Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
question on redirects
Posted by: dwhite
Date: January 31, 2009 10:30PM

Is it possible to have a browser load a url but not follow any redirects?

Options: ReplyQuote
Re: question on redirects
Posted by: clayfox
Date: February 01, 2009 01:25PM

There are header-based redirects, and body-based redirects (these are my own terms).

Header-based redirects have a "location" attribute that is returned in an http response. This one you can stop on your own browser by catching and removing the header via a proxy. It is hard to stop this on someone else's browser. You could try HTTP response splitting attacks, but I can't think of another way.

Body-based redirects employ some client-side script (javascript, Flash, etc.) to do the work and are included in the body of the HTTP response. Obviously, if you stop the client-side script from running, then you stop the redirect from happening.

On your own browser you can do this by disabling the scripting language in your browser, catching the response and stripping the client-side redirection code from it, finding a XSS solution to break the redirection logic, or finding some page specific control mechanism that stops the redirect from happening (like having the correct cookie).

On someone else's browser (perhaps that you are pointing at a resource via a CSRF attack), it can be a bit harder. Again, catching the response and stripping the client-side redirection code from it (if you are making the request from inside the same domain, of course), finding XSS solutions, or finding some page specific mechanism that stops the redirect are the first solutions that come to mind.


Which type of redirect are you trying to circumvent? Also, what is causing the redirect (lack of a cookie or URL token, or something specific to the page)?

-clayfox

Options: ReplyQuote


Sorry, only registered users may post in this forum.