Turbo Intruder: Abusing HTTP Misfeatures to Accelerate Attacks by James Kettle 

This guy is awesome, his content is always original and extremely helpful!

This guy is incredible ❤️

GREATE, James kettel is the legend of web security

i did not have a clue about HTTP pipelining. good info here. thx

i saw a video of him getting a shell on a code sandbox website with like 2-3 broken up lines of php. hes legendary.

Amazing tool. Thank you! 🙏🙏

nice !! thx for this

This is incredible, thanks

Excellent stuff!

Thank you for this very informative and very helpful video.

@albinowax Legend!!!

I love James Kettle ..

Thanks! )

Thanks

How to configure multiple injection points in the request? I tried using %s in 2 locations, payload is injected only first %s :(

What am I doing wrong. I am only getting 100-141 RPS. Do I need to get anything other then Turbo Intruder? My settings are concurrentConnections=25 requestsPerConnection=100 Pipeline=True

cool!

i get error, SyntaxError: ("mismatched input 'table' expecting INDENT", ('', 26.0, 'table.add(req) ')) when i user race.py to check race condition

Still don't understand why James hasn't incorporated this into Intruder functionality - that would add multiple insertion points, wordlists and other Intruder features for free. Instead, he decided to implement this as a separate extension.

I am trying to tweak setting just like you've guided but not able to achieve those thousands and thousands of RPS.

How to use it for race condition @Bugcrowd

You are the man !! Can you download turbo intruder for free?

Is there any chance that you would consider helping me Find my first bug bounty ! Im stuck Im stuck . Great video thou .

hey there i want to ask something ..how can i contact you