HTTP methods vulnerability check using telnet

HTTP methods for a vulnerability scan

HTTP methods for a vulnerability test using the Telnet command line utility and nmap script engine vuln: http-put.nse, http-trace.nse & http-methods.nse

Following http methods can lead to significant attack

OPTIONS, TRACE & PUT and DELETE will have significant impact on the web server attack.

OPTIONS: – will give the inside of the web server and version

TRACE: The HTTP TRACE method returns the contents of the client HTTP requests. Attackers can exploit to capture sensitive information like authentication data & cookies .

PUT and Delete : PUT method, allows an attacker to upload files and use them in the form of URL’s and Delete Will allow a user to delete existing files from the web server.
Note: Other methods like : GET,POST,HEAD and CONNECT.

HTTP methods for a vulnerability scan using telnet

HEAD HTTP/1.0 , HTTP/1.1 HTTP/2.0
#telnet remoteIP 80
OPTIONS / HTTP/1.0

HEAD HTTP/1.0 , HTTP/1.1 HTTP/2.0
#telnet remoteIP 80
HEAD / HTTP/1.0

PUT HTTP/1.0 , HTTP/1.1 HTTP/2.0
#telnet remoteIP 80
PUT / HTTP/1.0

TRACE HTTP/1.1 HTTP/2.0
#telnet remoteIP 80
TRACE / HTTP/1.0

Watch ,  How to check httpd methods vulnerability using telnet

 

 

Both comments and pings are currently closed.

Comments are closed.

Copyright ©Solutions@Experts.com
Copyright © NewWpThemes Techmark Solutions - www.techmarksolutions.co.uk