Blog about HTTP Request Smuggling, including a demo application.
☆32Jan 4, 2022Updated 4 years ago
Alternatives and similar repositories for http-request-smuggling
Users that are interested in http-request-smuggling are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Resources to learn about Insecure Deserialization☆18Jul 12, 2024Updated last year
- An easy to navigate list of unicode characters that have risky transformations 💥☆24Mar 22, 2022Updated 4 years ago
- A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻☆129Sep 6, 2022Updated 3 years ago
- A repo about CTF challenges that I made at several CTF events☆14Mar 20, 2025Updated last year
- Challenge source code and author write-ups for KalmarCTF☆70Apr 15, 2026Updated last month
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆22Aug 3, 2024Updated last year
- A handy plugin for copying requests/responses directly from Burp, some extra magic included.☆13Oct 15, 2021Updated 4 years ago
- ☆21Sep 12, 2025Updated 8 months ago
- ☆22Dec 1, 2025Updated 5 months ago
- Summary and archive of Vatican .va (Holy See) ccTLD zone data for researchers.☆13Apr 26, 2023Updated 3 years ago
- Examples of simple code patterns causing BOF☆14Apr 10, 2020Updated 6 years ago
- Platform for LA CTF. Forked from redpwn/rctf.☆11Feb 6, 2026Updated 3 months ago
- cve-2014-0130 rails directory traversal vuln☆18May 15, 2017Updated 9 years ago
- This a Complete tool contained box for Capture The Flag competition. Mostly I have inserted all the necessary tools. Some of the people h…☆11Apr 16, 2022Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- S3 Buckets that will let you list all files inside them☆14Apr 26, 2018Updated 8 years ago
- GDB plugin to dump SECCOMP rules set via prctnl(PR_SET_SECCOMP, SECCOMP_MODE_FILTER)☆22Mar 13, 2016Updated 10 years ago
- frozenkp's blog☆13Aug 25, 2023Updated 2 years ago
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- Accompanying material needed for the workshop☆11Jun 14, 2023Updated 2 years ago
- Kernel PWN Tooklkit aimed mainly for CTF players☆18Jul 31, 2024Updated last year
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆35Sep 23, 2022Updated 3 years ago
- ☆60Oct 9, 2024Updated last year
- NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.☆78Nov 5, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A simple way to setup IoT project using Arduino board and ESP8266.☆10Dec 1, 2016Updated 9 years ago
- ☆32May 30, 2019Updated 6 years ago
- ☆18Jun 24, 2021Updated 4 years ago
- A modular URL deduplication tool.☆19Feb 19, 2025Updated last year
- A script to detect stack-strings by using emulation (leveraging Unicorn)☆35Dec 6, 2025Updated 5 months ago
- A simple utility to fetch freshly updated DNS resolvers☆19Feb 17, 2024Updated 2 years ago
- CVE-2022-36946 linux kernel panic in netfilter_queue☆22Jun 21, 2024Updated last year
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆50Nov 30, 2018Updated 7 years ago
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities☆31Jan 17, 2022Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- This repository contains the mobile Proof of Concept (POC) tester for CTF challenges. The POC tester is a web application that allows use…☆20Oct 3, 2025Updated 7 months ago
- Automated Recon Tool Installer☆16Jun 29, 2022Updated 3 years ago
- PS3 .sprx how to bypass authentication using another .sprx☆10Feb 15, 2021Updated 5 years ago
- 资产测绘输出xlsx表格☆14Sep 10, 2024Updated last year
- dead-simple blog template powered by Markdown and PHP☆10May 6, 2025Updated last year
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆203Feb 26, 2019Updated 7 years ago
- لغة البرمجة عموريا☆11Jul 17, 2021Updated 4 years ago