CRLFMap is a tool to find HTTP Splitting vulnerabilities.
Why?
Installation
go get github.com/ryandamour/crlfmap
Help
Available Commands:
help Help about any command
scan A scanner for all your CRLF needs
Flags:
-h, –help help for crlfmap
Scan Usage
crlfmap scan –domains domains.txt –output results.txt
———————————————————————————————
v0.0.1
———————————————————————————————
:: Domains : domains.txt
:: Payloads : payloads.txt
:: Threads : 1
:: Output : results.txt
:: User Agent : Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.138 Safari/537.36
:: Timeout : 10
:: Delay : 0
——————————————————————————————————————–
[+]http://localhost:3000/v1/%0AInjected-Header:CRLFInjecttest.json: is Vulnerable
[+]http://localhost:3000/v1/%20%0AInjected-Header:CRLFInjecttest.json: is Vulnerable
Artificial Intelligence (AI) is changing how industries operate, automating processes, and driving new innovations. However,…
Image credit:pexels.com If you think back to the early days of personal computing, you probably…
In an era defined by technological innovation, the way people handle and understand money has…
The online world becomes more visually driven with every passing year. Images spread across websites,…
General Working of a Web Application Firewall (WAF) A Web Application Firewall (WAF) acts as…
How to Send POST Requests Using curl in Linux If you work with APIs, servers,…