Preparing Identifier

Preparing Identifier for K2HackBot Application

Sample Example

Let's suppose Your login page looks like this

Collect unique id of input fields on login page like this

Now using these unique ids for input field and submit button, prepare a JSON like this.

{"username": {"identification": "type=\"text\"", "value": "john@acme.inc"}, "password": {"identification": "type=\"password\"", "value": "123456"}, "submit": {"identification": "type=\"submit\"", "value": "Login"}}

Now our final k2hackbot command will be

k2hackbot scan-web-application --applicationUrl "http://[ip]:[port]/app/login" -isauthreq true --applicationIdentifier "{\"pid\":23,\"containerid\":\"de63415703d8\"}" --applicationLoginIdentifier "{\"username\": {\"identification\": \"type=\\\"text\\\"\", \"value\": \"john@acme.inc\"}, \"password\": {\"identification\": \"type=\\\"password\\\"\", \"value\": \"123456\"}, \"submit\": {\"identification\": \"type=\\\"submit\\\"\", \"value\": \"Login\"}}"

PreviousCrawl Web Application NextCVE Scanning

Last updated 4 years ago

Was this helpful?