A rapid HTTP downgrade smuggling scanner written in Go.
A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets
Blog about HTTP Request Smuggling, including a demo application.
Automated Discovery of Parsing Discrepancy Related Bypasses in Web Application Firewalls Using HTTP Request Fuzzing.
Burp extension to calculate the byte size of selections made in text windows
Detect and confirm HTTP/S desync vulnerabilities
automatic HTTP request smuggling vulnerability detection
Add a description, image, and links to the request-smuggling topic page so that developers can more easily learn about it.
To associate your repository with the request-smuggling topic, visit your repo's landing page and select "manage topics."