Documentation
parlov documentation — methodology, oracle classes, and implementation details.
parlov detects information leakage by observing how HTTP servers behave correctly and measuring whether that correct behavior reveals protected internal state.
Sections
Methodology
How parlov detects oracles — the differential principle, RFC compliance as the source, auth contexts, vectors, elicitation strategies, and the scan pipeline.
Oracle Classes
The six oracle classes parlov detects — existence, authentication, timing, verification, token validation, and state — with per-class probe strategies, signal analysis, and sample requirements.
CLI Reference
Complete reference for the parlov binary — global flags, subcommands, output formats, invocation patterns, and exit codes.
Crate Reference
Per-crate API documentation for the parlov workspace — public types, traits, internal architecture, and extension points.