add ACAO headers to root endpoint #662

dogancanbakir · 2023-09-15T14:14:44Z

Closes #441.

$ go run main.go -d test

    _       __                       __       __  
   (_)___  / /____  _________ ______/ /______/ /_ 
  / / __ \/ __/ _ \/ ___/ __ '/ ___/ __/ ___/ __ \
 / / / / / /_/  __/ /  / /_/ / /__/ /_(__  ) / / /
/_/_/ /_/\__/\___/_/   \__,_/\___/\__/____/_/ /_/

                projectdiscovery.io

[INF] Current interactsh version 1.1.6 (latest)
[INF] Public IP: X.X.X.X
[INF] Outbound IP: 172.17.0.3
1.6947870352740743e+09  info    maintenance     started background certificate maintenance      {"cache": "0x4000480880"}
[INF] Requesting SSL Certificate for:  [*.test, test]
1.6947870352760246e+09  info    obtain  acquiring lock  {"identifier": "*.test"}
1.6947870353403864e+09  info    obtain  lock acquired   {"identifier": "*.test"}
1.6947870353405929e+09  info    obtain  obtaining certificate   {"identifier": "*.test"}
1.694787035341121e+09   info    obtain  releasing lock  {"identifier": "*.test"}
[ERR] An error occurred while applying for a certificate, error: [*.test] Obtain: subject does not qualify for a public certificate: *.test
[ERR] Could not generate certs for auto TLS, https will be disabled
[INF] Listening with the following services:
[DNS] Listening on UDP 172.17.0.3:53
[HTTP] Listening on TCP 172.17.0.3:80
[DNS] Listening on TCP 172.17.0.3:53
[LDAP] Listening on TCP 172.17.0.3:389
[SMTPS] Listening on TCP 172.17.0.3:587
[SMTP] Listening on TCP 172.17.0.3:25
[HTTPS] Listening on TCP 172.17.0.3:443
[ERR] Could not serve http on tls: open : no such file or directory

$ curl -I 172.17.0.3
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, Authorization
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=utf-8
Server: test
X-Interactsh-Version: 1.1.6
Date: Fri, 15 Sep 2023 14:13:41 GMT
Content-Length: 646

ehsandeep

curl -v ck41ndkdiuf6mi6263q0g1ggbcs8qqhoq.hackwithautomation.com
*   Trying 157.230.223.165:80...
* Connected to ck41ndkdiuf6mi6263q0g1ggbcs8qqhoq.hackwithautomation.com (157.230.223.165) port 80 (#0)
> GET / HTTP/1.1
> Host: ck41ndkdiuf6mi6263q0g1ggbcs8qqhoq.hackwithautomation.com
> User-Agent: curl/8.1.2
> Accept: */*
> 
< HTTP/1.1 200 OK
< Access-Control-Allow-Credentials: true
< Access-Control-Allow-Headers: Content-Type, Authorization
< Access-Control-Allow-Origin: *
< Content-Type: text/html; charset=utf-8
< Server: hackwithautomation.com
< X-Interactsh-Version: 1.1.6
< Date: Mon, 18 Sep 2023 09:43:30 GMT
< Content-Length: 72
< 
* Connection #0 to host ck41ndkdiuf6mi6263q0g1ggbcs8qqhoq.hackwithautomation.com left intact
<html><head></head><body>qohqq8scbgg1g0q3626im6fuidkdn14kc</body></html>

add ACAO headers to root endpoint

3dff99a

dogancanbakir self-assigned this Sep 15, 2023

dogancanbakir linked an issue Sep 15, 2023 that may be closed by this pull request

No ACAO header returned as specified in interactsh-server #441

Closed

dogancanbakir requested a review from ehsandeep September 15, 2023 14:15

ehsandeep approved these changes Sep 18, 2023

View reviewed changes

ehsandeep merged commit 0aed1de into dev Sep 18, 2023
8 checks passed

ehsandeep deleted the add_acao_headers_to_root_endpoint branch September 18, 2023 09:44

ehsandeep added the Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors. label Sep 18, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

add ACAO headers to root endpoint #662

add ACAO headers to root endpoint #662

dogancanbakir commented Sep 15, 2023

ehsandeep left a comment

add ACAO headers to root endpoint #662

add ACAO headers to root endpoint #662

Conversation

dogancanbakir commented Sep 15, 2023

ehsandeep left a comment

Choose a reason for hiding this comment