Smuggler is a free software tool to detect and exploit -HTTP Smuggling- vulnerabilities.
HTTP request smuggling is a technique for interfering with the way a web site processes sequences of HTTP requests that are received from one or more users.
Request smuggling vulnerabilities are often critical in nature, allowing an attacker to bypass security controls, gain unauthorized access to sensitive data, and directly compromise other application users.
This tool runs on many platforms and it requires Python (3.x.y).
python smuggler.py (or python3 smuggler.py)
Smuggler is released under the GPLv3.
- psy (epsylon@riseup.net)
To make donations use the following hash:
- Bitcoin: 19aXfJtoYJUoXEZtjNwsah2JKN9CK5Pcjw