Karthikeyan Nagaraj24.14 Lab: HTTP request smuggling, basic TE.CL vulnerability | 2024This lab involves a front-end and back-end server, and the back-end server doesn’t support chunked encoding. The front-end server rejects…2 min read·9 hours ago----
Karthikeyan Nagaraj24.13 Lab: HTTP request smuggling, basic CL.TE vulnerability | 2024This lab involves a front-end and back-end server, and the front-end server doesn’t support chunked encoding. The front-end server rejects…2 min read·1 day ago----
Karthikeyan Nagaraj24.12 Lab: CL.0 request smuggling | 2024This lab is vulnerable to CL.0 request smuggling attacks. The back-end server ignores the Content-Length header on requests to some…3 min read·1 day ago----
Karthikeyan Nagaraj24.11 Lab: HTTP/2 request splitting via CRLF injection |2024This lab is vulnerable to request smuggling because the front-end server downgrades HTTP/2 requests and fails to adequately sanitize…3 min read·2 days ago----
Karthikeyan Nagaraj24.10 Lab: HTTP/2 request smuggling via CRLF injection | 2024This lab is vulnerable to request smuggling because the front-end server downgrades HTTP/2 requests and fails to adequately sanitize…3 min read·3 days ago----
Karthikeyan NagarajCyber Security Awareness by Sanjay Kumar (ADGP), Cyber Crime WingCyber security awareness refers to the knowledge and understanding of potential threats in the online realm and adopting measures to…4 min read·4 days ago----
Karthikeyan Nagaraj24.9 Lab: H2.CL request smuggling | 2024This lab is vulnerable to request smuggling because the front-end server downgrades HTTP/2 requests even if they have an ambiguous length…2 min read·6 days ago----
Karthikeyan Nagaraj24.8 Lab: Response queue poisoning via H2.TE request smuggling | 2024This lab is vulnerable to request smuggling because the front-end serve downgrades HTTP/2 requests even if they have an ambiguous length…3 min read·May 4, 2024----
Karthikeyan Nagaraj24.7 Lab: Exploiting HTTP request smuggling to deliver reflected XSS | 2024This lab involves a front-end and back-end server, and the front-end server doesn’t support chunked encoding The application is also…2 min read·May 3, 2024----
Karthikeyan Nagaraj24.6 Lab: Exploiting HTTP request smuggling to capture other users requests | 2024This lab involves a front-end and back-end server, and the front-end server doesn’t support chunked encoding. To solve the lab, smuggle a…3 min read·May 2, 2024----