■■■□□ [Tool] headerpwn: A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
Useful for uncovering the following behaviors:
– Header based access control issues
– 403/401 Bypasses
– Detecting anomalies when certain special headers are present
– Header based cache poisoning denial of service issues
– Debug information disclosure when certain headers are present
– etc.
https://github.com/devanshbatham/headerpwn
https://t.me/cKure/12760