{"id":22021964,"url":"https://github.com/knightchaser/lyraesel","last_synced_at":"2026-04-27T12:33:45.108Z","repository":{"id":226771201,"uuid":"769603562","full_name":"KnightChaser/lyraesel","owner":"KnightChaser","description":"HTTP smuggling demonstration to send malicious executables with only Base64-encoded string to evade security system.","archived":false,"fork":false,"pushed_at":"2024-03-10T09:53:08.000Z","size":1228,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-01-28T16:46:43.908Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/KnightChaser.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2024-03-09T14:47:14.000Z","updated_at":"2024-03-10T09:38:25.000Z","dependencies_parsed_at":"2024-03-09T15:57:05.918Z","dependency_job_id":null,"html_url":"https://github.com/KnightChaser/lyraesel","commit_stats":null,"previous_names":["knightchaser/lyraesel"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/KnightChaser%2Flyraesel","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/KnightChaser%2Flyraesel/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/KnightChaser%2Flyraesel/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/KnightChaser%2Flyraesel/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/KnightChaser","download_url":"https://codeload.github.com/KnightChaser/lyraesel/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245086177,"owners_count":20558531,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-30T06:16:51.681Z","updated_at":"2026-04-27T12:33:40.085Z","avatar_url":"https://github.com/KnightChaser.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# lyraesel\n\n### HTTP smuggling demonstration (sending executable files with Base64-based text string, not executable itself to evade general security system)\n\nHTTP smuggling is a technique used to send executable files using only JavaScript and the `application/octet-stream` content type. This technique can be used to bypass general security systems that may block or inspect certain file types.\n\nTo perform HTTP smuggling, the following steps can be followed:\n\n1. Encode the executable file into a JavaScript-friendly format, such as Base64.\n2. Apply cyclic XOR encryption to the encoded file to randomize network traffic.\n3. Embed the encrypted file within a JavaScript code snippet.\n4. Set the `Content-Type` header of the HTTP request to `application/octet-stream`.\n5. Send the HTTP request containing the JavaScript code snippet to the target server.\n\nIt's important to note that HTTP smuggling can be considered a security vulnerability and is often used for malicious purposes. It's crucial to understand the risks associated with this technique and use it responsibly, only in controlled environments for legitimate purposes.\n\n### Execution\n- Run `webserver.py` built on FastAPI via command `uvicorn webserver:app --reload` command.\n- Access to the local web page(`127.0.0.1:8000` probably. The console will show which URL you should go to check this project), then `kaldrexx.exe` will be downloaded. For more information about `kaldrexx.exe`, go to **[https://github.com/KnightChaser/kaldrexx](https://github.com/KnightChaser/kaldrexx)**(msfconsole's meterpreter reverse HTTP shell.).","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fknightchaser%2Flyraesel","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fknightchaser%2Flyraesel","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fknightchaser%2Flyraesel/lists"}