HTTP in Detail

Learn about how you request content from a web server using the HTTP protocol

LINK

@official link of the room.

TASK 1 -What is HTTP(S) ?

Q1) What does HTTP stand for? [ H**** T*** T******* P******* ]

Q2) What does the S in HTTPS stand for? [ S***** ]

Q3) On the mock webpage on the right there is an issue, once you've found it, click on it. What is the challenge flag? [ T**{I******_****_****} ]

just click the lock symbol

TASK 2 - Requests & Responses

Q1) What HTTP protocol is being used in the above example? [ H***/*.* ]

Q2) What response header tells the browser how much data to expect? [ C******-L***** ]

TASK 3 - HTTP Methods

Q1) What method would be used to create a new user account? [ P*** ]

Q2) What method would be used to update your email address? [ P** ]

Q3) What method would be used to remove a picture you've uploaded to your account? [ D***** ]

Q4) What method would be used to view a news article? [ G** ]

TASK 4 - HTTP Status Codes

Q1) What response code might you receive if you've created a new user or blog post article? [ 2** ]

Q2) What response code might you receive if you've tried to access a page that doesn't exist? [ 4** ]

image from tryhackme.com

Q3) What response code might you receive if the web server cannot access its database and the application crashes (means service not available)? [ 503 ]

image from tryhackme.com

Q4) What response code might you receive if you try to edit your profile without logging in first? [ 4** ]

TASK 5 - HEADERS

Q1) What header tells the web server what browser is being used? [ U***-***** ]

Q2) What header tells the browser what type of data is being returned? [ C******-**** ]

Q3) What header tells the web server which website is being requested? [ H*** ]

TASK 6 - COOKIES

good example to understand COOKIES via tryhackme.com

Viewing Your Cookies (from tryhackme.com)

You can easily view what cookies your browser is sending to a website by using the developer tools, in your browser. If you're not sure how to get to the developer tools in your browser, click on the "View Site" button at the top of this task for a how-to guide.

Once you have developer tools open, click on the "Network" tab. This tab will show you a list of all the resources your browser has requested. You can click on each one to receive a detailed breakdown of the request and response. If your browser sent a cookie, you will see these on the "Cookies" tab of the request.

Q1) Which header is used to save cookies to your computer? [ S**-****** ]

TASK 7 - MAKING REQUESTS (practical part)

GUIDE :

from tryhackme.com

Q1) Make a GET request to /room. [ T**{******************} ]

write "room" at the end of url and the click 'Go'
yay! we got the flag

Q2) Make a GET request to /blog and using the gear icon set the id parameter to 1 in the URL field [ T**{******************} ]

follow steps
after finished of the above steps , click on "Go"
yay! got flag

Q3) Make a DELETE request to /user/1. [ T**{***************} ]

follow the steps and lastly click "Go"
yay! we got flag

Q4) Make a PUT request to /user/2 with the username parameter set to admin. [ T**{****************} ]

follow steps and then click on "settings"
follow steps and then save it and click "Go"
yay! we got flag

Q5) POST the username of thm and a password of letmein to /login [ T**{*******************} ]

follow steps and then click on "settings"
just add 2 values(username&passwd) then click "Go"
yay! we got the flag

THE END

PreviousDNS in DetailNextLinux Fundamentals

Last updated

Was this helpful?