Protecting against HTTP Request Smuggling – Citrix NetScaler ADC

This post describes a brief summary on this subject together with recent tests I did conduct against Citrix ADC/NetScaler in a Lab environment. This post will not show intensive testing or demonstrating offensive techniques mentioned here, though this could perhaps appear in a future post on my other blog https://offsec.vchur.dk […]

Scan and Analyze TLS/SSL with CipherScan

A simple method to figure out which SSL/TLS Ciphersuites are supported by a target, and how these are prioritized. CipherScan can be used to assist to verify a good SSL/TLS configuration on your server.  

       

  Download https://github.com/mozilla/cipherscan Install git clone https://github.com/mozilla/cipherscan.git Pre-reqs Python […]