HTTP request smuggling attack

Ihebhamad0x · September 30, 2019, 5:07am

This kind of bug was interesting, but I was stuck in understanding some of these two points.

What if there was no load balancer or reverse proxy is this bug still exploitable?
Is there any specific endpoints to look for?

Thanks,
Iheb Hamad

waike · October 3, 2019, 2:13pm

If you’re thinking about the recently popularised HTTP Desync attack technique, then there does need to be a load balancer, reverse proxy or similar in place - otherwise, what two systems would you desynchronize?

Usually you want to look for POST forms, namely the login page.

fuzzsqlb0f · December 22, 2019, 4:46pm

@Waike I have gone through portswigger tutorial and if we get 404 for hopefully404 Turbo Intruder script than does it means Http-request-smuggling is successful.

My thought: Why we get 404 is because smuggled Get request is also responded via Post request

Thanks

Topic		Replies	Views
Admin Backend visible 403 Unauthorized Web Hacking	1	2571	July 25, 2022
LevelUp 0x03 - Turbo Intruder: Abusing HTTP Misfeatures to Accelerate Attacks by albinowax LevelUp Conference	1	2995	December 11, 2019
Security misconfiguration, but is it enough for a report? Starter Zone	5	1592	June 22, 2020
Testing the UBNT EdgeRouter Web Interface Web Hacking	1	2254	November 11, 2018
Possible Access Control Bug? Web Hacking	6	1670	October 26, 2019

HTTP request smuggling attack

Related Topics