Share
## https://sploitus.com/exploit?id=45D3E569-AE85-5601-A982-F44C7E753EBD
# RSC Surface & Crash Detector

This tool is a non-intrusive security detection script designed to identify exposed **React Server Components (RSC)** surfaces and verify **crash-based vulnerability behavior** related to:

- CVE-2025-55182  
- CVE-2025-66478  

It is intended for **defensive security testing, WAF validation, and application hardening** workflows.

This script **does not perform exploitation or command execution**. It strictly performs detection and classification.

---

## Features

- Automatic scanning over:
  - `http://`
  - `https://`
- Redirect-aware requests (follows 30x responses)
- RSC surface detection using protocol fingerprints
- Crash-based vulnerability probing using non-destructive payloads
- Always performs both surface and crash checks independently
- Supports:
  - Target list input
  - Proxy routing
  - TLS verification bypass
- Clean terminal output with per-target status
- Final output:
  - **Domain-only**
  - **Deduplicated**
  - **Only confirmed vulnerable domains**

---

## Detection Logic

Each target is evaluated using two independent mechanisms.

### RSC Surface Detection

A target is marked as **EXPOSED** if any of the following is observed:

- `Content-Type: text/x-component` response  
- React digest error fingerprint in the response body  
- Minified React error signature  
- React error reference URLs  

If the server returns:

- HTTP 500 with Next.js indicators โ†’ marked as **SUSPICIOUS**

If none of the above are observed โ†’ marked as **SAFE**

---

### Crash-Based Vulnerability Probe

A serialized multipart payload is sent to the target to evaluate server-side crash behavior.

Results are classified as:

- **VULNERABLE**
  - HTTP 500 with React digest or minified React error pattern  
- **UNKNOWN**
  - HTTP 500 without a clear fingerprint  
- **NOT VULNERABLE**
  - Any non-500 response  

This probe is executed **regardless of surface detection outcome** to avoid false negatives.

---

## Output Structure

For each target, the script prints:

### RSC Surface Result
- `[EXPOSED]`
- `[SUSPICIOUS]`
- `[SAFE]`

### Crash-Based Result
- `[VULNERABLE]`
- `[UNKNOWN]`
- `[NOT VULNERABLE]`

---

## Installation

No external dependencies are required.

Make the script executable:

```bash
chmod +x rsc_detect.sh
```
## Usage

### Single Target

    ./rsc_detect.sh -u example.com
    ./rsc_detect.sh -u https://example.com

### Target List

    ./rsc_detect.sh -l domains.txt

### Proxy Support

    ./rsc_detect.sh -l domains.txt -p http://127.0.0.1:8080

### TLS Verification Disable

    ./rsc_detect.sh -l domains.txt -k

### Custom Timeout

    ./rsc_detect.sh -l domains.txt --timeout 15