HTTP Request Smuggling

Today's web applications frequently employ chains of HTTP servers between users and the ultimate application logic.

HTTP request smuggling is a technique for interfering with the way a web site processes sequences of HTTP requests that are received from one or more users.

- HTTP Request Smuggler Burp Addon

Right-click on the request > Launch Smuggle Probe

Once in Target > Site map, we will see an issue (HTTP Request Smuggling vuln), once here, right-click > smuggle attack > attack

PreviousWAFs & Attack Obfuscation NextCMS's: Content Management Systems

Last updated 1 year ago