HTTP is an application layer protocol for browsing the web. Discover how HTTP headers can tell us the types of servers and browsers that are used during a webpage transaction.
- View Offline
- [ Narrator] Hypertext Transfer Protocol…is an application layer protocol for browsing the web.…It's been in use on the web since 1990.…HTTP is a client server model…that uses TCP port 80,…but others ports can be used as well.…HTTP headers can tell us the types of servers…and browsers that are used during a web page transaction.…This information can then be used to launch an attack.…The client sends an HTTP request,…it sends information about the request…and about the client itself to the server.…
That would include possibly the language it might accept…and the type of connection.…The server response message would include a status code line…and also information about the server…and what it can provide.…Now, there are a number of different HTTP status codes.…We can see informational,…and that's reserved for future use, not used.…Success, and that means the request test succeeded…and the objects appear later in the message.…Redirection and further action must be taken…in order to complete the request.…
Client error, not found, and server error,…
Note: The topics in this course will prepare you for key objectives on the Certified Ethical Hacker exam. Find an overview of the certification and the exam handbook at https://www.eccouncil.org/programs/certified-ethical-hacker-ceh/.
- Sniffing network traffic
- Passive vs. active attacks
- Comparing IPv4 to IPv6
- MAC and macof attacks
- Investigating DHCP attacks
- Detecting ARP and DNS spoofing
- Sniffing tools and techniques