基于 WEB 安全方面,学习记录
# 安全基础体系搭建
# 数据包拓展
# http : 建立连接 - 发送请求数据包 - 接受返回数据包 - 关闭连接
HTTP 协议属于应用层,建立在传输层协议 TCP 之上。客户端通过与服务器建立 TCP 连接,之后发送 HTTP 请求与接收 HTTP 响应都是通过访问 Socket 接口来调用 TCP 协议实现。
# https:http+ ssl
客户端发起 HTTPS 请求 - 服务端的配置 (证书)- 传送证书 - 客户端解析证书 - 传送加密信息 (请求)- 服务端解密信息 - 传输加密信息(返回)- 客户端解密信息
http 明文传输比 https 快,https 加密比 http 更安全。
# request 请求数据包格式
请求行:GET / HTTP/1.1
请求头:下方都是
user-agent: 浏览器信息,电脑信息
host:访问的域名主机
请求体:一般出现于 post, 例如搜索栏中搜索内容就是请求体
下面是 get 方式发送的请求包
GET / HTTP/1.1 | |
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 | |
Accept-Encoding: gzip, deflate, br | |
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8 | |
Cache-Control: max-age=0 | |
Connection: keep-alive | |
Cookie: BIDUPSID=3B94A1EC2A6D9E1F88CD4EFAD120B475; PSTM=1624259850; sug=3; sugstore=0; bdime=0; ORIGIN=0; BDUSS=NSWGRLTmFUTkM3djc0SmxjOUl5ckEzMVhKVTFLVH5KdHhheWtxMUdSWXJQeDloRUFBQUFBJCQAAAAAAAAAAAEAAABdIeJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACuy92Arsvdgek; BDUSS_BFESS=NSWGRLTmFUTkM3djc0SmxjOUl5ckEzMVhKVTFLVH5KdHhheWtxMUdSWXJQeDloRUFBQUFBJCQAAAAAAAAAAAEAAABdIeJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACuy92Arsvdgek; BAIDUID=55A08504F19F57D09736445194CFACE3:FG=1; BAIDUID_BFESS=55A08504F19F57D09736445194CFACE3:FG=1; COOKIE_SESSION=155780_2_9_6_17_15_1_0_8_8_1_4_163947_0_8170_0_1694755855_1684312546_1694747685%7C9%238031569_655_1684312490%7C9; BD_UPN=12314753; BA_HECTOR=018g8k2g040kahaga1a5alag1iid4g71p; ZFY=Wxdto:AUJmrazabDAUARKbbi8CT:B4uZC0umbHAq8:BAvY:C; BDORZ=B490B5EBF6F3CD402E515D22BCDA1598 | |
Host: www.baidu.com | |
Sec-Fetch-Dest: document | |
Sec-Fetch-Mode: navigate | |
Sec-Fetch-Site: none | |
Sec-Fetch-User: ?1 | |
Upgrade-Insecure-Requests: 1 | |
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 | |
sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" | |
sec-ch-ua-mobile: ?0 | |
sec-ch-ua-platform: "Windows" |
# response 返回数据包格式
状态行:HTTP/1.1 200 OK
响应头标:后续均是
空行
响应数据:源代码
注意一下响应码,200,304,404 ,403
HTTP/1.1 200 OK | |
Date: Thu, 12 Oct 2023 13:23:04 GMT | |
Content-Type: text/html; charset=utf-8 | |
Transfer-Encoding: chunked | |
Connection: keep-alive | |
Keep-Alive: timeout=30 | |
X-Xss-Protection: 1; mode=block | |
X-Douban-Mobileapp: 0 | |
Expires: Sun, 1 Jan 2006 01:00:00 GMT | |
Pragma: no-cache | |
Cache-Control: must-revalidate, no-cache, private | |
Set-Cookie: ck="deleted"; max-age=0; domain=.douban.com; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/ | |
Set-Cookie: dbcl2="deleted"; max-age=0; domain=.douban.com; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/ | |
X-DAE-App: search | |
X-DAE-Instance: default | |
Server: dae | |
Strict-Transport-Security: max-age=15552000 | |
X-Content-Type-Options: nosniff | |
Content-Encoding: br |
burp suite 御剑扫描,用到状态码以及请求包,利用请求包模拟等
