Network protocols and wireshark

Insert image description here

Application layer: The protocol of tangible software that can be used,
such as: pulling files, transmitting data, remote desktop protocol, dhcp to allocate IP (this is used for applications)
Transport layer: it is the upper layer of the service, The transport layer is port to port
network layer: IP to IP
data link layer: mac address

Insert image description here As you can see from the figure,
Frame: data layer
Enthernet: mac address data link layer
Internet: ip to ip network layer
Transmission: port to port transmission layer

Insert image description here

Insert image description here

Udp: actually also has a port

Tcp

Source
Destin
Windows: Window bit
Insert image description here
flag:
urgent Urgent is not just
syn: 1 Actively send request
fin: 1 complete response (indicating the end of the attack)
Reset: Reconnect

The form of traffic:
Insert image description here

Insert image description here

//tcp is listen, udp is bound

UDP

Udp port is still random.

Capture ip port protocol.

Packet

-c. Cut packets.

HTTP: Application layer protocol.
Read it every day
https://developer.mozilla.org/en-US/docs/Web /HTTP

HackerOne
Insert image description here

Get: Complete request for URL resource
Curl http://www.baidu.com
You can also capture the packet to see

Post: You can send whether there is data or not.
Insert image description here
You can also capture the packet to see

PUT: Generally used to transfer files to

Xxx cloud -> storage bucket (the code of a certain xxx unit has been removed)

//204 indicates that it has been created, 201 was created successfully

Delete the business resource gg
Insert image description here
and only give the response header.
You can use the head to write the scanner. You only need to determine whether the page exists.