403/401 Bypass Methods + Bash Automation + Your Support ;)

4-ZERO-3 Tool to bypass 403/401. This script contains all the possible techniques to do the same.

NOTE

• If you see multiple [200 Ok]/bypasses as output, you must check the Content-Length. If the content-length is same for multiple [200 Ok]/bypasses means false positive. Reason can be “301/302” or “../” [Payload] DON’T PANIC.
• Script will print cURL PAYLOAD if possible bypass found.

Installing

git clone https://github.com/Dheerajmadhukar/4-ZERO-3

cd 4-ZERO-3
bash 403-bypass.sh -h

Usage / Modes

• Scan with specific payloads:

[ –header ] Support HEADER based bypasses/payloads

root@zapstiko:$ bash 403-bypass.sh -u https://target.com/secret --header

[ –protocol ] Support PROTOCOL based bypasses/payloads

root@zapstiko:$ bash 403-bypass.sh -u https://target.com/secret --protocol

[ –port ] Support PORT based bypasses/payloads