Forum Discussion

Icon for Altocumulus rank

Altocumulus

Mar 12, 2021

configure brute force attack whit payload http - asm

Hello, dear, I am trying to implement the brute force attack, but it turns out that when I configure a login page it asks me to configure values of the html form and it asks me for the user or password parameter that is used to validate the login, but it turns out that those parameters They are not sent in an html form, or json or anything, they are sent in the payload, so I don't know how to extract them much less send them as the validators of the login page

any ideas?

application delivery

ASM Advanced WAF

Daniel_Wolf
MVP
Mar 12, 2021
Hi Omar,

switch "Authentication Type" dropdown to JSON / AJAX Request and start from here:
Manual Chapter : Creating Login Pages for Secure Application Access

KR
Daniel

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming