Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: http-request-smuggling

aws/http-desync-guardian

Analyze HTTP requests to minimize risks of HTTP Desync attacks (precursor for HTTP request smuggling/splitting).

Language: Rust - Size: 457 KB - Last synced at: 8 days ago - Pushed at: over 4 years ago - Stars: 264 - Forks: 19

ExploitWorks/DesyncDiver

A tool for detecting HTTP Request Smuggling vulnerabilities

Language: Shell - Size: 21.5 KB - Last synced at: 16 days ago - Pushed at: 22 days ago - Stars: 16 - Forks: 0

lamcodeofpwnosec/pwnsmugglers

HTTP Request Smuggling Automatic Tool

Language: Python - Size: 13.7 KB - Last synced at: 3 days ago - Pushed at: 6 months ago - Stars: 1 - Forks: 0

anshumanpattnaik/http-request-smuggling

HTTP Request Smuggling Detection Tool

Language: Python - Size: 232 KB - Last synced at: 23 days ago - Pushed at: over 1 year ago - Stars: 491 - Forks: 102

ariary/HTTPCustomHouse

HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets

Language: Go - Size: 2.25 MB - Last synced at: 1 day ago - Pushed at: over 2 years ago - Stars: 35 - Forks: 4

ariary/httpecho

Golang HTTP echo server (real raw request echoed)

Language: Go - Size: 239 KB - Last synced at: 1 day ago - Pushed at: over 2 years ago - Stars: 4 - Forks: 2

fionn/http-request-smuggling

HTTP request smuggling examples

Language: Shell - Size: 1000 Bytes - Last synced at: 5 days ago - Pushed at: over 5 years ago - Stars: 5 - Forks: 0

dhmosfunk/CVE-2023-25690-POC

CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.

Language: Dockerfile - Size: 649 KB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 262 - Forks: 36

dhmosfunk/HTTP3ONSTEROIDS

HTTP3ONSTEROIDS - A research on CVE-2023-25950 where HAProxy's HTTP/3 implementation fails to block a malformed HTTP header field name.

Language: C - Size: 42 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 4 - Forks: 0

Related Keywords
http-request-smuggling 9 poc 2 desync-attack 2 smuggling 2 web-application-security 2 request-smuggling 2 http-desync 2 transfer-encoding 1 bug-bounty 1 burp 1 cli 1 http-client 1 infosec 1 learning 1 pentest-tool 1 security 1 websecurity 1 echo-server 1 golang 1 http-server 1 apache2 1 cve 1 cve-2023-25690-poc 1 http-request-splitting 1 httpd 1 cve-2023-25950 1 cve-2023-25950-poc 1 dos 1 haproxy 1 http3 1 http3onsteroids 1 cybersecurity 1 desynchronization 1 hacking-tool 1 http-security 1 penetration-testing 1 pentesting 1 protocol 1 protocol-attack 1 ctf-tools 1 security-testing 1 vulnerability-scanners 1 bugbounty 1 web-security 1 chunked-http 1 httprequest 1 smuggler 1 bash-script 1 vulnerability-detection 1 blackhat 1 chunked-encoding 1 content-length 1 defcon27 1 http-smuggling 1 portswigger 1 python3 1