【Web 应用安全新趋势】 HTTP Desync Attacks: Request Smuggling

正文

原文
https://portswigger.net/blog/http-desync-attacks-request-smuggling-reborn

先知社区
https://xz.aliyun.com/t/5978

Blackhat USA 2019
https://www.blackhat.com/us-19/briefings/schedule/index.html#http-desync-attacks-smashing-into-the-cell-next-door-15153

HTTP 请求夹带(smuggling)攻击 – 艾斯泽 – 博客园
https://www.cnblogs.com/icez/p/web-security-request-smuggling.html

相关工具
https://github.com/PortSwigger/http-request-smuggler

• #Application Security