Bug Bounty Hunting for Web Security by Sanjib Sinha
Author:Sanjib Sinha
Language: eng
Format: epub
ISBN: 9781484253915
Publisher: Apress
echo "<pre>$output1</pre>";
echo"<hr>";
echo "<pre>$output2</pre>";
echo 'directory hacker created successfully';
echo"<hr>";
?>
Again, we will send the raw request to the Repeater tool (Figure 6-10). Clicking on the Repeater tab's “Go” button on the Request section will give us the response. We will see that response shortly, in Figure 6-12.
Figure 6-10The Burp Suite Repeater tab
In the Response section, the shell-command.php code will only appear after you click the “Go” button in the “Request” section; it is shown along with the header text.
Now, let us watch the Request part of the left side of the Repeater tab closely (Figure 6-11). We will not only change the filename, but also we will add a .jpg extension with the filename, to trick the server. At the same time, we will have to change the content-type to image/jpg (Figure 6-11).
Figure 6-11The Repeater tab output in Burp Suite
Download
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
Coding Theory | Localization |
Logic | Object-Oriented Design |
Performance Optimization | Quality Control |
Reengineering | Robohelp |
Software Development | Software Reuse |
Structured Design | Testing |
Tools | UML |
Deep Learning with Python by François Chollet(12587)
Hello! Python by Anthony Briggs(9924)
OCA Java SE 8 Programmer I Certification Guide by Mala Gupta(9800)
The Mikado Method by Ola Ellnestam Daniel Brolund(9784)
Dependency Injection in .NET by Mark Seemann(9347)
Algorithms of the Intelligent Web by Haralambos Marmanis;Dmitry Babenko(8309)
Test-Driven iOS Development with Swift 4 by Dominik Hauser(7770)
Grails in Action by Glen Smith Peter Ledbrook(7704)
The Well-Grounded Java Developer by Benjamin J. Evans Martijn Verburg(7566)
Becoming a Dynamics 365 Finance and Supply Chain Solution Architect by Brent Dawson(7140)
Microservices with Go by Alexander Shuiskov(6903)
Practical Design Patterns for Java Developers by Miroslav Wengner(6820)
Test Automation Engineering Handbook by Manikandan Sambamurthy(6760)
Secrets of the JavaScript Ninja by John Resig Bear Bibeault(6423)
Angular Projects - Third Edition by Aristeidis Bampakos(6179)
The Art of Crafting User Stories by The Art of Crafting User Stories(5700)
NetSuite for Consultants - Second Edition by Peter Ries(5631)
Demystifying Cryptography with OpenSSL 3.0 by Alexei Khlebnikov(5444)
Kotlin in Action by Dmitry Jemerov(5073)
