Web security - payload

Payload —Payload

summary ： stay Web Safe learning process , It's usually mentioned that Payload The word , But what does this mean in security .

brief introduction ：

Payload It can be directly translated into " Payload ", Its meaning can be understood as " Valid data ".

Payload Understand and summarize ：

Analysis from the perspective of agreement ： A complete data transmission process usually consists of three parts , Data headers + Raw data （ Data frame or packet + Check tail ）, The data header and check tail are for the accurate transmission of original data , Then the original data is what we usually say Payload.
IPV4 Example of protocol packet structure ：

BurpSuite in Payload give an example ：
DVWA In the shooting range Brute Force modular , stay BurpSuite Pick up the agent , Send to the attack module

BurpSuite Marked in is HTTP The original data transmitted by the Protocol , That's what they say Payload, We can use dictionaries to construct Payload Data to achieve violent cracking attacks

summary ：

1,Payload Is the valid data in the transmission packet
2,Payload Usually modifiable , It can be used for vulnerability exploitation and detection