Skip to content

Differentiate HTTP vs HTTPS #1290

New issue
New issue
Open
Enhancement
Open
Differentiate HTTP vs HTTPS#1290
Enhancement
Assignees
dwisiswant0
Labels
Type: EnhancementMost issues will probably ask for additions or changes.
@ldionmarcil

Description

@ldionmarcil
ldionmarcil
opened on Dec 5, 2025

Continuation of a discussion we had in this thread.

Please describe your feature request:

It would be very useful for interactsh so differentiate between cleartext and encrypted protocols, ie HTTP vs HTTPS. This is especially useful when testing for protocol downgrade via open redirects.

Describe the use case of this feature:

For example, if you get a callback on https://interactsh.com (TLS), then make the endpoint hit a 301 redirect to http://interactsh.com, both callbacks will show as the protocol "HTTP". As a result it is impossible to check if protocol downgrade worked.

Metadata

Metadata

Assignees

Labels

Type: EnhancementMost issues will probably ask for additions or changes.

Type

Enhancement

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions