May 26, 2018
Security-aware parser for the HTTP protocol
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. The goals of the project, in the order of importance, are as follows
Completeness of coverage; LibHTP must be able to parse virtually all traffic that is found in practice.
Permissive parsing; LibHTP must never fail to parse a stream that would be parsed by some other web server.
Awareness of evasion techniques; LibHTP must be able to detect and effectively deal with various evasion techniques, producing, where practical, identical or practically identical results as the web server processing the same traffic stream.
Performance; The performance must be adequate for the desired tasks. Completeness and security are often detremental to performance. Our idea of handling the conflicting requirements is to put the library user in control, allowing him to choose the most desired library characteristic.