When pentesting it is useful to know when apache mod_rewrite is enabled. But when one comes across a web server that does not utilize PHP it is difficult to tell if mod_rewrite is enabled considering that URL redirection isn't very necessary. Is there any way to tell if it is enabled (remotely) without simply guessing common URL redirections?
Asked
Active
Viewed 816 times
3
1 Answers
1
You might be able to test for poorly configured mod_rewrite configurations.
- Metasploit Proxy Bypass Scanner
- Metasploit LDAP BO
- w3af has a bug that doesn't handle mod-rewrite properly, so you can end up leveraging the bug to fuzz a site to determine if it has mod_rewrite enabled
Of course, these are probes that only work if mod_rewrite exists and is unpatched and configured in a certain way.
Otherwise, I'm not sure if one could detect what is supposed to be transparent...
schroeder
- 129,372
- 55
- 299
- 340
mod_rewrite(especially in the rewrite, not redirect sense) shouldn't be detectable: it should only affect the internal dispatch of the request, shouldn't it? – Bruno May 01 '12 at 20:24mod_rewriteimplementation bug than a problem with the fact thatmod_rewriteand its features are used. This could happen to any piece of software. The fact thatmod_rewriteis enabled isn't a problem, is it? (The fact that a buggy version of it is used is.) – Bruno May 01 '12 at 20:40