Merge pull request #1675 from BishopFox/xforwardedfor_fix

extract original host ip if forwarded by one or more hosts
BishopFox · May 7, 2024 · c642bfc · c642bfc
2 parents eff371f + a424412
commit c642bfc
Showing 1 changed file with 10 additions and 1 deletion.
diff --git a/server/c2/http.go b/server/c2/http.go
@@ -810,7 +810,16 @@ func newHTTPSessionID() string {
 func getRemoteAddr(req *http.Request) string {
 	ipAddress := req.Header.Get("X-Real-Ip")
 	if ipAddress == "" {
-		ipAddress = req.Header.Get("X-Forwarded-For")
+		xForwardedFor := req.Header.Get("X-Forwarded-For")
+		if xForwardedFor != "" {
+			ips := strings.Split(xForwardedFor, ",")
+			if len(ips) > 0 {
+				// Extracts original client ip address
+				ipAddress = strings.TrimSpace(ips[0])
+			} else {
+				ipAddress = xForwardedFor
+			}
+		}
 	}
 	if ipAddress == "" {
 		return req.RemoteAddr