Skip to content
/ CRLFsuite Public

The most powerful CRLF injection (HTTP Response Splitting) scanner.

License

MIT license
556 stars 77 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Raghavd3v/CRLFsuite

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

104 Commits
crlfsuite
crlfsuite
 
 
static
static
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
setup.py
setup.py
 
 

Repository files navigation

CRLFsuite - CRLF injection scanner

made-with-python GitHub release PyPI license GitHub forks GitHub contributors

The project is no more managed by developers.

CRLFsuite is a powerful tool for CRLF injection detection and exploitation. Want to know how it works. Here's how

Installation

You can install CRLFsuite using pip as given below:

pip3 install crlfsuite

or download this repository and run the following command:

sudo python3 setup.py install

Features

  • Single URL scanning

  • Multiple URL scanning

  • Stdin supported

  • WAF detection

  • Powerful payload generator

  • CRLF Injection to XSS Chaining feature

  • GET & POST method supported

  • Concurrency

  • Fast and efficient scanning with negligible false-positive

Newly added in v2.5.1:

  • Json & Text ouput supported

  • Multiple headers supported

  • Verbose output supported

  • Scan can be resumed after CTRL^C is pressed

  • Added heuristic (basic) scanner

  • Compatibility with windows

credits

About

The most powerful CRLF injection (HTTP Response Splitting) scanner.

Topics

pentesting bugbounty ethical-hacking security-tools pentest-tool crlf-injection waf-detection webapp-pentesting http-response-splitting

Resources

Readme

License

MIT license
Activity

Stars

556 stars

Watchers

9 watching

Forks

77 forks
Report repository

Releases 7

CRLFsuite v2.5.2 Latest
Aug 16, 2022
+ 6 releases

Packages

No packages published

Contributors 2

Languages