Adding web security 2/3 presentation

0xBU · Mar 4, 2016 · 0859d58 · 0859d58
1 parent 02848e5
commit 0859d58
Show file tree

Hide file tree

Showing 4 changed files with 32 additions and 0 deletions.
diff --git a/web-security1/[0xBU]Web_Security1.pdf b/web-security1/[0xBU]Web_Security1.pdf
diff --git a/web-security1/refuel.py b/web-security1/refuel.py
@@ -0,0 +1 @@
+print ("i am refueling")
diff --git a/web-security1/robot.py b/web-security1/robot.py
@@ -0,0 +1,14 @@
+#!/usr/bin/python
+from flask import Flask, request, json, session
+from subprocess import check_output
+
+app  = Flask(__name__)
+
+@app.route('/robot/<path:task>', methods=['GET'])
+def robot_task(task):
+	print("python " + task + ".py")
+	r = check_output("python " + task + ".py", shell=True)
+	return r
+
+app.run(host='127.0.0.1', port=5000, debug=True)
+
diff --git a/web-security1/test_http.py b/web-security1/test_http.py
@@ -0,0 +1,17 @@
+#!/usr/bin/python
+#******************************************************************************
+# How to script HTTP requests, and receive their responses
+# http://canyouhack.it/Content/Challenges/Web/Web2.php
+#******************************************************************************
+import requests
+
+website = r"http://canyouhack.it/Content/Challenges/Web/Web2.php"
+r = requests.get(website)
+print r.headers
+print r.status_code
+print r.text
+
+headers = {"isAdmin" : "1"}
+r = requests.post(website, cookies=headers)
+print r.status_code
+print r.text