Research 3

• CRLF-Powered Desync Attacks: Beheading HTTP Streams May 20, 2026
• The Single-Packet Shovel: Digging for Desync-Powered Request Tunnelling May 22, 2025
• Exploiting trust - Weaponizing permissive CORS configurations Oct 1, 2024