Check upper and lower case cookies

2026-04-05 17:31:25 +01:00 · 2026-04-05 17:31:25 +01:00 · d8a0719731
parent 9ed7f28ba6
commit d8a0719731
1 changed files with 10 additions and 6 deletions
--- a/httpheaders.py
+++ b/httpheaders.py
@ -282,10 +282,14 @@ def contains_suspicious_headers(headers: {}) -> bool:
        return True

    # check for bad cookies
-    if 'Cookie:' in headers_str:
-        cookie_str = headers_str.split('Cookie:')[1]
-        if '=' in cookie_str:
-            cookie_name = cookie_str.split('=')[0].strip()
-            if cookie_name != 'epicyon':
-                return True
+    cookie_fields = ('Cookie:', 'cookie:')
+    for cookie_fieldname in cookie_fields:
+        if cookie_fieldname not in headers_str:
+            continue
+        cookie_str = headers_str.split(cookie_fieldname)[1]
+        if '=' not in cookie_str:
+            continue
+        cookie_name = cookie_str.split('=')[0].strip()
+        if cookie_name != 'epicyon':
+            return True
    return False