Http11Probe Leaderboards

Compliance
Smuggling
Malformed Input
Normalization
Caching
Cookies

Add a Framework
Add a Test
Add with AI Agent

CTRL K

Light
Dark
System

CTRL K

Add a Framework
Add a Test
Add with AI Agent
Caching
Compliance
Cookies
Glossary
Malformed Input
Normalization
Probe Results
Servers
Smuggling

Understanding HTTP
RFC Requirement Dashboard
RFC Basics
BASELINE
Line Endings
Request Line
Header Syntax
Host Header
Content-Length
Header Normalization
Body Handling
Request Smuggling
Malformed Input
Caching
Upgrade / WebSocket
Cookie Handling

Edit this page on GitHub →

Understanding HTTP

Understanding HTTP

A comprehensive guide to HTTP — what it is, why it was designed the way it was, and how HTTP/1.1 works at the wire level. Start here before diving into the individual test categories.

Application-layer request/response protocol, client-server model, stateless design, and core design goals.

Request and response structure, methods (GET, POST, PUT…), status codes (1xx–5xx), and the request-line grammar.

Header structure, common request and response headers, the Host header, and why it’s the only required header.

Persistent connections, keep-alive, pipelining, head-of-line blocking, Upgrade, and 100 Continue.

Body and Framing

Content-Length, chunked transfer encoding, trailers, and why CL+TE conflicts cause request smuggling.

Caching and Negotiation

Content negotiation with Accept headers, Cache-Control, ETags, conditional requests, and Vary.

History and Future

HTTP/0.9 to HTTP/3, the current IETF work, alternatives to HTTP, and learning resources.