Technical Forum
Ask questions. Discover Answers.
cancel
Showing results for 
Search instead for 
Did you mean: 
Custom Alert Banner

configure brute force attack whit payload http - asm

omar_padilla
Altocumulus
Altocumulus

Hello, dear, I am trying to implement the brute force attack, but it turns out that when I configure a login page it asks me to configure values of the html form and it asks me for the user or password parameter that is used to validate the login, but it turns out that those parameters They are not sent in an html form, or json or anything, they are sent in the payload, so I don't know how to extract them much less send them as the validators of the login page

any ideas?

 

 

0691T00000C1aDGQAZ.png

0691T00000C1aDHQAZ.png

1 REPLY 1

Hi Omar,

 

switch "Authentication Type" dropdown to JSON / AJAX Request and start from here:

Manual Chapter : Creating Login Pages for Secure Application Access

 

KR

Daniel