Test for HTTP Request Smuggling

Question

Test for HTTP Request Smuggling

Opened this issue a year ago · 4 comments

Answer 1 · 2023-07-21T07:32:39.000Z

Do you think that it will be sufficient to check if server uses HTTP 1.1 since this attack is possible for that protocol version only?

Answer 2 · 2023-07-22T21:08:09.000Z

In my opinion this won't be sufficient because there is plenty of HTTP 1.1 servers that are not vulnerable to this attack, therefore such a check would have a large percentage of false positives

Answer 3 · 2023-07-24T14:59:30.000Z

I think there is no sane reason to keep HTTP 1.1 if there is version 2.0 which cuts this vulnerability off, but you are right, not all HTTP 1.1 servers are vulnerable. I will try to find a solution to identify HTTP Request Smuggling attack, however, I think it is worth to implement check if HTTP runs on 1.1 version and recommend switching to 2.0.

Answer 4 · 2023-10-30T10:59:28.000Z

if possible, implementing a Nuclei template is a better idea than an Artemis module