EN
ENNA

Smuggler

MIT

๐Ÿ•ธ Web Scanning ยท Python

Smuggler is an HTTP request smuggling / desync testing tool written in Python. It tests for vulnerabilities where a front-end server and back-end server disagree on how to parse HTTP requests, specifically around Content-Length and Transfer-Encoding header handling. This disagreement can allow an attacker to 'smuggle' a second request inside the first, potentially bypassing security controls, poisoning web caches, hijacking other users' requests, or accessing internal endpoints. Smuggler tests for CL.TE (Content-Length / Transfer-Encoding), TE.CL (Transfer-Encoding / Content-Length), and TE.TE (Transfer-Encoding / Transfer-Encoding with obfuscation) variants. It sends carefully crafted requests and analyzes timing differences and response behavior to detect desync conditions. The tool is essential for testing modern web architectures that use reverse proxies, CDNs, and load balancers.

2.1kstars
329forks
18issues
Updated 2y ago
View on GitHub

Installation

from source

$ git clone https://github.com/defparam/smuggler.git && cd smuggler && pip install -r requirements.txt

Use Cases

  • Testing reverse proxy and CDN configurations for HTTP request smuggling
  • Detecting CL.TE and TE.CL desync vulnerabilities in web infrastructure
  • Identifying cache poisoning vectors through request smuggling techniques
  • Assessing web application firewall bypass via HTTP desynchronization
  • Validating load balancer and proxy header parsing consistency

Tags

request-smugglingdesynchttpproxycache-poisoning

Details

Category
๐Ÿ•ธ Web Scanning
Language
Python
License
MIT
Platforms
๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows

Links

GitHub Repository

github.com/defparam/smuggler

Releases

github.com/defparam/smuggler/releases

Issues

github.com/defparam/smuggler/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Alternatives & Comparisons

Nuclei

Go

Fast vulnerability scanner driven by YAML templates. Thousands of community-contributed detection templates.

Compare Smuggler vs Nuclei

Feroxbuster

Rust

Fast, recursive content discovery tool written in Rust. Like gobuster on steroids with auto-recursion.

Compare Smuggler vs Feroxbuster

ffuf

Go

Fast web fuzzer written in Go. Fuzz anything - URLs, headers, POST data - with blazing speed.

Compare Smuggler vs ffuf

More in Web Scanning

httpx

Go

Fast multi-purpose HTTP toolkit. Probes for running HTTP servers with retries and fallbacks.

http-probetech-detectionprojectdiscovery

Nikto

Perl

Classic web server scanner. Tests for dangerous files, outdated server software, and version-specific problems.

web-serverclassiccgi-scan

Gobuster

Go

Directory/file, DNS, and vhost busting tool. Brute-forces URIs, DNS subdomains, virtual host names, and S3 buckets.

directory-brutedns-brutevhost

Feroxbuster

Rust

Fast, recursive content discovery tool written in Rust. Like gobuster on steroids with auto-recursion.

directory-bruterecursiverust

Burp Suite Community

Java

Web vulnerability scanner and proxy. Intercept, modify, and replay HTTP/S traffic for web app testing.

proxyweb-appinterceptor

ffuf

Go

Fast web fuzzer written in Go. Fuzz anything - URLs, headers, POST data - with blazing speed.

fuzzingdirectory-brutefast