Blog about HTTP Request Smuggling, including a demo application.
☆32Jan 4, 2022Updated 4 years ago
Alternatives and similar repositories for http-request-smuggling
Users that are interested in http-request-smuggling are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Resources to learn about Insecure Deserialization☆18Jul 12, 2024Updated last year
- An easy to navigate list of unicode characters that have risky transformations 💥☆24Mar 22, 2022Updated 4 years ago
- ☆22Aug 3, 2024Updated last year
- A handy plugin for copying requests/responses directly from Burp, some extra magic included.☆13Oct 15, 2021Updated 4 years ago
- ☆21Sep 12, 2025Updated 7 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- The setup being used for mobile exploitation in the TCP1P CTF 2023☆13Nov 17, 2023Updated 2 years ago
- ☆22Dec 1, 2025Updated 5 months ago
- Summary and archive of Vatican .va (Holy See) ccTLD zone data for researchers.☆13Apr 26, 2023Updated 3 years ago
- Examples of simple code patterns causing BOF☆14Apr 10, 2020Updated 6 years ago
- Platform for LA CTF. Forked from redpwn/rctf.☆11Feb 6, 2026Updated 3 months ago
- This a Complete tool contained box for Capture The Flag competition. Mostly I have inserted all the necessary tools. Some of the people h…☆11Apr 16, 2022Updated 4 years ago
- ☆28Apr 30, 2026Updated last week
- Python exploit of cve-2020-7247☆25Feb 19, 2020Updated 6 years ago
- S3 Buckets that will let you list all files inside them☆14Apr 26, 2018Updated 8 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- GDB plugin to dump SECCOMP rules set via prctnl(PR_SET_SECCOMP, SECCOMP_MODE_FILTER)☆22Mar 13, 2016Updated 10 years ago
- Golang implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs☆27Dec 3, 2021Updated 4 years ago
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- Accompanying material needed for the workshop☆11Jun 14, 2023Updated 2 years ago
- Kernel PWN Tooklkit aimed mainly for CTF players☆18Jul 31, 2024Updated last year
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆35Sep 23, 2022Updated 3 years ago
- ☆60Oct 9, 2024Updated last year
- NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.☆78Nov 5, 2022Updated 3 years ago
- A simple way to setup IoT project using Arduino board and ESP8266.☆10Dec 1, 2016Updated 9 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆32May 30, 2019Updated 6 years ago
- ☆18Jun 24, 2021Updated 4 years ago
- Magisk module that adds the Burp certificate to the system's root CA store☆21Sep 3, 2023Updated 2 years ago
- A modular URL deduplication tool.☆19Feb 19, 2025Updated last year
- A script to detect stack-strings by using emulation (leveraging Unicorn)☆35Dec 6, 2025Updated 5 months ago
- A simple utility to fetch freshly updated DNS resolvers☆19Feb 17, 2024Updated 2 years ago
- CVE-2022-36946 linux kernel panic in netfilter_queue☆22Jun 21, 2024Updated last year
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆50Nov 30, 2018Updated 7 years ago
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities☆31Jan 17, 2022Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- This repository contains the mobile Proof of Concept (POC) tester for CTF challenges. The POC tester is a web application that allows use…☆20Oct 3, 2025Updated 7 months ago
- PHP 8 Sandbox Escape☆84Feb 28, 2026Updated 2 months ago
- dead-simple blog template powered by Markdown and PHP☆10May 6, 2025Updated last year
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆204Feb 26, 2019Updated 7 years ago
- A tool which allows HackerOne researchers to download their reports into a local, indexed, and searchable repository☆19Sep 29, 2022Updated 3 years ago
- ☆31Feb 3, 2018Updated 8 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆93Nov 21, 2021Updated 4 years ago