Change data sent using POST method of HTTP
The main HTTP methods used for sending data to the web server are GET and POST method.
When using the <strong>GET method</strong>, the data is encoded directly in the requested URL, specifically to the query part of it. The query part starts with a question mark and consists of pairs key, value in a form <code>key=value</code>, the pairs are divided by an ampersand.
For instance to inform the web server that a user wants to log off, quite often the URL of the form <code>index.php?action=logout</code> is used. Therefore it is very easy to change the sent data.
The <strong>POST method</strong> uses the body of the HTTP message to store the data. The user has no direct possibility to change the data.
We want to find an easy way to do so.
- Log in to post comments
1 answer
Firefox add-on TamperData
The data sent by the POST method can be easily altered by the TamperData add-on of the Firefox.
It can be downloaded from the https://addons.mozilla.org/sk/firefox/addon/966/ .
After the installation the Firefox is restarted. TamperData can be accessed inside of the 'Tools' menu.
After its start a window appears. By clicking on the 'Start Tamper' it starts watching for a sent data and asks whether it should be tampered. If so, another window appears showing all the keys and assigned values which can be easily changed.
Taggings:
- Log in to post comments