Skip to content

CRLF

Introduction

  • https://speakerdeck.com/shikarisenpai/crlf-and-openredirect-for-dummies?slide=28

Tools

  • CRLF-Injection-Scanner: https://github.com/MichaelStott/CRLF-Injection-Scanner/blob/master/crlf_scan.py
  • CRLF - Auto CRLF Injector: https://github.com/rudSarkar/crlf-injector

Payloads

  • CRLF-Injection-Payloads:
  • https://github.com/cujanovic/CRLF-Injection-Payloads/blob/master/CRLF-payloads.txt
  • https://github.com/mubix/tools/blob/master/fuzzdb/attack-payloads/http-protocol/crlf-injection.fuzz.txt