← Back to All Scanners
Web VulnerabilitiesMedium Severity

HTTP Verb Tampering Scanner

Identifies access control bypasses through HTTP method manipulation.

Try This Scanner

What is HTTP Verb Tampering?

HTTP verb tampering exploits security controls that only apply to specific HTTP methods. For example, authentication may be enforced for GET but not HEAD, or TRACE may expose debug information. Changing the HTTP method can bypass access controls.

Why is This Important?

Access controls are often method-specific. If POST is blocked but PUT works, attackers can bypass restrictions. Overly permissive methods like TRACE can leak credentials, and DELETE might be inadvertently available.

How It Works

1. Web Crawling

Intelligent crawling discovers all endpoints, forms, parameters, and dynamic content across your web application.

2. Payload Injection

AI-powered payloads test each input vector for web vulnerabilities with context-aware attack patterns.

3. Response Analysis

Advanced analysis detects vulnerability signatures in responses, confirming exploitability with proof-of-concept.

Key Capabilities

Industry-leading web security testing powered by AI, trusted by security teams worldwide for accurate vulnerability detection.

  • Deep web crawling with JavaScript rendering support
  • Context-aware payload generation for each parameter
  • False positive elimination through response analysis
  • OWASP Top 10 and CWE compliance mapping
  • Seamless CI/CD and DevSecOps integration

Frequently Asked Questions

What methods should I look for?

Beyond GET/POST, try PUT, DELETE, PATCH, OPTIONS, HEAD, TRACE, CONNECT. WebDAV methods (PROPFIND, PROPPATCH, MKCOL, COPY, MOVE) may also be enabled.

How does HEAD bypass work?

HEAD returns headers without body. If authentication checks only validate body content, or if access controls don't apply to HEAD requests, attackers can probe restricted endpoints.

What's the TRACE vulnerability?

TRACE echoes the request back, potentially including authentication headers. While HttpOnly cookies are protected, other credentials in headers may be exposed.

How do I secure HTTP methods?

Explicitly allow only required methods in web server config, ensure access controls apply to all methods, disable TRACE and unused methods, and test access controls with different methods.

Related Scanners

SQL Injection - Error BasedCritical
Learn more →
SQL Injection - Blind BooleanCritical
Learn more →
SQL Injection - Time BasedCritical
Learn more →
SQL Injection - Union BasedCritical
Learn more →

Ready to secure your application?

Start testing for http verb tampering vulnerabilities today.

Get Started Free