{"id":13362327,"url":"https://github.com/GrrrDog/weird_proxies","last_synced_at":"2025-03-12T15:30:54.642Z","repository":{"id":37734879,"uuid":"157694999","full_name":"GrrrDog/weird_proxies","owner":"GrrrDog","description":"Reverse proxies cheatsheet","archived":false,"fork":false,"pushed_at":"2023-11-04T18:48:13.000Z","size":94,"stargazers_count":1800,"open_issues_count":2,"forks_count":211,"subscribers_count":57,"default_branch":"master","last_synced_at":"2025-03-03T04:23:30.584Z","etag":null,"topics":["cheatsheet","pentesting","reverse-proxy","security"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/GrrrDog.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2018-11-15T10:42:04.000Z","updated_at":"2025-03-02T06:07:42.000Z","dependencies_parsed_at":"2024-01-28T03:41:14.137Z","dependency_job_id":"73cb86c9-da3d-4f4b-94f8-c5ed280cd8a9","html_url":"https://github.com/GrrrDog/weird_proxies","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GrrrDog%2Fweird_proxies","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GrrrDog%2Fweird_proxies/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GrrrDog%2Fweird_proxies/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GrrrDog%2Fweird_proxies/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GrrrDog","download_url":"https://codeload.github.com/GrrrDog/weird_proxies/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":243242696,"owners_count":20259804,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cheatsheet","pentesting","reverse-proxy","security"],"created_at":"2024-07-29T23:00:42.625Z","updated_at":"2025-03-12T15:30:54.359Z","avatar_url":"https://github.com/GrrrDog.png","language":"Python","funding_links":[],"categories":["Python","Pentesting","Others","Others (1002)"],"sub_categories":["ARM"],"readme":"# Weird Proxies\n\nIt's a cheat sheet about behaviour of various reverse proxies and related attacks.\n\nIt is a result of analysis of various reverse proxies, cache proxies, load balancers, etc.\nThe article (https://www.acunetix.com/blog/articles/a-fresh-look-on-reverse-proxy-related-attacks/) describes the goals of the research and how you can use the cheat sheet.\n \nAnalyzed stuff:\n- [Nginx](Nginx.md)\n- [Apache](Apache.md)\n- [Haproxy/Nuster](Haproxy-and-Nuster.md)\n- [Varnish](Varnish.md)\n- [Traefik](Traefik.md)\n- [Envoy](Envoy.md)\n- [Caddy](Caddy.md)\n- [AWS](AWS.md)\n- [Cloudflare](Cloudflare.md)\n- [Stackpath](Stackpath.md)\n- [Fastly](Fastly.md)\n\nAdditional:\n- [Test Labs](labs)\n\nRelated articles/white papers/presentations:\n- [Reverse proxies \u0026 Inconsistency](https://speakerdeck.com/greendog/reverse-proxies-and-inconsistency)\n- [Weird proxies/2 and a bit of magic](https://speakerdeck.com/greendog/2-and-a-bit-of-magic)\n- [Attacking Secondary Contexts in Web Applications](https://docs.google.com/presentation/d/1N9Ygrpg0Z-1GFDhLMiG3jJV6B_yGqBk8tuRWO1ZicV8/mobilepresent?slide=id.p)\n- [Hacking Starbucks and Accessing Nearly 100 Million Customer Records](https://samcurry.net/hacking-starbucks/)\n- [Middleware, middleware everywhere - and lots of misconfigurations to fix](https://labs.detectify.com/2021/02/18/middleware-middleware-everywhere-and-lots-of-misconfigurations-to-fix/)\n- [ParseThru – Exploiting HTTP Parameter Smuggling in Golang](https://www.oxeye.io/blog/golang-parameter-smuggling-attack)\n- [HTTP.ninja](https://github.com/irsdl/httpninja)\n- [Server Technologies - Reverse Proxy Bypass](https://www.contextis.com/en/blog/server-technologies-reverse-proxy-bypass)\n- [Cracking the lens: targeting HTTP's hidden attack-surface](https://portswigger.net/research/cracking-the-lens-targeting-https-hidden-attack-surface)\n- [Abusing HTTP hop-by-hop request headers](https://nathandavison.com/blog/abusing-http-hop-by-hop-request-headers)\n- [The perils of the “real” client IP](https://adam-p.ca/blog/2022/03/x-forwarded-for/)\n- [Smuggling HTTP headers through reverse proxies](http://github.security.telekom.com/2020/05/smuggling-http-headers-through-reverse-proxies.html)\n- [At Home Among Strangers](https://speakerdeck.com/bo0om/at-home-among-strangers)\n- [h2c Smuggling: Request Smuggling Via HTTP/2 Cleartext (h2c)](https://labs.bishopfox.com/tech-blog/h2c-smuggling-request-smuggling-via-http/2-cleartext-h2c)\n- [H2C Smuggling in the Wild](https://blog.assetnote.io/2021/03/18/h2c-smuggling/)\n- [A story of leaking uninitialized memory from Fastly](https://medium.com/@emil.lerner/leaking-uninitialized-memory-from-fastly-83327bcbee1f)\n- [What’s wrong with WebSocket APIs? Unveiling vulnerabilities in WebSocket APIs](https://www.slideshare.net/0ang3el/whats-wrong-with-websocket-apis-unveiling-vulnerabilities-in-websocket-apis)\n- [HTTP Desync Attacks: Request Smuggling Reborn](https://portswigger.net/research/http-desync-attacks-request-smuggling-reborn)\n- [HTTP Request Smuggling via higher HTTP versions](https://www.slideshare.net/neexemil/http-request-smuggling-via-higher-http-versions)\n- [HTTP/2: The Sequel is Always Worse](https://portswigger.net/research/http2)\n- [Response Smuggling:Exploiting HTTP/1.1 Connections](https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Martin%20Doyhenard%20-%20Response%20Smuggling-%20Pwning%20HTTP-1.1%20Connections.pdf)\n- [Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling](https://portswigger.net/research/browser-powered-desync-attacks)\n- [Making HTTP header injection critical via response queue poisoning](https://portswigger.net/research/making-http-header-injection-critical-via-response-queue-poisoning)\n- [Cache poisoning and other dirty tricks](https://lab.wallarm.com/cache-poisoning-and-other-dirty-tricks-120468f1053f/)\n- [Practical Web Cache Poisoning](https://portswigger.net/research/practical-web-cache-poisoning)\n- [Web Cache Entanglement: Novel Pathways to Poisoning](https://i.blackhat.com/USA-20/Wednesday/us-20-Kettle-Web-Cache-Entanglement-Novel-Pathways-To-Poisoning-wp.pdf)\n- [HTTP Caching Tests](https://cache-tests.fyi/)\n- [CPDoS: Cache Poisoned Denial of Service](https://cpdos.org/)\n- [The Case of the Missing Cache Keys](https://enumerated.wordpress.com/2020/08/05/the-case-of-the-missing-cache-keys/)\n- [Responsible denial of service with web cache poisoning](https://portswigger.net/research/responsible-denial-of-service-with-web-cache-poisoning)\n- [Cache Poisoning Denial-of-Service Attack Techniques](https://www.acunetix.com/blog/web-security-zone/cache-poisoning-dos-attack-techniques/)\n- [Cache-Key Normalization DoS](https://iustin24.github.io/Cache-Key-Normalization-Denial-of-Service/)\n- [Web Cache Deception Attack](https://omergil.blogspot.com/2017/02/web-cache-deception-attack.html)\n- [Cached and Confused: Web Cache Deception in the Wild](https://sajjadium.github.io/files/usenixsec2020wcd_paper.pdf)\n- [Let's Dance in the Cache - Destabilizing Hash Table on Microsoft IIS!](https://blog.orange.tw/2022/08/lets-dance-in-the-cache-destabilizing-hash-table-on-microsoft-iis.html)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FGrrrDog%2Fweird_proxies","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FGrrrDog%2Fweird_proxies","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FGrrrDog%2Fweird_proxies/lists"}