This is a protocol-level attack playbook for exploiting HTTP/2 specific weaknesses that don't exist in HTTP/1.1. It covers h2c smuggling to bypass proxy controls by upgrading cleartext connections, pseudo-header injection for routing discrepancies, single-packet race conditions using stream multiplexing, and HPACK compression table manipulation. The h2csmuggler tool integration is practical for testing if you can tunnel past WAFs and access controls. Most pentesters still treat HTTP/2 smuggling like HTTP/1.1 CL.TE variants, but this focuses on binary framing quirks and downgrade translation bugs. Useful when you've confirmed HTTP/2 support and standard smuggling techniques aren't working.
npx skills add https://github.com/yaklang/hack-skills --skill http2-specific-attacks