forked from PortSwigger/http-request-smuggler
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathBappDescription.html
More file actions
11 lines (7 loc) · 837 Bytes
/
BappDescription.html
File metadata and controls
11 lines (7 loc) · 837 Bytes
1
2
3
4
5
6
7
8
9
10
11
<p>This is an extension for Burp Suite designed to help you launch <a href="https://portswigger.net/research/http-desync-attacks">HTTP Request Smuggling</a> attacks. It supports scanning for Request Smuggling vulnerabilities, and also aids exploitation by handling cumbersome offset-tweaking for you.</p>
<h4>Use</h4>
<p>Right click on a request and click 'Launch Smuggle probe', then watch the extension's output pane.
For more advanced use watch the <a href="https://portswigger.net/research/http-desync-attacks">video</a>, and check out the <a href="https://github.com/PortSwigger/http-request-smuggler">documentation</a>.</p>
<h4>Practice</h4>
<p>We've also released <a href="https://portswigger.net/web-security/request-smuggling">free online labs to practise against</a>.</p>
<p>Copyright © 2018-2022 PortSwigger Ltd.</p>