http-smuggling

Community

Detect HTTP parsing flaws and request smuggling

Authorjinyimeng01
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps security professionals identify HTTP Request Smuggling vulnerabilities caused by inconsistent parsing between proxies, CDNs, WAFs, and backend servers.

Core Features & Use Cases

  • Smuggling Detection: Tests CL.TE, TE.CL, and TE.TE parsing discrepancies using timing and differential response analysis.
  • Attack Chain Analysis: Evaluates potential impacts including WAF bypass, cache poisoning, and request manipulation scenarios.
  • Use Case: Help an authorized penetration tester validate whether a web application infrastructure contains exploitable HTTP desynchronization issues across multiple proxy layers.

Quick Start

Use the http-smuggling skill to analyze an authorized target for HTTP request smuggling vulnerabilities and generate a validation report.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: http-smuggling
Download link: https://github.com/jinyimeng01/mastermind-bug-bounty/archive/main.zip#http-smuggling

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 545,000+ vetted skills library on demand.