A command-line tool for sending HTTP requests straight to a server, with no browser or form involved. Developers use it to test APIs, and attackers use it to poke at servers while skipping any checks your frontend would normally enforce.