HTTP Request Smuggling All-in-One
ฝัง
- เผยแพร่เมื่อ 30 ก.ย. 2024
- In this video, Busra Demir will explore how to exploit HTTP Request Smuggling by using different scenarios such as basic CL.TE and TE.CL vulnerabilities. She will look at confirming via different responses, obfuscating TE headers, bypassing front-end security controls, delivering reflected XSS, automating, and more.
good demo and well explained ! pls make more such vdos on other security web issues !!
How to know if the website is using Content-Length or Transfer-Encoding on front-end server? I'm trying to learn about HTTP Request Smuggling, Please clear my confusion.
contact me on telegram @@Masrawy69
@@michaelcohen5329 are you still available on telegram ?
Why did this work even though the Content-Length header was misspelled @02:04?
I was wondering that too. The content-Length is automatically corrected in the second request. I tested this myself and the same thing happened.
Burp has an option to update content length. IF that is checked, then the correctly spelled header will be re-inserted.
Oh my... nice material! Please keep em posting :) Learning a lot of practical things, thanks Busra!
One question tho, what does exactly /r/n do that /n can't and why you keep saying that even though you just do 2 line breaks?
I don't quite understand why is the second request is 5d and why is the second Content-Length being 15? Is the CL an arbitrary value?
you said we need to add to emtpy line after 0. then why didnt you add two empty line after 0 on14:23
I'm not getting any response for smuggled request at all. I only get error 404 when I type something wrong on purpose.
Can you recommend some further reading on this topic.. I don't understand what is going on... I am trying to get started in the cyber industry. Thanks
What software are u using to intercept calls
How did you get content length 15 at 5:59? Doesn't compute even if you add the trailing 4 bytes at the end
it's 10 bytes , but it will not affect if you put a bigger number like 15, but if you tried any smaller number than 10 , it will not work
@@omarataallah9451 hello, but why it have to be minimum 11... its 10 bytes big, so 10 should be enough, but it isnt working with 10. Can u explain, why it have to be 11, so one more byte as should be? Thanks in advance
Just waste of time
show me how to do it
-1
Beautiful lady. These eyes are like space. And the voice calls to fly into it.