[BUUCTF] [Geek Challenge 2019] Http Writeup-several ways to add request headers that CTFer must know

Others 2020-10-04 01:44:09 views: null

[BUUCTF] [Geek Challenge 2019] Http Writeup

0x00 test site
- Request header
- How to add request header
0x01 problem solving

)

0x00 test site

Request header

User-Agent: What browser is used to access
Referer: The current page was entered through the link in the source page
X-Forwarded-For: Get the IP address of the client that originally initiated the request

How to add request header

Hackbar
ModHeader
Burp Suite
Manually add cookies to the browser

0x01 problem solving

Insert picture description here

Insert picture description here

Secret.php

Insert picture description here

1 、 ModHeader

Add, change and delete at any time, very convenient

Insert picture description here

2 、 Hackbar

Short-term use, more convenient to add, not long-term storage

Download link :
https://blog.csdn.net/vanarrow/article/details/107994085
Insert picture description here
Three fake hackbars...piracy scams

Insert picture description here

3、Burp Suite

Professional and detailed, highly customized, simple and cumbersome to use
Insert picture description here

Insert picture description here

Summary of operation content

Add request header

referer: https://www.Sycsecret.com
User-Agent: Syclover
X-Forwarded-For: 127.0.0.1

flag{b1797a52-a6ca-4ff7-b7d8-5401592ff173}
Syclover @ cl4y

Guess you like

Origin blog.csdn.net/vanarrow/article/details/108196519

[BUUCTF] [Geek Challenge 2019] Http Writeup-several ways to add request headers that CTFer must know

BUUCTF: [Geek Challenge 2019]Http

[BUUCTF] [Geek Challenge 2019] Http Writeup - несколько способов добавления заголовков запросов, которые должен знать CTFer

[BUUCTF] [Geek Challenge 2019] Knife Writeup

【BUUCTF】[Geek Challenge 2019] Upload Writeup

【BUUCTF】[Geek Challenge 2019] Secret File Writeup

BUUCTF: [Geek Challenge 2019] LoveSQL

BUUCTF: [Geek Challenge 2019] PHP

BUUCTF: [Geek Challenge 2019] EasySQL

BUUCTF [Geek Challenge 2019] FinalSQL

BUUCTF [Geek Challenge 2019] BabySQL

BUUCTF-[Geek Challenge 2019]PHP

[BUUCTF] [Geek Challenge 2019] LoveSQL Detailed Problem Solution Summary Notes Writeup

[BUUCTF] [Geek Challenge 2019] BabySQL-Writeup with a clear and easy-to-understand summary

[BUUCTF] [Geek Challenge 2019] PHP clear and easy to understand detailed summary Writeup

Buuctf[Geek Challenge 2019]BuyFlag 1 [SUCTF 2019]CheckIn 1

HTTP Headers的Request Headers

BUUCTF-WEB: [Geek Challenge 2019] LoveSQL 1

[BUUCTF]PWN——[Geek Challenge 2019] Not Bad (orw_shellcode)

[BUUCTF] [Geek Challenge 2019] HTTP-Writeup - verschiedene Möglichkeiten zum Hinzufügen von Anforderungsheadern, die CTFer kennen muss

Add interceptors and request headers

HTTP Request Forwarding Things: Hop-by-hop Headers and End-to-end Headers You Might Not Know

HTTP request headers

Common http request headers

[BUUCTF] [Geek Challenge 2019] Http Writeup-CTFer가 알아야 할 요청 헤더를 추가하는 여러 방법

[BUUCTF] [Geek Challenge 2019] Http Writeup - plusieurs façons d'ajouter des en-têtes de requête que CTFer doit connaître

[BUUCTF] [Geek Challenge 2019] Http Writeup - várias maneiras de adicionar cabeçalhos de solicitação que o CTFer deve saber

[Network Security/CTF] BUUCTF Geek Challenge 2019 Detailed Analysis of PHP Problem Solving (Dirsearch Example + PHP Deserialization)

Buuctf-Web-[Geek Challenge 2019]EasySQL 1 problem solutions and summary of ideas

Buuctf-Web-[Geek Challenge 2019]Havefun problem solution & summary of ideas

Recommended

Rushing to the GitHub hot list——How can open source programming languages and frameworks be so cute?

Beijing Humanoid Robot Innovation Center launches Tiangong, the world's first full-size humanoid robot with purely electric drive for anthropomorphic running

Ranking

8个无需编写代码即可使用 Python 内置库的方法

Java collections interview knowledge Lite

Machine learning algorithms foundation - Introduction a (watermelon materials for the book)

(Easy) Ransom Note - LeetCode

[Five days] Qt from entry to actual combat: the second day

Remember once extremely pit father can not download Maven Jar package of issues: IDEA question

The minimum cost Shortest

OSPF study map (the most complete version)

Network Takeaways

GnuPG

Daily

More

2024-04-27(29)

2024-04-26(22)

2024-04-25(32)

2024-04-24(30)

2024-04-23(30)

2024-04-22(5)

2024-04-21(0)

2024-04-20(6)

2024-04-19(5)

2024-04-18(0)