p4k03n4t0r / http-request-smugglingLinks
Blog about HTTP Request Smuggling, including a demo application.
☆29Updated 3 years ago
Alternatives and similar repositories for http-request-smuggling
Users that are interested in http-request-smuggling are comparing it to the libraries listed below
Sorting:
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- ☆22Updated 5 months ago
- ☆26Updated 2 years ago
- Security Advisories☆34Updated last month
- Prototype Pollution exploits collection☆35Updated 4 years ago
- ☆56Updated 4 years ago
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆28Updated 7 years ago
- ☆169Updated 3 years ago
- Same Origin XSS challenge☆61Updated 3 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 5 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- CTF challenges WriteUp☆14Updated 3 years ago
- Make better use of the embedded browser that comes by default with Burp☆44Updated last year
- This repo contains solution for ctf challenges☆36Updated 8 months ago
- ☆47Updated 6 months ago
- ☆38Updated 2 months ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆31Updated 2 years ago
- Client-Side Prototype Pollution Tools☆85Updated 3 years ago
- Challenges I wrote for various CTF competitions☆44Updated last year
- A collection of Burp Suite Lambda Filters ~ Bambdas☆28Updated 10 months ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆101Updated 2 months ago
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆36Updated 2 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆70Updated 2 years ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆111Updated last year
- CVE-2023-33733 reportlab RCE☆120Updated last year
- Web CTF CheatSheet 🐈☆27Updated 4 years ago
- Awesome MXSS ??☆52Updated 10 months ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 months ago
- a repository of all the CTF challenges I've made for public events☆56Updated 3 weeks ago
- This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.☆37Updated 3 years ago