Curl

-X or --request <METHOD>

Specifies the HTTP method (GET, POST, PUT, DELETE, etc.)

-H or --header <HEADER>

Adds a custom header (e.g., Content-Type, Authorization)

-d or --data <DATA>

Sends data in the body (used with POST, PUT, etc.)

--data-raw <DATA>

Sends raw, unprocessed data

--data-urlencode <DATA>

Sends URL-encoded data

-F or --form <KEY=VALUE>

Sends form data, including file uploads (multipart/form-data)

-u or --user <user:password>

Uses basic authentication

-o or --output <file>

Saves the response body to a file

-O

Saves the file using the remote file name

-i or --include

Includes response headers in the output

-I or --head

Sends a HEAD request (returns headers only)

-v or --verbose

Prints detailed info for debugging (request/response, SSL handshake, etc.)

-s or --silent

Hides progress bar and error messages

-S or --show-error

Shows error even when --silent is used

-L or --location

Follows redirects (3xx responses)

-k or --insecure

Ignores SSL certificate validation (not recommended in production)

--compressed

Requests a compressed response (e.g., gzip)

--http1.1, --http2, --http3

Forces use of specific HTTP protocol versions

--url <URL>

Specifies the URL explicitly (used in scripts)

--max-time <seconds>

Sets a timeout for the entire request

--connect-timeout <seconds>

Sets timeout for connection phase only

--retry <n>

Automatically retries the request up to n times

-e or --referer <URL>

Sets the Referer header

-A or --user-agent <string>

Sets a custom User-Agent header

--cert <file>

Uses a client certificate (for mTLS)

--key <file>

Specifies the private key file for --cert

--cacert <file>

Uses a custom CA certificate file

--cookie <data>

Sends cookies with the request

--cookie-jar <file>

Stores received cookies into a file

--trace <file>

Logs a full trace of the request/response (headers + body)

--trace-ascii <file>

Logs trace in a human-readable format

--fail

Fails silently on HTTP errors (no body output on 400/500)