HTTP Request Smuggling - False Positives

No video

HTTP Request Smuggling - False Positives

Рет қаралды 12,891

Күн бұрын

I had a chance to work together with Google Bug Hunters on a video regarding HTTP Request Smuggling false positives. This is the result.
▶️ KZfaq: / pinkdraconian
🎁 Patreon: / pinkdraconian
🐦 Twitter: / pinkdraconian
🎵 TikTok: / pinkdraconian
ℹ️ LinkedIn: / robbe-van-roey-365666195
📞 Discord: PinkDraconian#9907
📷 Instagram: / robbevanroey
🕸️ Website: pinkdraconian.d...
👨‍💻 HackTheBox: www.hackthebox...
🤖 Reddit: / pinkdraconian
☁️ Steam: steamcommunity...
🐈 GitHub: github.com/Pin...

Пікірлер: 53

@SurpriseExecution 7 ай бұрын

Very well explained! I earlier read PortSwiggers material about request smuggling, but this video basically clarified a lot of this topic :)

@PinkDraconian 7 ай бұрын

Thanks! Happy to hear that this video helped so much!

@jlinscott8529 2 жыл бұрын

Great stuff, as always, mate! I definitely want to look into HTTP smuggling, and HTTP desync, more now. Thanks!

@PinkDraconian 2 жыл бұрын

It's a very interesting vulnerability. I was mindblown by it at first!

@pwnearth5505 2 жыл бұрын

@@PinkDraconian thanks 👍🏼♥️

@AidinNaserifard 2 жыл бұрын

Great video, keep it up , bro💜👊

@PinkDraconian 2 жыл бұрын

Thank you!

@lancemarchetti8673 Жыл бұрын

Loving this channel !!

@PinkDraconian Жыл бұрын

Aww thanks!

@camelotenglishtuition6394 Жыл бұрын

Great video dude... I really love these types of attacks, I also prefer not to scan and do most work manually..

@SalmanKhan.78692 2 жыл бұрын

Awesome content for cyber security 🔥🔥🔥

@PinkDraconian 2 жыл бұрын

Thank you so much!

@SeanCallahan52 9 ай бұрын

Request smuggling is so cool. Idk why but it’s one of my favorite attacks.

@PinkDraconian 9 ай бұрын

Same, I love this attack. I think it still has so much research potential as well!

@SeanCallahan52 9 ай бұрын

@@PinkDraconian 💯, James Kettle has some nice material on it. Still a ton left to be uncovered!

@angryman9333 Жыл бұрын

I needed that pipelining method thank you, hopefully it works out :)

@PinkDraconian Жыл бұрын

Best of luck!

@CristiVladZ 8 ай бұрын

Really good explanation

@PinkDraconian 8 ай бұрын

Thank you Cristi, means a lot coming from you!

@faresmahmoud7826 Жыл бұрын

very great , You solved a very difficult puzzle .... thanks so much😍

@PinkDraconian Жыл бұрын

You are welcome 😊

@BugBountyReportsExplained 2 жыл бұрын

I'm going to send here anyone that DMs me with a HRS false-positive

@PinkDraconian 2 жыл бұрын

Thank you! Let's get these false positive reports out of the world!

@khayla_matthews 2 жыл бұрын

Very interesting video! 👍🏾 thanks for sharing

@PinkDraconian 2 жыл бұрын

Thank you for watching!

@nigelcarruthers335 2 жыл бұрын

I run across a lot of false positives with AWS load balancers.

@PinkDraconian 2 жыл бұрын

Good to know! I read about this but wasn't able to reproduce myself. Didn't try for too long tho!

@ibrahimmuhammad4194 2 жыл бұрын

Thank you!

@PinkDraconian 2 жыл бұрын

Thank you!

@pwnearth5505 2 жыл бұрын

🔥🔥🔥👍🏼

@PinkDraconian 2 жыл бұрын

🧯🚒👩‍🚒

@MusicLover-bp2cc Жыл бұрын

Thank you. I will subscribe.

@PinkDraconian Жыл бұрын

Thanks for the sub!

@rubenrodenascebrian3855 7 ай бұрын

I really liked your video. Could you tell me which app you use to create the images? It looks very nice.

@PinkDraconian 7 ай бұрын

Thank you very much. I use the Adobe suite for all images shown.

@ARZ10198 2 жыл бұрын

good stuff < 3

@PinkDraconian 2 жыл бұрын

Thanks

@HaiderAli-hm4lb 5 ай бұрын

Hey! This video is great. I had a question. Are specific endpoints of a website vulnerable to HTTP Request smuggling or a website as a whole is vulnerable to HTTP Request smuggling?

@PinkDraconian 5 ай бұрын

This vulnerability exists at a lower level than specific endpoints, so it will likely be all endpoints.

@oscarsobrevilla21 9 ай бұрын

Hi, what about servers like s3 (only for statics) under a balancer like f5 ? Exist the vulnerability? T thanks

@PinkDraconian 9 ай бұрын

It all depends on the setup and whether the component is vulnerable. www.praetorian.com/blog/refresh-compromising-f5-big-ip-with-request-smuggling-cve-2023-46747/

@hackerexploit8890 Жыл бұрын

How we spot the HTTP Request Smuggling Vulne .

@PinkDraconian Жыл бұрын

There's a great PortSwigger academy article on this!

@wolfie6512 2 жыл бұрын

Third Comment!

@PinkDraconian 2 жыл бұрын

What an achievement!

@bjarne9700 24 күн бұрын

Great video - I understand the desync aspect but what I dont understand is how this could be exploited. From my current understanding, worst that could happen is that another user gets the response to the request I smuggled in. For example I request /indext.html and smuggle /404.html. The user that sends the next request will receive my 404 response. How could this behavior be levaraged to pose any harm outside of a DOS attack - giving as many people as possible 404s

@PinkDraconian 11 күн бұрын

There are loads of way of further weaponizing request smuggling. Here's a great article by PortSwigger: portswigger.net/web-security/request-smuggling/exploiting