Anirban
Aug 13, 2022Nimbostratus
Payload string based persistence
1) CLient sent HTTP request with user id and password 2) Server responds with SESSIONID in XML file after successfull login. 3) CLient sent HTTP request with SESSIONID in xml file ecery time 4) Se...
- Aug 15, 2022
Hi Anirban, you will very likely have to start collecting the data and lookup the collected payload in the context of the HTTP_RESPONSE_DATA event.
There is a how-to in the event man page for HTTP_RESPONSE_DATA.
Please make also sure to remove the Accept-Encoding header in the context of HTTP_REQUEST. Header manipulation is described here: HTTP::header. By removing the Accept-Encoding header you prevent the server from sending compressed data.
Please check, if the payload send by the client has the Expect header (Expect: 100). Let me know, if this is the case. I had a similar issue a while ago and may have a solution based on collecting CLIENT_DATA or CLIENTSSL_DATA.