# Ataques de Cabeceras

### Host Header

```
X-Forwarded-Host: aaa.com
X-Host: aaa.com
X-Forwarded-Server: aaa.com
X-HTTP-Host-Override: aaa.com
Forwarded: aaa.com
```

### CRLF

<figure><img src="https://1116580734-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F80DU0lRP27yfgYzc3pOF%2Fuploads%2FSilyeM7vT7R4gAe0F3O9%2Fimage.png?alt=media&#x26;token=d8d38004-cace-4635-ab58-bd613ef653aa" alt=""><figcaption></figcaption></figure>

{% embed url="<https://github.com/carlospolop/Auto_Wordlists/blob/main/wordlists/crlf.txt>" %}

### IP Bypass

{% embed url="<https://gist.github.com/kaimi-/6b3c99538dce9e3d29ad647b325007c1#file-gistfile1-txt>" %}