在BurpSuite中测试了一下zealer.com,点击“登陆”按钮的时候捕获了一个请求。
GET /login/?from=index&redirect=http%3A%2F%2Fwww.zealer.com%2F HTTP/1.1
Host: www.zealer.com
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Referer: http://www.zealer.com/
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.8,en;q=0.6,mn;q=0.4
Cookie: pgv_pvi=9325083648; z_q1=m26rgqa2032roh4iu5am92l9v6; pgv_si=s848458752; YII_CSRF_TOKEN=8b2c64b62bcc16de8b86ab9c9b83f800b673c4e1; Hm_lvt_93a776aa5a5632380561feba017dd90f=1504507617,1504512480,1504512480,1504513095; Hm_lpvt_93a776aa5a5632380561feba017dd90f=1504515518; _ga=GA1.2.1813313665.1504506112; _gid=GA1.2.443377867.1504506112; _gat=1
If-Modified-Since: Mon, 04 Sep 2017 08:50:00 GMT
Connection: close
注意看Cookie里面有一个YII_CSRF_TOKEN字段,到网上查了一下YII,发现是一个PHP框架,那么zealer.com可能是用php开发的。用YII和zealer.com为关键字搜索发现了一个zealer的招聘需求,如此就验证了我们的猜测
截图 2017-09-04 17.39.23.png
网友评论