HTTP/1.1 Compliance Platform

An open testing platform that probes HTTP/1.1 servers against RFC 9110/9112 requirements, smuggling vectors, and malformed input handling. Add your framework, get compliance results automatically.

Leaderboard

See which frameworks pass the most tests, ranked from best to worst compliance.

What It Does

Http11Probe sends a suite of crafted HTTP requests to each server and checks whether the response matches the exact expected behavior from the RFCs. Every server is tested identically, producing a side-by-side compliance comparison.

Compliance

RFC 9110/9112 protocol requirements — line endings, request-line format, header syntax, Host validation, Content-Length parsing.

Smuggling

CL/TE ambiguity, duplicate Content-Length, obfuscated Transfer-Encoding, pipeline injection vectors.

Robustness

Binary garbage, oversized fields, too many headers, control characters, integer overflow, incomplete requests.

Add Your Framework

Http11Probe is designed so anyone can contribute their HTTP server and get compliance results without touching the test infrastructure. Just add a Dockerfile, a one-line probe.json, and open a PR.

Get Started

Three steps to add your framework — Dockerfile, probe.json, and open a PR.