This is a Proof-of-Concept code that demonstrates the exploitation of the CVE-2017-5689 vulnerability.
It is essentialy a mitmproxy script that simply blanks an Authorization header "response" field.
Example usage:
mitmdump -p 8080 -dd --no-http2 -s blank_auth_response.py