https://blog.qife122.com/tags/burp%E5%A5%97%E4%BB%B6/ Recent content in Burp套件 on 办公AI智能小助手 Hugo zh-cn qife Sat, 11 Oct 2025 10:14:07 +0800 https://blog.qife122.com/p/http/1.1%E5%BF%85%E9%A1%BB%E6%B7%98%E6%B1%B0%E8%BF%99%E5%AF%B9%E5%86%85%E9%83%A8%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E5%91%98%E6%84%8F%E5%91%B3%E7%9D%80%E4%BB%80%E4%B9%88/ Sat, 11 Oct 2025 10:14:07 +0800 https://blog.qife122.com/p/http/1.1%E5%BF%85%E9%A1%BB%E6%B7%98%E6%B1%B0%E8%BF%99%E5%AF%B9%E5%86%85%E9%83%A8%E6%B8%97%E9%80%8F%E6%B5%8B%E8%AF%95%E5%91%98%E6%84%8F%E5%91%B3%E7%9D%80%E4%BB%80%E4%B9%88/ <p>在Black Hat USA和DEFCON 2025大会上，PortSwigger研究总监James Kettle发出严厉警告：请求走私攻击并未消亡，而是在不断演变和蔓延。尽管经过多年的防御努力，Kettle公布的新研究证明，HTTP请求走私（或&quot;desync&quot;攻击）不仅仍然猖獗，而且被危险地低估，已危及全球数千万个本应安全防护的网站。</p>