HTTP - Verb tampering

Bypass the security establishment.

On visiting the site, we are prompted to enter the user and password.

Let's intercept this request in Burpsuite.

We can now forward the request to the Intruder.

After we have selected the request method, we can set the payload.

For the payload, we are using all the request methods.

Let's send this payload and check the response.

Flag

a23e$dme96d3saez$$prap

Last updated 11 months ago

Was this helpful?