diff --git a/README.en.md b/README.en.md new file mode 100644 index 0000000000000000000000000000000000000000..e9de2ca8242403c6fd87e6e7820db5d7fd27ba1f --- /dev/null +++ b/README.en.md @@ -0,0 +1,33 @@ +# Kestrel Vulnerability Testing Tool + +This is a tool for testing vulnerabilities in Kestrel servers, with a focus on vulnerabilities related to chunked request handling. + +## Features + +- Test for invalid line breaks across reads during multiple read operations +- Test for invalid line breaks with partial chunk extensions in the first read +- Test normal chunked requests + +## Usage + +1. Build the project and generate the executable. +2. Run the generated executable from the command line, providing the target URL as an argument. For example: + + ```bash + KestrelVulnerabilityTester http://example.com + ``` + +3. The tool will automatically run all tests and output the results. + +## Notes + +- Ensure the target server is running and accessible via the provided URL. +- This tool is primarily intended for security testing purposes; avoid using it in production environments. + +## Contributions + +If you are interested in contributing code or suggesting improvements, please submit a Pull Request or create an Issue. + +## License + +This project is licensed under the MIT License. For details, please refer to the LICENSE file. \ No newline at end of file diff --git a/README.md b/README.md new file mode 100644 index 0000000000000000000000000000000000000000..fa8ef136d064934ee8fbb7811b47fb02b1b48e11 --- /dev/null +++ b/README.md @@ -0,0 +1,33 @@ +# Kestrel 漏洞测试工具 + +这是一个用于测试 Kestrel 服务器漏洞的工具,专注于测试与分块请求处理相关的潜在漏洞。 + +## 功能特点 + +- 测试多读操作中跨读取的无效换行符 +- 测试在第一个读取中带有部分块扩展的无效换行符 +- 测试正常的分块请求 + +## 使用方法 + +1. 构建项目并生成可执行文件。 +2. 在命令行中运行生成的可执行文件,并提供目标 URL 作为参数。例如: + + ```bash + KestrelVulnerabilityTester http://example.com + ``` + +3. 工具将自动运行所有测试,并输出测试结果。 + +## 注意事项 + +- 请确保目标服务器正在运行,并且可以通过提供的 URL 访问。 +- 该工具主要用于安全测试目的,请勿在生产环境中随意使用。 + +## 贡献 + +如果您有兴趣贡献代码或提出改进建议,请提交 Pull Request 或创建 Issue。 + +## 许可证 + +该项目遵循 MIT 许可证。详情请查看 LICENSE 文件。 \ No newline at end of file