1
00:00:00,180 --> 00:00:02,190
Hello everybody and welcome back.

2
00:00:02,200 --> 00:00:08,160
And in this tutorial we will cover some of the basic terms that you need to know in order to understand

3
00:00:08,160 --> 00:00:10,920
better things to cover in the web.

4
00:00:10,920 --> 00:00:12,890
Penetration Testing section.

5
00:00:12,930 --> 00:00:18,030
So let me just stop in here please bed and enlarge it a little bit.

6
00:00:18,030 --> 00:00:25,270
So first thing I want you to know is basically some of the most basic terms which is for example HDP

7
00:00:26,400 --> 00:00:33,420
now we already covered what it is in the basic networking terms and basic ethical hacking terms but

8
00:00:33,420 --> 00:00:37,500
here we need to cover it a little bit more in details.

9
00:00:37,500 --> 00:00:41,150
So each ETP is our Hypertext Transfer Protocol.

10
00:00:41,190 --> 00:00:46,260
It is basically used on all of your uh Web site pages as you can see.

11
00:00:46,290 --> 00:00:52,440
We open up any page you will either have an AC DP or it's a P S right here.

12
00:00:52,440 --> 00:00:59,790
And as we already said before the difference between these two is that ATP s uses SSL RTL s encryption

13
00:00:59,850 --> 00:01:07,800
in order to protect your files from anyone trying to interfere with your internet connection.

14
00:01:07,800 --> 00:01:15,840
So basically if this was energy DP website without the s anyone could anyone that is putting himself

15
00:01:15,840 --> 00:01:22,140
in the middle between me and this website can basically read all of my information.

16
00:01:22,140 --> 00:01:26,430
For example if there was a log in page right here as you can see log in right here.

17
00:01:26,430 --> 00:01:35,510
And if I type your my username and password he could get them in plain text while as with the SSL until

18
00:01:35,510 --> 00:01:41,380
s encryption all my data would be encrypted and he wouldn't be able to get anything out of it.

19
00:01:42,570 --> 00:01:46,340
So that is another thing that you can check every time you log in somewhere.

20
00:01:46,440 --> 00:01:50,540
For example your Facebook page your Instagram page any page.

21
00:01:50,640 --> 00:01:54,360
Basically today shouldn't be a CTP.

22
00:01:54,360 --> 00:02:00,750
If you open up a page for example Facebook and it says right here only DP It is most likely going to

23
00:02:00,750 --> 00:02:05,570
be a fake Facebook page and someone is phishing for your credentials.

24
00:02:05,670 --> 00:02:08,080
So that is an important thing.

25
00:02:08,110 --> 00:02:18,140
Now also the next thing I want to tell you about is the ETP Heather's now SDP Heathers we will cover

26
00:02:18,140 --> 00:02:21,100
them in great detail later on with our burps too.

27
00:02:21,110 --> 00:02:28,700
But from now on there are basically two things you need to know which eats parties and HDP request and

28
00:02:28,710 --> 00:02:31,830
watches and what is an EDP response.

29
00:02:32,220 --> 00:02:35,080
Will cover the HDP requests right now.

30
00:02:35,090 --> 00:02:43,330
So let me just open up a picture that I downloaded which is basically request Heather.

31
00:02:43,550 --> 00:02:48,010
It will show you how uh HDP header request looks like.

32
00:02:48,230 --> 00:02:50,360
And we will cover some of the parts that it chose.

33
00:02:50,360 --> 00:02:56,820
So basically let us just open this picture first.

34
00:02:56,830 --> 00:02:57,640
Here it is.

35
00:02:57,640 --> 00:03:01,000
This is a typical age TTP.

36
00:03:01,000 --> 00:03:03,630
Heather request Heather.

37
00:03:03,880 --> 00:03:10,990
So let me just enlarge this a little bit so you can see better as we can see there are a few stuff right

38
00:03:10,990 --> 00:03:13,160
here that we need to know about.

39
00:03:13,210 --> 00:03:16,080
First of all what is the HDP request.

40
00:03:16,090 --> 00:03:21,610
Well HDP request is basically every time you type here Google dot com on your.

41
00:03:21,820 --> 00:03:28,140
For example Firefox you just opened here and type here.

42
00:03:28,220 --> 00:03:34,690
Google and dot com it will perform an H CTP request for this page.

43
00:03:34,710 --> 00:03:43,200
Now what I mean by that is we as clients request the page and server census back the page with the shitty

44
00:03:43,320 --> 00:03:44,050
response.

45
00:03:44,520 --> 00:03:49,450
And that page contains the h the email the HDP responds and so on so on.

46
00:03:50,360 --> 00:03:57,320
Now basically it's typical requests says some of the options right here that I will explain right now.

47
00:03:57,390 --> 00:04:05,340
The get as you can see to get the part right here is a method ETP method which basically references

48
00:04:05,370 --> 00:04:08,310
to the website that we tried to search.

49
00:04:08,310 --> 00:04:12,360
So if we tried to search Google dot com right here it would type.

50
00:04:12,360 --> 00:04:14,190
Get Google dot com.

51
00:04:14,460 --> 00:04:16,840
Since we tried to get to that Web site.

52
00:04:16,860 --> 00:04:18,690
So it is simple as that.

53
00:04:18,690 --> 00:04:26,580
You just translate this into English and basically just s to get that page from the server.

54
00:04:26,580 --> 00:04:31,940
The protocol right here as you can see which is HDP one point one is just a current version of the DP

55
00:04:32,370 --> 00:04:38,960
and the path as we can see right here is the current path that we searched for example as you can see

56
00:04:38,960 --> 00:04:47,300
right here the path would be slash projects slash or WASP PBA that would be the path if we searched

57
00:04:47,390 --> 00:04:54,800
this page the host would be the server that we search for.

58
00:04:54,810 --> 00:05:00,200
So the host will be the name of the website that we typed in our search bar.

59
00:05:00,200 --> 00:05:07,980
So in our case right here source for dot net would be the host the user agent is basically this is what

60
00:05:07,980 --> 00:05:10,860
server uses to identify every client.

61
00:05:10,860 --> 00:05:18,650
So we we are ETP request we send to server also some of our own information for example.

62
00:05:18,660 --> 00:05:24,460
What kind of web browser we're using which in this case is Mozilla for endpoint 5.0.

63
00:05:24,480 --> 00:05:30,150
What is our operating system in this case it is windows and so on and so on.

64
00:05:30,720 --> 00:05:40,530
So basically use range it is ourselves with our web browser here we can see except text NHT email basically

65
00:05:40,530 --> 00:05:47,670
here we specify as a request what do we want to what do we accept from the server in return.

66
00:05:47,670 --> 00:05:49,920
And we basically accept the estimate.

67
00:05:49,940 --> 00:05:55,200
Actually each the e-mail page which is most likely what we are going to get.

68
00:05:55,230 --> 00:06:02,580
So let me just show you the ECMO is basically a code that you use to write these websites you can check

69
00:06:02,580 --> 00:06:09,910
out the HD e-mail code of every page with the right click on the page and check the source code once

70
00:06:09,910 --> 00:06:10,810
it opens this up.

71
00:06:10,810 --> 00:06:16,390
This is basically an HMO code which starts with head body and so on.

72
00:06:16,390 --> 00:06:24,360
It has a bunch of things it's not really that hard to learn and it is the essentials of every website

73
00:06:24,450 --> 00:06:25,540
you visit.

74
00:06:25,740 --> 00:06:33,900
So it's good to know that as well so let's just get back to our GDP request the accept language as we

75
00:06:33,900 --> 00:06:42,350
can see right here is basically the language as it says English us except encoding GC deflate.

76
00:06:42,390 --> 00:06:44,440
So we do accept encoding.

77
00:06:44,670 --> 00:06:50,250
There are certain texts that we can use in order to remove this encoding and basically get the file

78
00:06:50,250 --> 00:06:51,150
in plain text

79
00:06:53,870 --> 00:06:58,460
except char set which is UTF minus 8.

80
00:06:58,700 --> 00:07:04,850
So keep alive three hundred connection keep alive their these options that we do not really care about

81
00:07:05,510 --> 00:07:09,350
but the one that we do care about is the kooky.

82
00:07:09,590 --> 00:07:10,850
Now what is a cookie.

83
00:07:10,870 --> 00:07:18,160
Cookie is basically a temporary value that is used to keep our information about the current session

84
00:07:18,190 --> 00:07:19,390
that we're having.

85
00:07:20,700 --> 00:07:26,440
So without cookies the server would after every request forget who we are and wouldn't know what research

86
00:07:26,580 --> 00:07:33,720
for example before or what our user name and password was so basically it wouldn't know who are we in

87
00:07:33,720 --> 00:07:34,900
the previous request.

88
00:07:34,950 --> 00:07:42,870
The cookie is stored in this on the server and it basically has all the information about our current

89
00:07:42,870 --> 00:07:45,900
session.

90
00:07:45,910 --> 00:07:52,120
Now we can see the pitch session idea and this is basically the cookie itself it is a random number.

91
00:07:52,450 --> 00:07:59,890
It is also one of the main points of the attacks as we can see if we were for example to change this

92
00:07:59,890 --> 00:08:08,740
cookie value to something else we would be logging in into a different session which could be potentially

93
00:08:08,740 --> 00:08:10,230
dangerous.

94
00:08:10,270 --> 00:08:17,950
Now there is another option right here in the HDB request headers that isn't listed right here and it

95
00:08:17,950 --> 00:08:20,020
is the authorization.

96
00:08:20,020 --> 00:08:24,730
Now with this parameter ETP enables the identity checker client.

97
00:08:25,020 --> 00:08:28,240
So for example if I log in into my router

98
00:08:32,030 --> 00:08:36,350
let me just 192 168.

99
00:08:36,410 --> 00:08:43,690
That one that one this window little window that will pop up right here it should pop up any second.

100
00:08:43,700 --> 00:08:46,580
Here it is is basically authorization.

101
00:08:46,580 --> 00:08:57,100
So this is how the my how my Rato checks the identity of me if I know the user name and password I can

102
00:08:57,100 --> 00:08:57,550
log in.

103
00:08:57,610 --> 00:09:01,210
If I don't know the user name or password I can't again.

104
00:09:01,480 --> 00:09:06,010
So those are some of the basics of the EDP request headers.

105
00:09:06,060 --> 00:09:12,460
Uh there is also some of the other things you should keep an eye on which is session tracking with cookies.

106
00:09:12,610 --> 00:09:19,190
It is an important one as I said also HDMI all you need to know what HDMI is which most likely you do.

107
00:09:19,210 --> 00:09:26,130
It is our code that is basically used in order to create websites so we can see right here.

108
00:09:26,140 --> 00:09:27,280
This is the email code

109
00:09:31,030 --> 00:09:34,300
and that is about it for the HDP headers.

110
00:09:34,660 --> 00:09:36,220
Uh request headers now.

111
00:09:36,390 --> 00:09:44,310
I will also discuss the HDP response headers which are similar but basically stupid response is as it

112
00:09:44,310 --> 00:09:46,440
says a response from the server to us.

113
00:09:46,440 --> 00:09:53,000
So the SDP request is what we send to the server and HRT response is what server sends back to us.

114
00:09:53,670 --> 00:09:57,230
So we will discuss that in the next tutorial and I hope I see you there.