Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
This group should mostly be dealing with how web applications enable networking security issues that are otherwise not there. Everything is being tunneled over port 80 now so what does that enable and how do we fix it? 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Logging POST requests.
Posted by: clooless
Date: November 02, 2008 02:49AM

Just looking for a way of logging typical form POST requests such as:-
<form name ="logonForm" method="post" onsubmit="return OnSignOn(this)" action="https://.../authenticate.do>
Preferably without using PHP, but javascript/ajax. All same domain stuff, just logging to a file, and hopefully forwarding the requests on.

Thnks.

Options: ReplyQuote
Re: Logging POST requests.
Posted by: Anonymous User
Date: November 03, 2008 08:08AM

PHPIDS wouldn't log everything but the attacks - maybe this is what you need already?

Options: ReplyQuote
Re: Logging POST requests.
Posted by: Matt Presson
Date: November 03, 2008 10:11AM

If your .do example is any indication, then you are using Struts, and as such Java.

You could use a Servlet Filter to intercept all requests and then log the post requests, along with params and such, manually. As far as I know ,there is not really any other solution that will do this in an automated fashion (although I could be wrong).

-----------------------------------------------------------------------
(ú=(&#952;='',[µ=!(&#934;=!&#952;+{})+&#952;,&#920;=&#934;[ø=+!&#952;]+&#934;[+&#952;],&#297;=µ[ø],Ø=µ[º=ø+++ø],Ç=&#934;[º+ø],à=ú[&#934;[º+º]+&#934;[+&#952;]+Ç+&#297;]][Ø+Ç+&#920;])())[&#297;+à('&#149;êí')](Ç+à('Á«)'))

Options: ReplyQuote


Sorry, only registered users may post in this forum.