CRLFMap: Discover HTTP Splitting Vulnerabilities

CRLFMap is a tool for finding HTTP Splitting vulnerabilities.

Installation

go get github.com/ryandamour/crlfmap

Help

Available Commands:

help Help about any command
scan A scanner for all your CRLF needs

flags:
-h, –help help for crlfmap

Use

crlfmap scan – domains.txt – output results.txt

=============================
CRLFMap v0.0.1
by Ryan D'Amour @ryandamour
=============================
:: Domains: domains.txt
:: Payloads: payloads.txt
:: : 1
:: Output: results.txt
:: User Agent: Mozilla / 5.0 (X11; Linux x86_64) AppleWebKit / 537.36 (KHTML, like Gecko) Chrome / 81.0.4044.138 Safari / 537.36
:: Timeout: 10
:: Delay: 0
=============================
[+] http: // localhost: 3000 / v1 /% 0AInjected-Header: CRLFInjecttest.json: is Vulnerable
[+] http: // localhost: 3000 / v1 /% 20% 0AInjected-Header: CRLFInjecttest.json: is Vulnerable

=============================

You can download it from here.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.082 registrants.

HTTP Splitting

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).