{"id":20858336,"url":"https://github.com/rudsarkar/crlf-injector","last_synced_at":"2025-05-12T08:31:21.900Z","repository":{"id":62067574,"uuid":"95146966","full_name":"rudSarkar/crlf-injector","owner":"rudSarkar","description":"A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commonly done by modifying an HTTP parameter or URL. ","archived":false,"fork":false,"pushed_at":"2022-04-08T01:48:53.000Z","size":210,"stargazers_count":46,"open_issues_count":0,"forks_count":21,"subscribers_count":1,"default_branch":"master","last_synced_at":"2024-11-09T14:38:22.348Z","etag":null,"topics":["bugbounty","crlf-injection","python","toolshacking"],"latest_commit_sha":null,"homepage":"https://www.owasp.org/index.php/CRLF_Injection","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/rudSarkar.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2017-06-22T18:54:21.000Z","updated_at":"2024-08-12T19:30:48.000Z","dependencies_parsed_at":"2022-10-26T00:31:30.587Z","dependency_job_id":null,"html_url":"https://github.com/rudSarkar/crlf-injector","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rudSarkar%2Fcrlf-injector","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rudSarkar%2Fcrlf-injector/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rudSarkar%2Fcrlf-injector/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rudSarkar%2Fcrlf-injector/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rudSarkar","download_url":"https://codeload.github.com/rudSarkar/crlf-injector/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225130773,"owners_count":17425506,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bugbounty","crlf-injection","python","toolshacking"],"created_at":"2024-11-18T04:45:39.478Z","updated_at":"2024-11-18T04:45:39.923Z","avatar_url":"https://github.com/rudSarkar.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# CRLF.py\nCRLF - Auto CRLF Injector\n\nAuthor: [Rudra Sarkar](https://twitter.com/rudr4_sarkar)\n\nDisclaimer: I am not responsible for any damage done using this tool. This tool should only be used for educational purposes and for penetration testing.\n\n### Compatibility:\n* Any platform using Python 2.7\n\n### Requirements:\n* Python 2.7\n* Modules: requests\n\n### Install Requests Modules:\n`$ pip install requests`\n\n### Usage:\n$ python crlf.py\n\nUse $ python crlf.py [domain_list.ext] [crlf_payload]\n\ne.g $ python crlf.py mail.ru.list /%0aevil-here:malicious_cookie1\n\n# Payloads:\n### /%0aevil-here:malicious_cookie1\n### /%0d%0aevil-here:malicious_cookie1\n\n# Screenshot:\n\n### Process:\n \n![Process](https://raw.githubusercontent.com/rudSarkar/crlf-injector/master/process.png)\n \nRegards!\n\n[Rudra Sarkar](https://twitter.com/rudr4_sarkar)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frudsarkar%2Fcrlf-injector","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Frudsarkar%2Fcrlf-injector","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frudsarkar%2Fcrlf-injector/lists"}