Varnish-H2-Request-Smuggling

Varnish smuggler

A Docker-based test environment for simulating a Varnish HTTP/2 request smuggling vulnerability

GitHub

55 stars
4 watching
9 forks
Language: VCL
last commit: over 3 years ago

Related projects:

Repository Description Stars
anshumanpattnaik/http-request-smuggling Detects HTTP Request Smuggling vulnerabilities in web applications 476
portswigger/http-request-smuggler An extension for Burp Suite to help identify and exploit HTTP Request Smuggling vulnerabilities. 961
bishopfox/h2csmuggler Smuggling HTTP traffic past proxy rules to bypass access controls 661
nachiketrathod/http.request.smuggling.desync.attack An attacker exploits HTTP request smuggling to manipulate the sequence of requests and deceive both front-end and back-end security controls. 14
defparam/smuggler An HTTP Request Smuggling / Desync testing tool written in Python 3 1,840
amirnsahmad/smuggler A tool for testing HTTP request smuggling and desync issues in web servers. 13
teamssix/container-escape-check Detects potential vulnerabilities in Docker containers by checking for common escape methods 560
defparam/tiscripts Tools for generating custom request smuggling payloads to exploit vulnerabilities in web applications. 218
isaqueprofeta/gvm-vagrant A Vagrant box for running a vulnerability scanner on Alpine Linux 4
cve-search/git-vuln-finder Automates CVE vulnerability detection from Git commit messages 402
0ang3el/websocket-smuggle A tool to expose security vulnerabilities in WebSocket reverse proxying allowing HTTP requests to be smuggled through 341
dragokas/hijackthis Scans for and identifies malicious system modifications 704
run41/honey_ports A honeypot solution to detect port scanning on networks by imitating common ports and logging suspicious activity. 7
trycatchhcf/packetwhisper A tool for stealthy data transfer using DNS queries and text-based steganography to evade attribution and detection. 624
mojtabatajik/robber Tools to detect DLL hijacking vulnerabilities in executable files 767