Web Requests - POST

Question 1

What is the main purpose of POST requests in web applications?

Answer 1

To transfer files or user parameters from the URL within the HTTP Request body

Question 2

How does POST differ from GET in terms of data placement?

Answer 2

POST places user parameters within the HTTP Request body, while GET places them in the URL

Question 3

What is one benefit of using POST requests regarding logging?

Answer 3

Lack of Logging: It avoids inefficient logging of large uploaded files as part of the requested URL

Question 4

Why are there fewer encoding requirements for POST requests compared to GET requests?

Answer 4

POST places data in the body which can accept binary data, reducing the need for encoding

Question 5

What is a limitation of URL length for GET requests?

Answer 5

Generally, a URL’s length should be kept to below 2,000 characters, limiting data transmission

Question 6

What is a common use case for POST requests in web applications?

Answer 6

Submitting login forms

Question 7

What command can be used to send a POST request with cURL?

Answer 7

curl -X POST -d ‘data’ http://<SERVER_IP>:<PORT>/</PORT></SERVER_IP>

Question 8

What flag is used in cURL to follow redirection after authentication?

Answer 8

-L

Question 9

What is the significance of the Set-Cookie header in HTTP responses?

Answer 9

It allows browsers to persist authentication without needing to log in each time

Question 10

How can you view the response headers, including cookies, in cURL?

Answer 10

Use the -i or -v flags

Question 11

What cURL flag is used to send a cookie with a request?

Answer 11

-b

Question 12

How can you specify a cookie in a header using cURL?

Answer 12

curl -H ‘Cookie: cookie_name=cookie_value’ http://<SERVER_IP>:<PORT>/</PORT></SERVER_IP>

Question 13

What kind of data format is used when sending POST data in a JSON request?

Answer 13

application/json

Question 14

What command is used to replicate a POST request with JSON data using cURL?

Answer 14

curl -X POST -d ‘{“search”:”london”}’ -H ‘Content-Type: application/json’ http://<SERVER_IP>:<PORT>/search.php</PORT></SERVER_IP>

Question 15

What is the expected response when correctly sending a search request for ‘london’?

Answer 15

[“London (UK)”]

Question 16

What is one potential exercise to understand the impact of headers in requests?

Answer 16

Repeat the request without adding the cookie or content-type headers

Question 17

What is the benefit of using cURL for web application assessments?

Answer 17

It allows for faster testing of web applications without interacting with the front-end

Question 18

What method can be used to copy a request as Fetch in developer tools?

Answer 18

Right-click on the request and select Copy>Copy as Fetch