p4k03n4t0r / http-request-smuggling
Blog about HTTP Request Smuggling, including a demo application.
☆25Updated 3 years ago
Alternatives and similar repositories for http-request-smuggling:
Users that are interested in http-request-smuggling are comparing it to the libraries listed below
- Same Origin XSS challenge☆56Updated 3 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- ☆16Updated last month
- Awesome MXSS ??☆49Updated 6 months ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆66Updated 2 years ago
- ☆25Updated 2 years ago
- Challenges I wrote for various CTF competitions☆41Updated 9 months ago
- a repository of all the CTF challenges I've made for public events☆53Updated last year
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 10 months ago
- ☆62Updated 2 years ago
- CTF challenges WriteUp☆14Updated 2 years ago
- Utility for creating ZipSlip archives☆72Updated 2 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆88Updated 5 months ago
- Security Advisories☆32Updated 2 weeks ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 2 years ago
- ☆94Updated 3 years ago
- A extension for collecting parameters☆25Updated 4 years ago
- ☆39Updated 2 months ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 years ago
- ✨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.com☆21Updated 2 years ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆64Updated last month
- This repo contains solution for ctf challenges☆34Updated 4 months ago
- Prototype Pollution exploits collection☆33Updated 3 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆44Updated 10 months ago
- ☆164Updated 3 years ago
- Pipe nmap verbose output to a usable format for httpx or host:port notation.☆16Updated 2 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Updated 4 years ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆86Updated 6 years ago