This is just a repo where I keep my own personal Turbo Intruder helper scripts.
These scripts I use to create Request Smuggling Desync payloads for CLTE and TECL style attacks. How to use:
- Open Burp
- Open a Repeater tab to your target
- Right click your request and "Send to Turbo Intruder"
- Completely replace the script pane (bottom pane) with DesyncAttack_CLTE.py or DesyncAttack_TECL.py
- The top (request) pane is not needed and ignored, the script creates its own requests
- Fill out all the attack parameters for the attack (documentation inside the script)
- Click "Attack"
These scripts are released under the MIT license. See LICENSE.