Alternatives and similar repositories for http-request-smuggling

Users that are interested in http-request-smuggling are comparing it to the libraries listed below

• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 2 years ago
• bytehope / wwe
  ☆21Updated 4 months ago
• Kirill89 / prototype-pollution-exploits
  Prototype Pollution exploits collection
  ☆35Updated 3 years ago
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆61Updated 3 years ago
• GoSecure / request-smuggling-workshop
  ☆26Updated 2 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆85Updated 3 years ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 3 years ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆101Updated last month
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆51Updated last year
• jzheaux / spel-injection
  An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition
  ☆28Updated 7 years ago
• Sudistark / CTF-Writeups
  This repo contains solution for ctf challenges
  ☆36Updated 8 months ago
• MrTuxracer / advisories
  Security Advisories
  ☆34Updated 3 weeks ago
• 254Labs / awesome-bambdas
  A collection of Burp Suite Lambda Filters ~ Bambdas
  ☆28Updated 10 months ago
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆70Updated 2 years ago
• ariary / HTTPCustomHouse
  HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets
  ☆36Updated 2 years ago
• SoheilKhodayari / DOMClobbering
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆55Updated 3 months ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆110Updated last year
• Paradoxis / Flask-Unsign-Wordlist
  The following package is the standalone wordlist-only component to flask-unsign.
  ☆39Updated last year
• shoebpate1 / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 4 years ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆51Updated 3 months ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated 2 months ago
• Hakumarachi / WriteUp
  CTF challenges WriteUp
  ☆14Updated 3 years ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆32Updated 5 months ago
• farisv / PIL-RCE-Ghostscript-CVE-2018-16509
  PoC + Docker Environment for Python PIL/Pillow Remote Shell Command Execution via Ghostscript CVE-2018-16509
  ☆59Updated 4 years ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆74Updated 2 years ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆44Updated last year
• msrkp / MXSS
  Awesome MXSS ??
  ☆52Updated 10 months ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆63Updated last year
• cnotin / RazorVulnerableApp
  DO NOT USE: this is a vulnerable ASP.NET web app using Razor templating engine. The vulnerability is a Server-Side Template Injection (SS…
  ☆28Updated 4 years ago