Skip to content

psergus/request-smuggle-poc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
api-service
api-service
 
 
haproxy
haproxy
 
 
service-app
service-app
 
 
.env
.env
 
 
README.md
README.md
 
 
attack
attack
 
 
docker-compose.yml
docker-compose.yml
 
 
nginx.conf
nginx.conf
 
 
request-smuggle-poc.png
request-smuggle-poc.png
 
 

Repository files navigation

request-smuggle-poc

Configure your /etc/hosts

127.0.0.1 app.test.in api.test.in

Launch Burp Suite and make sure you have HTTP Request Smuggler extension. Launch request smuggler and copy/paste the attack file. Run it.

Result:

Result

Independent finding: https://www.cybersecurity-help.cz/vdb/SB2020011323

About

Request Smuggling Proof of Concept with Nginx.

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages