1 00:00:00,150 --> 00:00:01,110 Welcome back, everyone. 2 00:00:01,140 --> 00:00:08,430 This is fresh niche, and this session is about going back to with SCDP. 3 00:00:09,180 --> 00:00:17,280 I know you have got a got in basic idea about what's what SCDP is, but this is very clear in your mind 4 00:00:17,280 --> 00:00:21,630 and will make you understand what all happening behind the scene. 5 00:00:21,930 --> 00:00:22,200 Right. 6 00:00:22,200 --> 00:00:23,190 So let's get started. 7 00:00:23,980 --> 00:00:32,370 OK, for this to understand, if you remember correctly, I talked about I talked about really everything 8 00:00:32,370 --> 00:00:40,710 related to how the browser and how the interaction between the browser and the web server happens back 9 00:00:40,710 --> 00:00:41,180 and forth. 10 00:00:41,190 --> 00:00:41,490 Right. 11 00:00:42,030 --> 00:00:49,350 So for that to test, we need a browser and you don't have to go anywhere as well and pick up our favorite 12 00:00:49,350 --> 00:00:49,830 browser. 13 00:00:49,830 --> 00:00:50,520 That's Chrome. 14 00:00:50,610 --> 00:00:54,600 OK, so let me go there and we'll make use of Chrome browser. 15 00:00:55,530 --> 00:01:06,630 And let's say you go to any any random site, try to go to any random site I'll make use of. 16 00:01:10,250 --> 00:01:13,930 This will be our testing website to our decision. 17 00:01:13,980 --> 00:01:20,540 OK, this is a demo site, and what do you need to do is while testing any site, maybe it's Google 18 00:01:20,540 --> 00:01:22,640 or anything, just go there. 19 00:01:23,120 --> 00:01:27,620 You will find an option in modules and developer tools. 20 00:01:28,170 --> 00:01:30,640 OK, so now what next? 21 00:01:30,920 --> 00:01:36,040 You have to select the network, keep it all OK. 22 00:01:36,620 --> 00:01:40,810 And now once it is done, then you have you can select any pages. 23 00:01:40,820 --> 00:01:44,440 Let's say I go to any section over there, OK. 24 00:01:44,990 --> 00:01:48,840 And I selected I click on one of the buttons over there. 25 00:01:49,070 --> 00:01:56,370 OK, now for the moment you do that, there are multiple request has been sent to the web server. 26 00:01:56,630 --> 00:02:02,230 OK, now you can select any of this request source, OK? 27 00:02:02,630 --> 00:02:10,610 And the moment you select any one of them, you get all the daps open up sync headers, preview response, 28 00:02:10,610 --> 00:02:13,050 initiator timings, cookies, cookies. 29 00:02:13,080 --> 00:02:13,370 Sorry. 30 00:02:13,730 --> 00:02:19,480 At this moment we are interested about headers of the SDP. 31 00:02:20,180 --> 00:02:21,080 So remember this. 32 00:02:21,680 --> 00:02:28,960 Whatever you are exchanging across this session while you are communicating to the web server, remember 33 00:02:28,970 --> 00:02:34,250 it's all SDP and all Cádiz request and the response. 34 00:02:34,470 --> 00:02:34,810 Right. 35 00:02:35,180 --> 00:02:42,680 So this header will give you an idea about board response header and request of do you see this? 36 00:02:42,980 --> 00:02:50,750 There are there are basically four parts of a general response header request will first talk about 37 00:02:50,750 --> 00:02:51,630 the request header. 38 00:02:51,680 --> 00:02:54,680 What we just requested, we requested for this. 39 00:02:54,770 --> 00:02:55,610 What was that? 40 00:02:55,640 --> 00:02:59,400 The postal tab under the demo test fired off that. 41 00:02:59,450 --> 00:02:59,720 Right. 42 00:03:00,170 --> 00:03:03,050 So let's open the request header. 43 00:03:03,200 --> 00:03:07,680 And you see, this is what has been requested. 44 00:03:07,820 --> 00:03:14,720 This is the request you are that the site requested for the first site is the demo test. 45 00:03:14,720 --> 00:03:18,500 Find out that this is what it is and that has been requested. 46 00:03:19,070 --> 00:03:21,800 And you can even see the results. 47 00:03:21,950 --> 00:03:25,490 You can get the idea about what encoding has been used. 48 00:03:25,850 --> 00:03:28,940 This is all about the request header. 49 00:03:29,150 --> 00:03:36,800 OK, and when you look at the response that came back, you get the idea what all it did was right. 50 00:03:37,130 --> 00:03:38,720 You get the idea about it. 51 00:03:38,720 --> 00:03:41,060 Is the response coming back from the server side. 52 00:03:41,390 --> 00:03:46,820 And when you look at the general file, that's where the things become even more and more simpler, 53 00:03:47,180 --> 00:03:52,550 because this is where the overview of the entire session basically happened. 54 00:03:52,550 --> 00:03:55,760 What is the or what is the basic stuff request and the response. 55 00:03:55,760 --> 00:04:00,020 If you remember, I talked about in the request, there are multiple methods. 56 00:04:00,710 --> 00:04:02,190 So that is a get request. 57 00:04:02,190 --> 00:04:06,000 There's a post request as a put request and there's a building request. 58 00:04:06,140 --> 00:04:07,790 This is all methods. 59 00:04:07,790 --> 00:04:08,090 Right. 60 00:04:08,360 --> 00:04:14,990 And while while we get the response from the Web server, we could have any kind of response code which 61 00:04:14,990 --> 00:04:18,850 could be starting from hundreds of years to five, five hundred to you. 62 00:04:19,670 --> 00:04:28,870 So you see, this is our resource that we have asked for, demo test fired out, not indexed GSB and 63 00:04:28,870 --> 00:04:29,510 then Kushima. 64 00:04:29,510 --> 00:04:31,940 That means it's a search query which is being used. 65 00:04:31,940 --> 00:04:35,130 The content is Postum because we click on the person that. 66 00:04:35,180 --> 00:04:35,450 Right. 67 00:04:37,280 --> 00:04:41,630 You see it is a request that means we asked for certain resources. 68 00:04:42,200 --> 00:04:47,250 We click on the personnel and we want to get what all resources present on this content. 69 00:04:47,300 --> 00:04:47,530 Right. 70 00:04:47,900 --> 00:04:50,390 And we get the status code as two hundred. 71 00:04:50,390 --> 00:04:53,330 Okay, that means everything is good. 72 00:04:53,510 --> 00:04:58,190 You are ready to receive all the content with the remote addresses. 73 00:04:58,190 --> 00:05:00,470 Does this is the fair policy. 74 00:05:00,470 --> 00:05:08,710 I'll talk about all this in the next section and the scatty schoolkids will give you just just for information 75 00:05:08,910 --> 00:05:17,960 is very important to Tukey is important for the Web service to remember the identity of the user. 76 00:05:18,650 --> 00:05:23,810 Nowadays, for all the e-commerce site -- plays a very, very important role. 77 00:05:23,810 --> 00:05:30,170 So if you remember, if you can if you can recall when you purchase something and let's say you go back, 78 00:05:30,470 --> 00:05:37,160 you have your coffee, you have your lunch and you come back, but you even if you restart your machine, 79 00:05:37,160 --> 00:05:43,280 you still see something in your car that happened because the the the e-commerce side, maybe Amazon 80 00:05:43,490 --> 00:05:45,800 still remember you based on your cookie. 81 00:05:46,040 --> 00:05:48,770 OK, that's what the purpose of Cookie, basically. 82 00:05:49,460 --> 00:05:55,790 And in fact, the system of apps are also know about what is the user agent and everything. 83 00:05:55,790 --> 00:06:00,800 And it can also remember what kind of a platform the server is used making use of. 84 00:06:01,100 --> 00:06:04,850 It is a battery or whatever it is you see in the response header. 85 00:06:05,120 --> 00:06:08,660 You even get to know the server which has been built, the al-Turabi. 86 00:06:09,380 --> 00:06:10,980 It is an Apache, right? 87 00:06:11,000 --> 00:06:12,560 So that's specific, it is. 88 00:06:13,010 --> 00:06:16,320 Let's go a bit more detail. 89 00:06:16,520 --> 00:06:21,050 We'll talk about Barb will open up a bulb suite. 90 00:06:21,230 --> 00:06:23,570 This is how you can look into the browser. 91 00:06:25,670 --> 00:06:32,270 You can open up Boxwood, which is being used for Web application, testing, application, security 92 00:06:32,270 --> 00:06:33,990 testing and penetration testing as well. 93 00:06:34,400 --> 00:06:40,320 If you even open and you get the idea about how this works, it is nothing but a proxy. 94 00:06:40,610 --> 00:06:47,150 So all the request that goes to the Web server first goes it all goes through the proxy. 95 00:06:47,510 --> 00:06:53,230 So if the proxy allows the traffic, it goes it will be allowed and sent to the Web server. 96 00:06:53,270 --> 00:06:57,400 If a discard, it won't be it won't be going to the Web servers. 97 00:06:57,440 --> 00:06:57,710 Right. 98 00:06:57,740 --> 00:07:04,220 So that means everything that now goes directly from your Web server to the from your Web browser to 99 00:07:04,220 --> 00:07:10,100 the Web server now will be going through the proxy and its proxies, but it will be having the very 100 00:07:10,100 --> 00:07:15,380 key decisions in between, you know, in between the section. 101 00:07:16,010 --> 00:07:18,950 But for now, I wanted to show you how this all works. 102 00:07:19,400 --> 00:07:21,230 So for this, what you can do is 103 00:07:24,140 --> 00:07:31,970 for this we can keep it off and I can just turn it on. 104 00:07:32,640 --> 00:07:33,260 Let me. 105 00:07:36,490 --> 00:07:37,840 Go to any of the site. 106 00:07:40,830 --> 00:07:41,880 Let me keep it off. 107 00:07:42,210 --> 00:07:43,290 Open the browser. 108 00:07:44,570 --> 00:07:44,950 OK. 109 00:07:45,060 --> 00:07:50,580 Now, the moment I start the descent, whatever I type. 110 00:07:56,020 --> 00:08:02,200 We'll be going to the Web where you see the moment I hit Enter the question goes to it, if I forward, 111 00:08:02,200 --> 00:08:03,720 it will be forwarded otherwise. 112 00:08:05,000 --> 00:08:07,960 Now, this is again, another request. 113 00:08:09,650 --> 00:08:16,760 If I thought it would be forwarded, if it is not, then I could see the request over here to this is 114 00:08:16,760 --> 00:08:18,420 another request coming in, right? 115 00:08:19,100 --> 00:08:22,700 You can keep sending whatever you would be doing on your browser. 116 00:08:23,150 --> 00:08:25,160 It will be coming to your proxy. 117 00:08:25,160 --> 00:08:26,750 But it has a request. 118 00:08:27,050 --> 00:08:28,970 And you see this request. 119 00:08:29,330 --> 00:08:35,560 This is for this home was damaged or tesfai connection is this goes what is the what is the browser 120 00:08:36,010 --> 00:08:39,360 screwed this chromium and use user agent. 121 00:08:39,770 --> 00:08:43,890 This is the type of his agent and everything. 122 00:08:44,150 --> 00:08:46,450 What is that if we have searched through the Google. 123 00:08:46,460 --> 00:08:48,320 So that would be the referral and everything. 124 00:08:48,320 --> 00:08:48,640 Right. 125 00:08:49,100 --> 00:08:52,780 That this is how we understand what all that is happening. 126 00:08:53,150 --> 00:08:56,120 We can even test what would be the response really looks like. 127 00:08:56,960 --> 00:09:01,580 So this is how we analyze the beheader in much more detail. 128 00:09:01,880 --> 00:09:03,730 You can make use of your browser. 129 00:09:03,740 --> 00:09:08,230 You can make use of any proxy, the free proxy as well. 130 00:09:08,240 --> 00:09:11,030 We can make use of all of us zap. 131 00:09:11,420 --> 00:09:19,850 We will be making use of Bub's to be very specific, will be making this obsolete heavily throughout 132 00:09:19,850 --> 00:09:20,480 the session. 133 00:09:20,810 --> 00:09:25,530 And we'll also be making use of that throughout the session as well. 134 00:09:25,910 --> 00:09:28,800 So fasten your seat belt and get ready for this. 135 00:09:29,060 --> 00:09:29,600 Thank you.