Skip to content

Version 1.1.0 - Hybrid Approach and Raw HTTP Request Files

Choose a tag to compare

View all tags
@m10x m10x released this 02 Jan 14:21
· 19 commits to main since this release
1.1.0
a78d5d2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

TInjA now uses the "hybrid approach"

Polyglots enable efficient scanning, but may be susceptible to false positives. For this reason, a verification request is sent after a template injection has been detected and the template engine has been identified. This verification request contains a template expression tailored to the template engine.

Raw Read Function

TInjA can now read raw HTTP request files. So you can, for example, save a HTTP request from your favorite proxy tool and import it with TInjA using tinja raw -R "/path/to/file".

Thanks @n00b-bot for this feature! PR 1

Miscellaneous

  • smaller bugfixes
  • improved the report and output
  • upgraded dependencies
  • fixed typos

Contributors

n00b-bot
Assets 10
Loading