Lab: HTTP request smuggling, obfuscating the TE header

Name: Lab: HTTP request smuggling, obfuscating the TE header
Uploaded: Premiered Jun 8, 2023
Duration: 560 s

Jarno Timmermans3.3K subscribers

10.5K views

Premiered Jun 8, 2023

9:20

In-depth solution to PortSwigger's HTTP request smuggling, obfuscating the TE header lab. 👀 Check out playlist https://www.youtube.com/playlist?list=PLGb2cDlBWRUX1_7RAIjRkZDYgAB3VbUSw for all my solutions to the HTTP Request Smuggling labs from PortSwigger. Try it yourself: https://portswigger.net/web-security/request-smuggling/lab-obfuscating-te-header Timestamps: 00:00 - Intro 00:28 - Explore the lab 00:43 - Prepare Repeater for Request Smuggling 01:52 - Detect what the frontend is using 02:41 - Detect what the backend is using 03:10 - Detect the TE header obfuscation vulnerability 04:22 - Confirm the TE header obfuscation vulnerability 06:26 - Craft and send the final payload

Download

1 formats

Video Formats

360pmp415.1 MB

Download

Right-click 'Download' and select 'Save Link As' if the file opens in a new tab.