Exploitation
After finding a vulnerability, smugglex can attempt exploitation to demonstrate impact.
Localhost Access
Test for SSRF-like access to internal services through smuggled requests.
smugglex -e localhost-access https://target.com
Custom ports:
smugglex -e localhost-access --exploit-ports 80,8080,9090,3000 https://target.com
Path Fuzzing
Discover internal paths by smuggling requests with a wordlist.
smugglex -e path-fuzz --exploit-wordlist /path/to/wordlist.txt https://target.com
Combined
smugglex -e localhost-access,path-fuzz \
--exploit-ports 80,8080 \
--exploit-wordlist paths.txt \
https://target.com
Detection
The exploit module analyzes responses for:
- Status code changes
- Service-specific signatures
- Timing differences
- Error messages indicating internal access
smugglex - HTTP Request Smuggling Scanner
