Blog about HTTP Request Smuggling, including a demo application.
☆32Jan 4, 2022Updated 4 years ago
Alternatives and similar repositories for http-request-smuggling
Users that are interested in http-request-smuggling are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆29Jan 10, 2023Updated 3 years ago
- Resources to learn about Insecure Deserialization☆19Jul 12, 2024Updated last year
- An easy to navigate list of unicode characters that have risky transformations 💥☆24Mar 22, 2022Updated 4 years ago
- A repo about CTF challenges that I made at several CTF events☆14Mar 20, 2025Updated last year
- Challenge source code and author write-ups for KalmarCTF☆70Apr 15, 2026Updated 2 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ☆22Aug 3, 2024Updated last year
- A handy plugin for copying requests/responses directly from Burp, some extra magic included.☆13Oct 15, 2021Updated 4 years ago
- ☆21Sep 12, 2025Updated 9 months ago
- The setup being used for mobile exploitation in the TCP1P CTF 2023☆13Nov 17, 2023Updated 2 years ago
- Summary and archive of Vatican .va (Holy See) ccTLD zone data for researchers.☆13Apr 26, 2023Updated 3 years ago
- Examples of simple code patterns causing BOF☆14Apr 10, 2020Updated 6 years ago
- cve-2014-0130 rails directory traversal vuln☆18May 15, 2017Updated 9 years ago
- Python exploit of cve-2020-7247☆25Feb 19, 2020Updated 6 years ago
- S3 Buckets that will let you list all files inside them☆14Apr 26, 2018Updated 8 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- GDB plugin to dump SECCOMP rules set via prctnl(PR_SET_SECCOMP, SECCOMP_MODE_FILTER)☆22Mar 13, 2016Updated 10 years ago
- Golang implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs☆27Dec 3, 2021Updated 4 years ago
- Security challenges and CTFs created by the Penultimate team.☆14Feb 22, 2018Updated 8 years ago
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- Accompanying material needed for the workshop☆11Jun 14, 2023Updated 3 years ago
- Kernel PWN Tooklkit aimed mainly for CTF players☆18Jul 31, 2024Updated last year
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆36Sep 23, 2022Updated 3 years ago
- ☆60Oct 9, 2024Updated last year
- NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.☆78Nov 5, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A simple way to setup IoT project using Arduino board and ESP8266.☆10Dec 1, 2016Updated 9 years ago
- ☆33May 30, 2019Updated 7 years ago
- ☆18Jun 24, 2021Updated 4 years ago
- Magisk module that adds the Burp certificate to the system's root CA store☆22Sep 3, 2023Updated 2 years ago
- A modular URL deduplication tool.☆19Feb 19, 2025Updated last year
- A script to detect stack-strings by using emulation (leveraging Unicorn)☆35Dec 6, 2025Updated 6 months ago
- A simple utility to fetch freshly updated DNS resolvers☆19Feb 17, 2024Updated 2 years ago
- CVE-2022-36946 linux kernel panic in netfilter_queue☆22Jun 21, 2024Updated last year
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆50Nov 30, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities☆31Jan 17, 2022Updated 4 years ago
- Automated Recon Tool Installer☆16Jun 29, 2022Updated 3 years ago
- CTFd plugin allowing for individual Docker containers per user or team☆11Oct 14, 2024Updated last year
- PS3 .sprx how to bypass authentication using another .sprx☆10Feb 15, 2021Updated 5 years ago
- Experiments, snippets and other things related to Binary Ninja☆17Oct 22, 2024Updated last year
- dead-simple blog template powered by Markdown and PHP☆10May 6, 2025Updated last year
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆203Feb 26, 2019Updated 7 years ago