Update README

Author: MDA2AV

README.md

@@ -4,23 +4,24 @@ HTTP/1.1 server compliance and security tester. Sends malformed, ambiguous, and
 
 **Website:** [mda2av.github.io/Http11Probe](https://MDA2AV.github.io/Http11Probe/) — full documentation, test glossary with RFC citations, and live probe results across all tested servers.
 
-## 146 Tests across 3 Categories
+## 194 Tests across 4 Categories
 
 | Category | Tests | What it covers |
 |----------|------:|----------------|
-| **Compliance** | 60 | RFC 9110/9112 protocol requirements — bare LF, obs-fold, missing Host, invalid versions, chunked encoding, connection semantics, upgrade handling, etc. |
-| **Smuggling** | 60 | CL/TE ambiguity, duplicate Content-Length, pipeline desync, TE obfuscation, chunk extension abuse, bare LF in chunked framing, URI/Host mismatch |
+| **Compliance** | 76 | RFC 9110/9112 protocol requirements — bare LF, obs-fold, missing Host, invalid versions, chunked encoding, connection semantics, upgrade handling, etc. |
+| **Smuggling** | 87 | CL/TE ambiguity, duplicate Content-Length, pipeline desync, TE obfuscation, chunk extension abuse, bare LF in chunked framing, URI/Host mismatch |
 | **Malformed Input** | 26 | Binary garbage, oversized URLs/headers/methods, NUL bytes, control characters, integer overflow, overlong UTF-8, encoded CRLF injection |
+| **Normalization** | 5 | Header name casing, whitespace trimming, and other normalization behaviors |
 
 Each test is scored against RFC normative language (MUST/SHOULD/MAY) and classified as **Pass**, **Fail**, or **Warn** (when the RFC permits both strict and lenient behavior).
 
-## 36 Server Targets
+## 37 Server Targets
 
 Tested across 11 languages:
 
 | Language | Servers |
 |----------|---------|
-| C# | Kestrel, EmbedIO, GenHTTP, Glyph11, NetCoreServer, ServiceStack, SimpleW, Sisk, Watson |
+| C# | Kestrel, EmbedIO, FastEndpoints, GenHTTP, Glyph11, NetCoreServer, ServiceStack, SimpleW, Sisk, Watson |
 | C | Apache, H2O, HAProxy, Lighttpd, Nginx |
 | Rust | Actix, Hyper, Ntex, Pingora |
 | Go | Caddy, FastHTTP, Gin, Traefik |
@@ -44,7 +45,7 @@ dotnet run --project src/Http11Probe.Cli -- --host localhost --port 8080
 |------|-------------|---------|
 | `--host` | Target hostname or IP address | `localhost` |
 | `--port` | Target port number | `8080` |
-| `--category` | Run only tests in this category (`Compliance`, `Smuggling`, `MalformedInput`) | all |
+| `--category` | Run only tests in this category (`Compliance`, `Smuggling`, `MalformedInput`, `Normalization`) | all |
 | `--test` | Run only specific test IDs, case-insensitive (repeatable) | all |
 | `--timeout` | Connect and read timeout in seconds per test | `5` |
 | `--output` | Write JSON results to file | — |