[F21_WebFund] Lab1 資工四甲 407261271 吳詠涵

Group content visibility: 
Use group defaults
Groups audience: 

Lab1: HTTP analysis with Wireshark + Client content analysis with Browser tool/plugins

(1) Use Wireshark to capture HTTP messages, including GET, POST, Set-Cookie, and Cookie header. Your report should contain the target URLs, captured messages, and anything you learned from this lab.

GET:

get會將要索取的資料直接顯示在網址上,非常清楚一目了然,因此所有的東西都會直接被發現。

POST:

Post會將想要的訊息放在message-body中傳輸,不會直接顯示在網址上,但透過封包擷取仍然可以找到資料內容

帳號密碼都顯示出來...

 

Cookies:

Cookis會將少數的資料暫存於使用者這端,需要時就不用向server不斷拿取,通常會存帳號密碼

雖然可減少不少時間,也比較方便,但也有暫存資料被發現(洩漏)的風險

Set-Cookies:

(2) Use Browser tool/plugin to analyze the web page content. Your report should contain the HTML. CSS, Javascript. Post your lab report on SLS personal blog, and the link on FB course group.

原始畫面:

新畫面: