August 2018
Intermediate to advanced
404 pages
10h 22m
English
We first need to analyze the request we want to force the victim to make. To do this, we need Burp Suite, or another proxy configured in the browser:

So, it is a POST request to http://192.168.56.11/bodgeit/password.jsp and has only the password and its confirmation in the body.
<html><body><form action="http://192.168.56.11/bodgeit/password.jsp" ...
Read now
Unlock full access