Day 87 comes with some readings on account take over and HTTP Smuggling from PortSwigger Academy.
Hacking companies through help desk
HTTP Smuggling Labs from PortSwigget
From Sam (CoffeeJunkie). Checking out a better understanding on HTTP Smuggling attacks, PortSwigger Academy seemed to be helpful at the time to have basic understanding on HTTP Smuggling and the findings of the vulnerability.
You can find:
- HTTP request smuggling, basic CL.TE vulnerability
- HTTP request smuggling, obfuscating the TE header