[{"data":1,"prerenderedAt":165},["ShallowReactive",2],{"blog-root-como-bypass-403-y-404-forbidden":3,"blog-related-pool":96},{"id":4,"title":5,"author":6,"body":7,"category":86,"date":87,"description":5,"extension":88,"image":89,"meta":90,"navigation":91,"path":92,"published":91,"seo":93,"stem":94,"tags":89,"__hash__":95},"blog/blog/como-bypass-403-y-404-forbidden.md","Como Bypass 403 y 404 forbidden","RonbHack",{"type":8,"value":9,"toc":82},"minimark",[10,14,17,20,28,31,39,42,48,51,58,64,67,70,76],[11,12,13],"p",{},"Introducción",[11,15,16],{},"Muchas veces estamos trabajando en una auditoria y nos encontramos con este error, que significa que no tenemos accesos a estos recursos, hoy te vengo a enseñar como bypassear esto o al menos intentarlo, no siempre es posible.\nHerramientas para bypass 403 forbidden",[11,18,19],{},"Si quieres comenzar con lo fácil hay herramientas automatizadas que hacen esta labor por nosotros",[11,21,22],{},[23,24,25],"a",{"href":25,"rel":26},"https://github.com/iamj0ker/bypass-403",[27],"nofollow",[11,29,30],{},"Uso:",[11,32,33,34,38],{},"./bypass-403.sh ",[23,35,36],{"href":36,"rel":37},"https://example.com",[27]," admin",[11,40,41],{},"./bypass-403.sh website-here path-here",[11,43,44],{},[23,45,46],{"href":46,"rel":47},"https://github.com/gotr00t0day/forbiddenpass",[27],[11,49,50],{},"Esta siguiente herramienta, forbiddenpass es mucho mejor que la anterior",[11,52,53,54],{},"python3 forbiddenpass.py -t ",[23,55,56],{"href":56,"rel":57},"https://site",[27],[11,59,60],{},[23,61,62],{"href":62,"rel":63},"https://github.com/yunemse48/403bypasser",[27],[11,65,66],{},"también hay una extensión en buro suite, pero debes tener la suscripción de pago que cuesta 449 USD\nBypass 403 manualmente",[11,68,69],{},"La herramienta forbiddenpass tiene cientos de payloads, pero si quieres intentarlo manualmente te recomiendo estos dos enlaces:",[11,71,72],{},[23,73,74],{"href":74,"rel":75},"https://medium.com/@uttamgupta_/14-bypass-403-forbidden-82df3cfe5386",[27],[11,77,78],{},[23,79,80],{"href":80,"rel":81},"https://book.hacktricks.xyz/v/es/network-services-pentesting/pentesting-web/403-and-401-bypasses",[27],{"title":83,"searchDepth":84,"depth":84,"links":85},"",3,[],"Ciberseguridad","2025-11-27","md",null,{},true,"/blog/como-bypass-403-y-404-forbidden",{"title":5,"description":5},"blog/como-bypass-403-y-404-forbidden","JHxw8gJEcsAsgrnzpc15NRegtOyCfRob0C79bI-b4So",[97,98,101,105,108,111,114,117,120,123,126,129,132,135,138,141,144,147,150,153,156,159,162],{"path":92,"title":5,"category":86},{"path":99,"title":100,"category":86},"/blog/como-configurar-seguridad-maxima-en-tu-vps","Como configurar seguridad máxima en tu VPS",{"path":102,"title":103,"category":104},"/blog/como-crear-una-criptomoneda-gratis-desde-0-en-2026","Como crear una criptomoneda gratis en Solana desde 0 en 2026","Desarrollo",{"path":106,"title":107,"category":104},"/blog/como-crear-una-criptomoneda-gratis-y-ganar-dinero-2026","Como crear una criptomoneda gratis en BSC y ganar dinero 2026",{"path":109,"title":110,"category":86},"/blog/como-encontrar-facil-una-vulnerabilidad-en-bug-bounty","Como encontrar fácil una vulnerabilidad en bug bounty",{"path":112,"title":113,"category":86},"/blog/como-encriptar-archivos-gratis-en-windows-11","como-encriptar-archivos-gratis-en-windows-11",{"path":115,"title":116,"category":86},"/blog/como-hacer-hardening-de-servidores-linux-en-2023","Como hacer hardening de servidores linux en 2026",{"path":118,"title":119,"category":86},"/blog/como-hacer-un-keylogger-en-2026","Como hacer un Keylogger en 2026",{"path":121,"title":122,"category":86},"/blog/como-hackear-aws-s3","Como hackear AWS S3",{"path":124,"title":125,"category":86},"/blog/como-recuperar-la-cuenta-y-contrasena-de-windows","Como recuperar la cuenta y contraseña de Windows",{"path":127,"title":128,"category":86},"/blog/el-hacker-y-su-broma-de-amor-la-historia-sobre-el-virus-i-love-you","El Hacker y su broma de amor: La historia sobre el virus I Love you!",{"path":130,"title":131,"category":86},"/blog/guia-completa-para-escalar-privilegios-en-linux","Guía completa para escalar privilegios en Linux",{"path":133,"title":134,"category":86},"/blog/guia-completa-sobre-msfvenom","Guía completa sobre MSFVENOM",{"path":136,"title":137,"category":86},"/blog/guia-completa-sobre-nmap-2026","Guía completa sobre NMAP 2026",{"path":139,"title":140,"category":86},"/blog/guia-completa-sobre-ofuscacion-de-malware","Guía completa sobre Ofuscación de malware en 2026",{"path":142,"title":143,"category":86},"/blog/hackear-segundo-paso-de-autenticacin","bypassing 2FA  hackear el segundo paso de autenticación",{"path":145,"title":146,"category":86},"/blog/hacking-oauth-de-0-a-experto","como hackear oauth y protegerse",{"path":148,"title":149,"category":86},"/blog/hacking-uuid-v1-sandwich-attack","Explotando hacking UUID V1 – Sandwich Attack",{"path":151,"title":152,"category":86},"/blog/las-mejores-herramientas-para-analisis-de-malware-en-2026","Las mejores herramientas para Análisis de Malware en 2026",{"path":154,"title":155,"category":86},"/blog/los-10-mejores-filtros-wireshark-del-mundo-real-que-necesitas-conocer","Los 10 mejores filtros Wireshark del mundo real que necesitas conocer",{"path":157,"title":158,"category":86},"/blog/que-es-threat-hunting-y-su-metodologia","QUE ES THREAT HUNTING Y SU METODOLOGÍA",{"path":160,"title":161,"category":86},"/blog/que-es-y-como-doxear-en-2026","Que es y como Doxear en 2026",{"path":163,"title":164,"category":86},"/blog/reconocimiento-para-bug-bounty","Tecnica de reconocimiento para bug bounty",1780596537912]