I was wondering if anyone knew of a tool where I could send a fully formed HTTP body ( headers & content ) to a web server. So far the best I've got is putty but was hoping for something where I could look # and edit the payload then click a button and send it. ( I could probably write something like this in a couple minutes but was hoping there is an already finished and semi-polished app.
Context:
I'm testing out a multipart/related soap request and trying to come up with some idea's for editing one element of the payload that's getting eaten somewhere in its journey.
Fiddler has a request builder in it.
cURL is a convenient command-line tool (with Windows binaries available).
Something like netcat would be perfect. Apparently this is a windows version.
Related
Disclaimer: I am not good at understanding http requests, so please bear with me
I am trying to change the content of an html web page whenever an http GET/POST request is made. It would work something like this:
What I want to accomplish
When my phone is charging, it is going to send an http request to the web server. The web server is going to change the content of the webpage to say something like "Phone is charging."
What I've done so far
I managed to send an HTTP request from my phone to the server every time the phone connects to a charger, I just don't know what to do with the http request that arrives to the server.
Thanks ahead of time!
EDIT: I figured out, according to #LawrenceCherone (thanks Lawrence!) that I can't do this with a static html page and just nginx. He said that I have to use a scripting language. Does bash work for this? Or should I learn something like python, PHP or something else?
I can't find any tutorials online for what I am trying to accomplish for some reason. Haven't seen any tutorials on how to 'react' to a POST request
No matter what I do, I always get this error on the console. It works on other machines, but not in mine. Postman works with the same service. How to solve?
Update: this bug has been now fixed in Paw 2.3.4. And we confirm that the workaround below wasn't resolving the "Request Interrupted" issue most users were having. You can update in Paw menu > Check for Updates…
One quick way to solve this is to go to the Paw menu > Preferences > HTTP and pick another HTTP library:
To be able to send exactly what users are entering (including any kind of headers, GET requests with a body) and display exactly what servers are returning (keeping the exact raw bytes, the order of headers) Paw has its own custom HTTP library that can do all this kind of stuff. Unfortunately, it's not yet as stable as standard libraries, hence the possibility to choose another alternative.
im tasked to secure a web project. and the codes are messy. basically i need to focus on webpages that are using http GET and do proper validation or convert to http POST.
is there a free tool out there that runs on linux which search and generate a report?
A report of what http get requets are made by a web application?
Well, what about a simple network sniffer, like tcpdump or wireshark? lists you every request made. And you can process the dump using plain cli processing tools like grep and sed.
There is no tool in my knowledge which will generate a report like that.What you can do this , intercept the get & post requests using the tool called Fiddler ( windows only ) , It will list all the request & response which goes IN & OUT of a browser.
Install fiddler, start it.
Access the application
Go through the application and check the Fiddler interface.
It will list all the GET & POST data
You can generate report by examining this data.
I have a really buggy web application at work. In order to avoid using its interface, I want something that will save the HTTP requests I send with it, and enable me to resend them whenever I want. Do you know of anything that does that? Maybe there is an add-on for Firefox (I searched, but didn't find one)?
I need to be able to do this on Linux.
You can use Fiddler to intercept HTTP requests and responses between the browser and the client.
Fiddler also supports handcrafting and sending HTTP requests using its Request Builder feature:
Try iMacros for firefox
According to plugin description:
"Automate Firefox. Record and replay repetitious work. If you love the Firefox web browser, but are tired of repetitive tasks like visiting the same sites every days, filling out forms, and remembering passwords, then iMacros for Firefox is the solution you’ve been dreaming of!"
https://addons.mozilla.org/en-US/firefox/addon/3863/
I want to change first line of the HTTP header of my request, modifying the method and/or URL.
The (excellent) Tamperdata firefox plugin allows a developer to modify the headers of a request, but not the URL itself. This latter part is what I want to be able to do.
So something like...
GET http://foo.com/?foo=foo HTTP/1.1
... could become ...
GET http://bar.com/?bar=bar HTTP/1.1
For context, I need to tamper with (make correct) an erroneous request from Flash, to see if an error can be corrected by fixing the url.
Any ideas? Sounds like something that may need to be done on a proxy level. In which case, suggestions?
Check out Charles Proxy (multiplatform) and/or Fiddler2 (Windows only) for more client-side solutions - both of these run as a proxy and can modify requests before they get sent out to the server.
If you have access to the webserver and it's running Apache, you can set up some rewrite rules that will modify the URL before it gets processed by the main HTTP engine.
For those coming to this page from a search engine, I would also recommend the Burp Proxy suite: http://www.portswigger.net/burp/proxy.html
Although more specifically targeted towards security testing, it's still an invaluable tool.
If you're trying to intercept the HTTP packets and modify them on the way out, then Tamperdata may be route you want to take.
However, if you want minute control over these things, you'd be much better off simulating the entire browser session using a utility such as curl
Curl: http://curl.haxx.se/