Follow us on Twitter!
Few are those who can see with their own eyes and hear with their own hearts. - Albert Einstein
Friday, April 25, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 19
Guests Online: 17
Members Online: 2

Registered Members: 82909
Newest Member: awais
Latest Articles

Spoofing HTTP Requests with Putty

Arrow Image Spoofing HTTP Requests with Putty



Today I hope to be teaching you a small amount about HTTP Requests and Putty. The topics which I will be covering in this brief article are as follows;

* What are HTTP Requests?
* What is PuTTY?
* How can I send an HTTP Request with PuTTY?
* How can I spoof an HTTP Request realisticly with PuTTY?

What are HTTP Requests?

HTTP is described by Wikipedia as "a method used to transfer or convey information on the World Wide Web". I don't want to talk to you with the details about how HTTP started because I know someone will get flamed over it because noone seems to have the same view on the subject.

HTTP stands for Hpertext Transfer Protocol. When you want to send some data over the interweb you will always use this method. It sends data from the client to the server. After that the server will give a response.

An HTTP Request can be spilt up into
* Request line
* Headers

The Request line looks something like this

Code
GET /index.php HTTP/1.1




This tells the server
* The request method
* The requested file
* The HTTP version

There are many request methods but the main ones which people tend to use are;
* HEAD
* GET
* POST

There are also
* PUT
* DELETE
* TRACE
* OPTIONS
* CONNECT

The headers are a collection of variables which data is stored in. The common ones are
* Accept-Encoding
* Host
* Referer
* Cookie
* User-Agent

Once we have all this information we can compile our HTTP Header. For instance

Code
GET /home HTTP/1.0
Accept-Encoding:
Host: phpgsy.com
Referer: http://www.hellboundhackers.org
Cookie: cookie=1234
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1) Gecko/20061010 Firefox/2.0
Connection: close




The response which comes from this is;

Code
HTTP/1.1 200 OK
Date: Sat, 25 Nov 2006 15:43:33 GMT
Server: Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7d VDB/1.1.1-se
X-Powered-By: PHP/4.4.0
Content-Length: 7315
Connection: close
Content-Type: text/html




What is PuTTY?

PuTTY is an SSH, Telnet and Raw client. It is very easy to use and well worth downloading. You can find it here

How can I send an HTTP Request with PuTTY?

To send an HTTP Request with PuTTY, it's quite simple.

* Enter the hostname

eg.
phpgsy.com

* Enter the post

eg
80

* Chose the "Raw" Protocol

* Close window on exit:

Set this to never

* Click Open

A new window should appear like a CMD window. With this you have to enter your request. For something like;

Code
GET /home HTTP/1.0
Accept-Encoding:
Host: phpgsy.com
Referer: http://www.hellboundhackers.org
Cookie: cookie=1234
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1) Gecko/20061010 Firefox/2.0
Connection: close




The screen the shows something like this;

Code
GET /home HTTP/1.0
Accept-Encoding:
Host: phpgsy.com
Referer: http://www.hellboundhackers.org
Cookie: cookie=1234
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1) Gecko/20061010 Firefox/2.0
Connection: close

HTTP/1.1 200 OK
Date: Sat, 25 Nov 2006 15:56:00 GMT
Server: Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7d VDB/1.1.1-se
X-Powered-By: PHP/4.4.0
Content-Length: 7315
Connection: close
Content-Type: text/html

<style type="text/css">
                       <!--
                           #loading {
                                        width: 200px;
                                                        height: 25px;
                                                                        background-color: #e2e6ec;
                        position: absolute;
                                                left: 95%;
                                                                top: 5%;
                                                                               margin-top: -50px;
                        margin-left: -100px;
                                                text-align: center;
                                                                       font-family: /*Lucida Grande, Lucida Sans Unicode, Verdana, Helvetica, Arial,*/ sans-serif;
  }
   -->
      </style>

              <script type="text/javascript">
                                             <!--
                                                 document.write('<div id="loading"><br/><br/>Loading...</div>');
                                window.on<i></i>load=function(){
                                                                document.getElementById("loading").style.display="none";
                                        }
                                         -->

                                            </script>
                                                     <html><head>
                                                                   <title>PHP-GSY</title>
           <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
                                                                                 <LINK REL=StyleSheet HREF="css/google-blue.css" TYPE="text/css">
                                                                   <script> </script></head><body id="threecolumn">
                                                        <div id="container">
                                                                               <div class="wrapper"><div id="header">
                                                        <div class="wrapper">
                                                                               <h1 id="page-title">
                                                        <div id='title'><p style="text-align: center;">PHP-GSY - Home</p></div>
                                                                        </h1>
                                                                               <div style="clear: both"></div>
                                                </div>
                                                                </div><div id="left-sidebar">
                        <div class="wrapper">
                                                                <div class="links">
                                <div class="wrapper">
                                                                               <div id='left-sidebar-content'><h2>Links</h2><p><a href="index">Home</a><br /><a href="about">About</a><br /><a href="archive">Archive</a><br /><a href="admin">Admin</a><br />                  </p></div>
                                                                        </div>
                                                                                          <div style="clear: both"></div>
                                                   </div>
                                                                  </div>
                                                                              </div>      <div id="content">

                                    <div class="wrapper">
                                                                   <div class="content-item"><div id='main_body'>
                                                        <div class="wrapper"><div class="wrapper"><p>Welcome to my blog. I will be posting things which I find interesting for you to look at.  I am also looking for ideas about what to post.  Please email me at admin@phpgsy.com with ideas.</p></div><div class="wrapper"><p><h2>Exploits</h2><br /><a href="/blog/17#comments">16 Comments</a></p><p>Well I know that you are all searching hard  through my code to find the exploits so I decided that you could comment in here, so that I could find them quickly.<br />
<br />
Happy searching<a href="/blog/17">...</a></p><p>Posted on Wed 22nd , Nov 06 at 15:02 by Simon Morris</p></div><div class="wrapper"><p><h2>U3 Datatraveller</h2><br /><a href="/blog/16#comments">5 Comments</a></p><p>Well, as I said before I recieved my U3 Datatraveller in the post this weekend. I have been playing with it since then and have found some useful things.<br />
<br />
The first thing which I downloaded was Mozilla FireFox. I am using it to type this as we spea<a href="/blog/16">...</a></p><p>Posted on Tue 21st , Nov 06 at 15:14 by Simon Morris</p></div><div class="wrapper"><p><h2>Challenge Ahoy</h2><br /><a href="/blog/15#comments">2 Comments</a></p><p>As most of you are probably aware I am fairly active on web security sites, especially HBH. At the moment I am coding a mission for them.  It has the best code name - 'Real 16'.  The aim of the mission is to login to the admin panel and add a certa<a href="/blog/15">...</a></p><p>Posted on Mon 20th , Nov 06 at 18:43 by Simon Morris</p></div><div class="wrapper"><p><h2>JAVA in The Works</h2><br /><a href="/blog/14#comments">0 Comments</a></p><p>I am currently learning JAVA, i am coding an app to allow me to blog easily to this site using a JME app from my mobile, i will also create an app to read and comment new blogs, and i will post it up here once it is done. Thanks<a href="/blog/14">...</a></p><p>Posted on Mon 20th , Nov 06 at 15:34 by Tristan Knight</p></div><div class="wrapper"><p><h2>eBuddy JAVA MSN Wap Client</h2><br /><a href="/blog/13#comments">1 Comments</a></p><p>Well I found a JAVA client that will let you access your MSN Messenger account using your mobiles wap. It can be found here<br />
<br />
<a href="http://www.ebuddy.com/mob/">MSN WAP Client</a><br />
<br />
It's currently only in Beta and has some issues with some phones, <a href="/blog/13">...</a></p><p>Posted on Sun 19th , Nov 06 at 18:40 by Tristan Knight</p></div><div class="wrapper"><p><h2>Phone blogging</h2><br /><a href="/blog/12#comments">1 Comments</a></p><p>Well after setting up WAP on my phone I can now blog where ever I roam. Bearing in mind I have to have my phone with me, which is all the time. Unless I am in an exam of course. And obviously I have to have credit. Which is most of the time. So, expe<a href="/blog/12">...</a></p><p>Posted on Sun 19th , Nov 06 at 13:28 by Tristan Knight</p></div><div class="wrapper"><p><h2>My U3 Drive</h2><br /><a href="/blog/11#comments">7 Comments</a></p><p>I am not going to put much content in this initial blog as I want to test the Blog Edit function later on so I'll just say chow :-)<a href="/blog/11">...</a></p><p>Posted on Sun 19th , Nov 06 at 10:36 by </p></div><div class="wrapper"><p><h2>Blog War!</h2><br /><a href="/blog/10#comments">0 Comments</a></p><p>If you have noticed the sudden increase in blogs, don't be alarmed! It's just me testing out the blogging facilities as I improve them whilst trying to excuse the random blog.<br />
<br />
I am soon going to putting some proper content onto the site but for <a href="/blog/10">...</a></p><p>Posted on Sat 18th , Nov 06 at 15:35 by Simon Morris</p></div><div class="wrapper"><p><h2>New Blogger On The Loose</h2><br /><a href="/blog/9#comments">1 Comments</a></p><p>Well, Simon has asked me to blog alongside him, as a his right-hand blogger.<br />
<br />
This privilege has been graciously received, and I have now been given my own password. How honoured I feel.<br />
<br />
Any way, thank Simon *Thumbs Up*<br />
<br />
Tristan out<a href="/blog/9">...</a></p><p>Posted on Sat 18th , Nov 06 at 15:31 by Tristan Knight</p></div><div class="wrapper"><p><h2>Admin Panel Complete</h2><br /><a href="/blog/4#comments">3 Comments</a></p><p>Well that was a morning well spent. After a whole 15 minutes of back breaking labour I had this admin panel, which I am using now, working.<br />
<br />
At the moment I am starting to use my brand new "U3 DataTraveller" 2GB memory stick, so expect a post about<a href="/blog/4">...</a></p><p>Posted on Sat 18th , Nov 06 at 14:30 by Simon Morris</p></div></div>
                                                                          </div>
                                                                                 </div>
                 <div style="clear: both"></div>
                                                        </div>
                                                                    </div><div id="right-sidebar">
                                                <div class="wrapper">
                                                                               <div id='right-sidebar-content'><!--ALTERING CODE IN ANY WAY WILL RESULT IN SUSPENSION OF ACCOUNT--><font face='verdana' size=1><a href='http://www.crispads.com'>CrispAds Blog Ads</a></font><br><iframe id='a7216cc4' name='a7216cc4' src='http://www.crispads.com/spinner/adframe.php?n=a7216cc4&what=zone:7041&resize=1' framespacing='0' frameborder='no' scrolling='no' width='130' height='625' allowtransparency='true'><a href='http://www.crispads.com/spinner/adclick.php?n=a7216cc4' target='_blank'><img src='http://www.crispads.com/spinner/adview.php?what=zone:7041&resize=1&n=a7216cc4' border='0' alt=''></a></iframe><br>
                                                                            </div>
                                </div>
                                                                <div style="clear: both"></div>
                     </div><div id="footer">
                                                    <div class="wrapper">
                                                                                   <hr />
                   <p><div id='footer-content'><p style="text-align: center; clear: both;" class="separator"></p><p style="text-align: center;">Copyright 2005-2006 </p></div></p>
                                 <div style="clear: both"></div>
                                                                        </div>
                                                                                    </div></body>
                                </html>




As you can see this is the output from my sites homepage. This therefore is a sucessful request.

How can I spoof an HTTP Request realisticly with PuTTY?

My prefered method to send a fake post method is to collect my normal headers with "Live HTTP Headers" Firefox extension and then paste them into PuTTY. Using this I can change the post variables slightly and Volia!

If this gets good comments then you can expect to get a PHP method for requesting Headers

Comments

spywareon November 25 2006 - 20:53:54
niice article. Read it on your blog already.
mozzeron November 25 2006 - 21:03:06
Thanks
only_samuraion November 25 2006 - 21:04:26
i agree. very nice article. very useful. thanks mate
GreyFoxon November 25 2006 - 21:28:25
nice article, understandable and straight forward. thanks Smile
system_meltdownon November 25 2006 - 22:04:59
Nice one mozzer Smile
mozzeron November 25 2006 - 22:13:18
Seems I'm gonna have to write that PHP method Grin
BluMooseon November 25 2006 - 22:22:51
Lol write the PHP method Smile
jaggedlanceron November 25 2006 - 22:25:04
awsome :happy:
evilTonmoyon November 25 2006 - 23:46:32
awesome mate....glad to see something new in the articles.
HopelessRomanticon November 26 2006 - 00:36:54
One of the best articles I've ever seen, very interesting and it still explained a lot. I'd like to see more articles like this on HBH. Without a doubt - 5 out of 5.
korgon November 26 2006 - 01:22:11
Finally an article worth reading, Already use this myself but got some new pointersSmile 10/10 super mozzer!
system_meltdownon November 26 2006 - 02:33:43
who voted "good"?
Arcubeon November 26 2006 - 07:57:01
Finally a good article, awesome mozzer Grin
mozzeron November 26 2006 - 12:45:23
Who voted "poor"?
Happysmilemanon November 26 2006 - 14:36:26
I voted awesome
hawksteron October 14 2008 - 07:57:55
Good article, Moz! Where the heck is that PHP method? Grin
Post Comment

Sorry.

You must have completed the challenge Basic 1 and have 100 points or more, to be able to post.