h2spacex
Race Condition Tool
A low-level HTTP/2 library for exploiting race conditions in web servers
HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy + Exploit Timing Attacks
153 stars
2 watching
9 forks
Language: Python
last commit: 4 months ago
Linked from 1 awesome list
http2race-conditionrace-conditionsscapysingle-packet-attack
secdev/awesome-scapyRelated projects:
| Repository | Description | Stars |
|---|---|---|
 vp777/metahttp | Automates scanning of HTTP resources in a target network using XML External Entity (XXE) attacks | 37 |
 hyperclaw79/hulk-v3 | A tool for launching Distributed Denial of Service (DDoS) attacks on HTTPS servers. | 361 |
 zerbea/hcxdumptool | A tool to capture and analyze packets from WLAN devices. | 1,858 |
 bishopfox/h2csmuggler | Smuggling HTTP traffic past proxy rules to bypass access controls | 661 |
 r3dxpl0it/cve-2018-4407 | Exploits a heap buffer overflow vulnerability in the XNU operating system kernel to cause a denial-of-service attack on iOS and macOS devices. | 35 |
 penumbra-x/rquest | An asynchronous HTTP client with TLS and fingerprint spoofing capabilities | 112 |
 phaethon/kamene | A tool for crafting and analyzing network packets and pcap files to support security research and testing. | 869 |
 fsecurelabs/timeinator | An extension for Burp Suite that allows users to perform timing attacks over unreliable networks | 21 |
 anshumanpattnaik/http-request-smuggling | Detects HTTP Request Smuggling vulnerabilities in web applications | 476 |
 r3nt0n/torddos | Automates DDoS attacks on websites using the Tor network and Python | 323 |
 1n3/sn1per | An attack surface management platform that automates the discovery of hidden assets and vulnerabilities in computer environments. | 8,190 |
 emo-crab/scap-rs | A collection of Rust libraries for working with vulnerability data from various sources. | 17 |
 trycatchhcf/packetwhisper | A tool for stealthy data transfer using DNS queries and text-based steganography to evade attribution and detection. | 624 |
 portswigger/httpoxy-scanner | Tools to help identify vulnerabilities in web applications using HTTPoxy scanning. | 90 |
 nachiketrathod/http.request.smuggling.desync.attack | An attacker exploits HTTP request smuggling to manipulate the sequence of requests and deceive both front-end and back-end security controls. | 14 |