Burp Suite HTTP Smuggler

A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques.
This extension has been developed by Soroush Dalili (@irsdl) from NCC Group.

The initial release (v0.1) only supports the Encoding capability that can be quite complicated to be performed manually.
See the references for more details.

Next versions will include more techniques and possible bug fixes.

Example Screenshots

AppSec EU 18 - example1

AppSec EU 18 - example2

References:

Released under AGPL v3.0 see LICENSE for more information

Name With Owner	nccgroup/BurpSuiteHTTPSmuggler
Primary Language	Java
Program language	Java (Language Count: 1)
Platform
License:	GNU Affero General Public License v3.0

Name With Owner

nccgroup/BurpSuiteHTTPSmuggler

Primary Language

Java

Program language

Java (Language Count: 1)

Platform

License:

GNU Affero General Public License v3.0

Created At	2018-07-03 07:47:58
Pushed At	2019-05-04 06:15:42
Last Commit At	2019-05-04 07:15:41
Release Count	1
Last Release Name	v0.1 (Posted on )
First Release Name	v0.1 (Posted on )

Created At

2018-07-03 07:47:58

Pushed At

2019-05-04 06:15:42

Last Commit At

2019-05-04 07:15:41

Release Count

Last Release Name

v0.1 (Posted on )

First Release Name

v0.1 (Posted on )

Stargazers Count	723
Watchers Count	27
Fork Count	107
Commits Count	13
Has Issues Enabled
Issues Count	6
Issue Open Count	1
Pull Requests Count	1
Pull Requests Open Count	0
Pull Requests Close Count	0

Stargazers Count

723

Watchers Count

Fork Count

107

Commits Count

Has Issues Enabled

Issues Count

Issue Open Count

Pull Requests Count

Pull Requests Open Count

Pull Requests Close Count

Has Wiki Enabled
Is Archived
Is Fork
Is Locked
Is Mirror
Is Private

Has Wiki Enabled

Is Archived

Is Fork

Is Locked

Is Mirror

Is Private

BurpSuiteHTTPSmuggler

Github stars Tracking Chart

Burp Suite HTTP Smuggler

Example Screenshots

References:

Main metrics