Easy spoofing with browser

[unclex]

Ripped

Easy spoofing with browser

ylnoQpot
I've not practiced much the art of spoofing, but found out this. I wonder, has anyone else tought about this thing:

When some sites check the referrer, they use something like this:
if ($ENV{REFERER} !~ 'http://www.right_referrer.com') .....
Well, that means that the referrers address can locate anywhere in the url!

What we need, is (almost) ANY page that has a link to members section we want to spoof in, and we just add something like "&?ref=http://referer_address" to the end of the url of that page.

So, for example, you can do it with google like this:

If u try to go directly to [url]http://premium.newvideo.com/content/ you get redirected to yahoo.
..but if u do this:
[url]http://www.google.com/search?q=http://premium.newvideo.com/content/&refer=http://premium.newvideo.com/content/

, google tries to find that page, but cause it won't find it, it gives you a link to it. When you click that link, that site sees that referrer is that above, and because above address includes right referrer(witch is [url]http://premium.newvideo.com/content/) it thinks it's ok!

In above example the URL is same as referrer, so you could actually leave out that &refer=... from that address above. (It's there just to demonstare the idea)


Note that this thing is working only with some sites, others are wise enough to use ^ in their ~search.

Maybe someone has time/interest to study more on this issue, and if there is lots of sites that works with this, maybe it should be added to sticky thread also...


ps. Also, some javascript stuff and HOSTS.SAM (if you know what I mean) might have some uses... not sure.