RPOscanner By @TheNittam

Relative Path Overwrite Vulnerability Scanner - Version 1

Ever heard about RPO Attack?

If not here is the video about Relative Path Overwrite (RPO) Attack. It's a lesser-known web-based vulnerability yet a very cool vulnerability. File descriptor was rewarded with 6000$ for his sweet exploit on this from Google. I have explained about this attack along with the mitigation techniques in our own language (NEPALI ). It might be fruitful for not only security enthusiastic but also for developers.

Reference

Title	Researcher	Link
RPO Gadget	@filedescriptor	https://blog.innerht.ml/rpo-gadgets/
Detecting And Exploiting PRSSI	James Kettle	https://portswigger.net/research/detecting-and-exploiting-path-relative-stylesheet-import-prssi-vulnerabilities

How to use?

python3 rpo.py <target_domain>

Required Module

pip3 install requests

Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
LICENSE		LICENSE
README.md		README.md
RPO.png		RPO.png
rpo.py		rpo.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

RPOscanner By @TheNittam

Ever heard about RPO Attack?

Reference

How to use?

Required Module

About

Releases

Packages

Languages

License

TheNittam/RPOscanner

Folders and files

Latest commit

History

Repository files navigation

RPOscanner By @TheNittam

Ever heard about RPO Attack?

Reference

How to use?

Required Module

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages