-
Notifications
You must be signed in to change notification settings - Fork 127
Expand file tree
/
Copy pathBappDescription.html
More file actions
40 lines (32 loc) · 2.37 KB
/
BappDescription.html
File metadata and controls
40 lines (32 loc) · 2.37 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
<p>This extension automatically detects and exploits <a href="https://portswigger.net/web-security/request-smuggling">HTTP
Request Smuggling</a> vulnerabilities using advanced desynchronization techniques developed by PortSwigger
researcher James Kettle. It supports comprehensive scanning for HTTP/1.1 and HTTP/2-downgrade desync
vulnerabilities, client-side desyncs, and connection state attacks.</p>
<p>Version 3.0 landed in 2025 and adds parser discrepancy detection, which bypasses widespread desync defences and makes
it significantly more effective. For further information on this, refer to the whitepaper <a
href="https://portswigger.net/research/http1-must-die">HTTP/1.1 Must Die: The Desync Endgame</a>.</p>
<p>It's fully compatible with Burp Suite DAST, Professional, and Community editions. Pro and Community editions have a
"research mode" for exploring novel techniques, and the DAST integration is useful if you want recurring scans to
flag novel threats as soon as they're released.</p>
<h2>Features</h2>
<ul>
<li>Detection based on root-cause detection of underlying parsing discrepancies, which is significantly more
reliable and resistant to target-specific quirks.
</li>
<li>Many permutation techniques for bypassing different server configurations</li>
<li>HTTP/1.1 CL.TE and TE.CL desync detection with timeout-based confirmation</li>
<li>HTTP/2 request smuggling including tunneling and header injection attacks</li>
<li>Client-side desync detection for browser-powered attacks</li>
<li>Header smuggling and removal vulnerability detection</li>
<li>Connection state manipulation and pause-based desync techniques</li>
<li>Automated exploit generation with Turbo Intruder integration</li>
<li>False positive reduction through multiple validation techniques</li>
</ul>
<h2>Usage</h2>
<p>Right click on a request and click 'Launch Smuggle probe', then watch the extension's output pane.
For more advanced use watch the <a href="https://portswigger.net/research/http-desync-attacks">video</a>, and check
out the <a href="https://github.com/PortSwigger/http-request-smuggler">documentation</a>.</p>
<h2>Practice</h2>
<p>We've also released <a href="https://portswigger.net/web-security/request-smuggling">free online labs to practise
against</a>.</p>
<p><br>Copyright © 2018-2025 PortSwigger Ltd.</p>