Viewing the HTTP Request and Response of an Issue

An HTTP request includes information that is sent by a client to the website over hypertext transfer protocol when you click a link, submit a button or expand a menu, for example. This information mostly contains the request method, the host address of the target site, the path or the page you requested, and some headers. The server responds to this request, which is referred to as an HTTP response.

How to View the HTTP Request and Response of an Issue in Netsparker Enterprise

  1. First, make sure you have completed a scan.
  2. From the main menu, click Issues, then All Issues. The Issues window is displayed. (Alternatively, from the Dashboard, select an issue from the Issues panel. Or, from the Scans menu, click Recent Scans, then a particular scan, and an issue from that scan.)
  3. Select an Issue. The Issue window is displayed.
  4. In the Issue Details panel, click the downward arrow to view more.
  5. Select the Request/Response tab. The screen refreshes, and the Request/Response is displayed.

  1. Click Go to Highlighted Content to view the output that lets you verify the vulnerability.

How to View the HTTP Request and Response of an Issue in Netsparker Standard

  1. First, make sure you have completed a scan. (see Creating a New Scan.)
  2. In the Issues panel, select an Issue. The Issue is displayed in the Vulnerability tab of the central pane. (Depending on your monitor size, you may want to resize the panes in the window, so that you can see it better.)

  1. Select the HTTP Request/Response tab. The HTTP Request and Response panes are displayed, showing the Request and Response the scanner received from the target server. (You may wish to close the Dashboard, Sitemap, Knowledge Base, Issues or Logs panes for a better view.)

  1. Depending on the Issue you've selected and the Response content, other tabs may be displayed allowing you to view the Request and Response in different ways:
  • Click, for example, the ASP.NET View State tab

  • Click the Raw or Headers tabs to view the same HTTP Request or Response in an alternative, more readable, format

  • Click the Parameters tab to view the parameters and their values that were sent in the HTTP Request

  1. In the Response pane, you can use Ctrl+F to find any text, then and use Shift+F3 to move through all instances of that text.
Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO