[TEMPLATE CONTRIBUTION] Azure Front Door WAF IP Bypass

### Is there an existing template for this?

- [x] I have searched the existing templates.

### Nuclei Template

```yaml
id: azure-waf-bypass

info:
  name: Azure Front Door WAF IP Bypass
  author: ldionmarcil
  severity: low
  reference:
    - https://trustedsec.com/blog/azures-front-door-waf-wtf-ip-restriction-bypass
  description: |
    Potentially bypassable IP blocking using Azure Front Door WAF.
    This can be bypassed by default, if 'RemoteAddr' is used to filter IPs.
  tags: azure,waf

requests:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 403

        condition: and

      - type: word
        words:
          - "x-azure-ref"
        case-insensitive: true
        part: header

        condition: and

      - type: word
        words:
          - "x-cache"
        case-insensitive: true
        part: header
```

### Relevant dumped responses

```shell

```

### Anything else?

Heuristic to detect the default Azure Front Door IP Filtering WAF response, which can be bypassable with a proper X-Forwarded-For request header, as detailed in https://trustedsec.com/blog/azures-front-door-waf-wtf-ip-restriction-bypass.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[TEMPLATE CONTRIBUTION] Azure Front Door WAF IP Bypass #12737

Is there an existing template for this?

Nuclei Template

Relevant dumped responses

Anything else?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[TEMPLATE CONTRIBUTION] Azure Front Door WAF IP Bypass #12737

Description

Is there an existing template for this?

Nuclei Template

Relevant dumped responses

Anything else?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions