Skills
.Work. You
Rest

defensive-request-smuggling

Community

Detect HTTP request smuggling for SOC triage.

Data & Analytics#http#waf#kql#sigma#desync#request-smuggling#soc-triage
Authorriparino
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Detects HTTP request smuggling and desync indicators (CL.TE and TE.CL) to prevent bypasses and unauthorized access in HTTP gateways and proxies.

Core Features & Use Cases

  • Detects CL+TE header conflicts and obfuscated Transfer-Encoding values that indicate desync attempts.
  • Provides Sigma-based detection rules and KQL queries for Azure Application Gateway anomalies, enabling SOC triage and incident response.
  • Guides remediation and hardening workflows to normalize headers and prevent downstream impact.

Quick Start

Enable the defensive-request-smuggling detection and start monitoring HTTP gateway traffic for desync indicators.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: defensive-request-smuggling
Download link: https://github.com/riparino/Claude-Cyber/archive/main.zip#defensive-request-smuggling

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.