Network protocols and wireshark
Application layer: The protocol of tangible software that can be used,
such as: pulling files, transmitting data, remote desktop protocol, dhcp to allocate IP (this is used for applications)
Transport layer: it is the upper layer of the service, The transport layer is port to port
network layer: IP to IP
data link layer: mac address
As you can see from the figure,
Frame: data layer
Enthernet: mac address data link layer
Internet: ip to ip network layer
Transmission: port to port transmission layer
Udp: actually also has a port
Tcp
Source
Destin
Windows: Window bit
flag:
urgent Urgent is not just
syn: 1 Actively send request
fin: 1 complete response (indicating the end of the attack)
Reset: Reconnect
The form of traffic:
//tcp is listen, udp is bound
UDP
Udp port is still random.
Capture ip port protocol.
Packet
-c. Cut packets.
HTTP: Application layer protocol.
Read it every day
https://developer.mozilla.org/en-US/docs/Web /HTTP
HackerOne
Get: Complete request for URL resource
Curl http://www.baidu.com
You can also capture the packet to see
Post: You can send whether there is data or not.
You can also capture the packet to see
PUT: Generally used to transfer files to
Xxx cloud -> storage bucket (the code of a certain xxx unit has been removed)
//204 indicates that it has been created, 201 was created successfully
Delete the business resource gg
and only give the response header.
You can use the head to write the scanner. You only need to determine whether the page exists.
4xx: Customer problem
5xx: Server problem
200: Success
3xx: Redirect
100: Doesn't make sense
2048 bytes
Bypass WAF
POST upload can also bypass WAF
404 403 408 407 405 401
401: Authentication failed
400: Bad request
302 301
200-208
This is the URL
//You can also use other protocols.
WebServer is a container for web applications.
As long as it does not stop after the handshake, it can survive and transmit data.
Parameters do not affect interaction
Tools: arjun
Referer: where it comes from
Server: What server corresponds to the client
? Tengine is similar to nginx.
Location: geographical location, who to jump to find
HOST:
//session
//The following experiments use our own network
Alibaba/Druid
Search using FOFA
120.78.172.48/
https://zhuanlan.zhihu.com/p/386709187
//You can access index.html directly