/apache-byte-range-server-dos

Kind Regards,
-- 
Munir Njenga,
OWASP Chapter Leader (Kenya) || Information Security Consultant || Developer
Mob   (KE) +254 (0) 734960670

=============================
Chapter Page: www.owasp.org/index.php/Kenya
Email: munir.njiru at owasp.org
Facebook: https://www.facebook.com/OWASP.Kenya
Mailing List: https://lists.owasp.org/mailman/listinfo/owasp-Kenya
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20160722/ba5f8cac/attachment.html>


More information about the OWASP-Leaders mailing list