p4k03n4t0r / http-request-smugglingLinks
Blog about HTTP Request Smuggling, including a demo application.
☆27Updated 3 years ago
Alternatives and similar repositories for http-request-smuggling
Users that are interested in http-request-smuggling are comparing it to the libraries listed below
Sorting:
- Same Origin XSS challenge☆61Updated 3 years ago
- Challenges I wrote for various CTF competitions☆43Updated 11 months ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆53Updated 2 months ago
- ☆26Updated 2 years ago
- Utility for creating ZipSlip archives☆73Updated 2 years ago
- ☆19Updated 3 months ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆109Updated last year
- Simple taint analyzer for PHP/WordPress using VKCOM/php-parser☆18Updated 2 years ago
- Awesome MXSS ??☆52Updated 8 months ago
- Here i will post my writeups :)☆32Updated 2 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆96Updated this week
- LFI to RCE via phpinfo() assistance or via controlled log file☆68Updated 2 years ago
- ☆167Updated 3 years ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆63Updated last year
- The following package is the standalone wordlist-only component to flask-unsign.☆39Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 3 weeks ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated last year
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆50Updated last month
- This repo contains solution for ctf challenges☆35Updated 6 months ago
- tetctf2020_amf_writeups☆23Updated 4 years ago
- WordPress - Authenticated XXE (CVE-2021-29447)☆42Updated 3 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Updated 4 years ago
- Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1☆58Updated 2 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- CTF, wargame cheatsheet☆31Updated 6 years ago
- ☆63Updated 2 years ago
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆36Updated 2 years ago
- ✨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.com☆21Updated 2 years ago