SKILL: CRLF Injection — Expert Attack Playbook AI LOAD INSTRUCTION : CRLF injection (HTTP response splitting) techniques. Covers header injection, response body injection via double CRLF, XSS escalation, cache poisoning, and encoding bypass. Often overlooked by scanners but chains into XSS, session fixation, and cache attacks. 0. RELATED ROUTING - ghost-bits-cast-attack when the target is a Java service and / encodings are WAF-blocked — substituting (U+760D, low byte ) and (U+760A, low byte ) injects a real CRLF through Angus Mail / Jakarta Mail SMTP, Apache HttpClient headers, JDK HttpServer…