Skip to content

Commit 741bab1

Browse files
theinfosecguytheinfosecguy
authored
Create RateLimitBypass.md
Added Major Rate Limit Bypass Techniques
1 parent 125a85b commit 741bab1

File tree

1 file changed

+32
-0
lines changed

1 file changed

+32
-0
lines changed

RateLimitBypass.md

Lines changed: 32 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,32 @@
1+
# Rate Limit Bypass Techniques
2+
3+
## Rate Limit Bypass using Header
4+
5+
Use the following Header just Below the Host Header
6+
7+
```
8+
X-Forwarded-For: IP
9+
X-Forwarded-IP: IP
10+
X-Client-IP: IP
11+
X-Remote-IP: IP
12+
X-Originating-IP: IP
13+
X-Host: IP
14+
X-Client: IP
15+
16+
```
17+
18+
## Rate Limit Bypass using Sepcial Characters
19+
20+
- Adding Null Byte ( %00 ) at the end of the Email can sometimes Bypass Rate Limit.
21+
- Try adding a Space Character after a Email. ( Not Encoded )
22+
- Some Common Characters that help bypassing Rate Limit : %0d , %2e , %09 , %20 , %0
23+
24+
25+
## Using IP Rotate Burp Extension
26+
27+
- Burp Suite's Extension IP Rotate works well in many cases. Make sure you have Jython installed along.
28+
29+
- Here You'll everything you need - https://github.com/PortSwigger/ip-rotate
30+
31+
32+
## You can find some more here - [Check this out](https://medium.com/bugbountywriteup/bypassing-rate-limit-like-a-pro-5f3e40250d3c)

0 commit comments

Comments
 (0)