Desync Attack | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Making desync attacks easy with TRACE	Desync Attack HTTP Request Smuggling Web Cache Poisoning	Undisclosed	Martin Doyhenard (@Tincho_508)
Exploiting HTTP Parsers Inconsistencies	Parsing Issue WAF Bypass SSRF Desync Attack Cache Poisoning Attack	Nginx AWS Spring Boot Flask PHP	Rafael Da Costa Santos (@Rafabyte_)
HTTP Desync Attack (Request Smuggling) - Mass Account Takeover at a Cryptocurrency based asset and 121 other websites	HTTP Request Smuggling Desync Attack	Undisclosed	Ankit Singh (@AnkitCuriosity)
How to turn security research into profit: a CL.0 case study	HTTP Request Smuggling Desync Attack	Undisclosed	James Kettle (@Albinowax)
Advanced Inter-Process Desynchronization in SAP’s HTTP Server	Memory Corruption RCE HTTP Request Smuggling Web Cache Poisoning Desync Attack	SAP	Martin Doyhenard (@Tincho_508)
Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling	HTTP Request Smuggling Desync Attack	AWS Amazon Akamai Cisco Verisign Pulse Secure Varnish	James Kettle (@Albinowax)

Page 1 of 1