Smuggler can detect and exploit -HTTP Smuggling- vulnerabilities. https://03c8.net

psy 8e2fe56311 upgrading to new SSL context 2 weeks ago
.github 67a344b98f added github docs 4 years ago
docs 8e2fe56311 upgrading to new SSL context 2 weeks ago
payloads 44c0d3361d added manual exploiting 1 year ago
README.md 1fb5185836 added more exploits 1 year ago
smuggler.py 8e2fe56311 upgrading to new SSL context 2 weeks ago

README.md

c


Info:

Smuggler is a free software tool to detect and exploit -HTTP Smuggling- vulnerabilities.

HTTP request smuggling is a technique for interfering with the way a web site processes sequences of HTTP requests that are received from one or more users.

c

Request smuggling vulnerabilities are often critical in nature, allowing an attacker to bypass security controls, gain unauthorized access to sensitive data, and directly compromise other application users.

Installing:

This tool runs on many platforms and it requires Python (3.x.y).

Launching:

python smuggler.py (or python3 smuggler.py)

Exploiting:

c


License:

Smuggler is released under the GPLv3.

Contact:

  - psy (epsylon@riseup.net)

Contribute:

To make donations use the following hash:

 - Bitcoin: 19aXfJtoYJUoXEZtjNwsah2JKN9CK5Pcjw

Screenshots:

c

c

c

c

c