Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
L
L
LemanRass212016-06-23 01:06:44
JavaScript
LemanRass21, 2016-06-23 01:06:44

Where to look for data that is stored somewhere in the browser? And how to look for them?

I noticed on one site that if you use its functionality from one browser, after using it you get a ban for 2 minutes (it seems to be done so that the server does not load), but if after that you repeat the procedure from another browser, you will be able to bypass this ban and use the functionality again . But the ban is still issued after each use of the site's functionality, but each browser has its own time (countdown).
I would like to know how to conduct research in this area in search of either cookies in which it can be stored and in what form for substitution, or in localStorage, which I generally only found out about today, or somewhere else. In general, my goal is to remove this race restriction, it is still stored on the client.
PS After restarting the browser, the countdown still continues.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
E
Egor Nevedov, 2016-06-23
@LemanRass21

Most likely, your case is simple, as Aleksey has already described.
Your browser in each request passes the User-agent field - a string describing the browser, usually unique for each browser, and, of course, your IP. The server remembers you in the session conditionally as

"1.1.1.1:Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B179 Safari/7534.48.3"

Change the browser OR IP - and you will no longer be recognized (if this is your case).
Of the other methods, there are:
cookies, localstorage - you are already aware of them.
Of the more cunning - javascript can use cache, browser features, installed add-ons, etc. - there are many options here.
There are also flash cookies, and the rarest, probably java.
Read about evercookie
To visually delve into the request-response, use Firebug.

Report
R
Rou1997, 2016-06-23
@Rou1997

To search, it is first desirable to know what to search, that is, what kind of data stored in the browser is sent to the server, for this use Fiddler, Wireshark, etc. sniffers.

Report
A
Alexey, 2016-06-23
@alsopub

Ban is issued either by cookies or by IP + USER_AGENT.
I am leaning towards the second option.
It is easy to check - you got a ban, cleared the cookies in the browser, if the ban has disappeared - it is based on cookies.
If not disappeared - to IP + USER_AGENT.

Similar questions
V
Vasiliy2015-03-22 17:23:49
JSLint good or bad!??? 3Reply
W
whatever732015-03-29 17:36:06
How to find all cycles in undirected graph by adjacency matrix? 2Reply
T
Timofey2015-04-01 11:13:34
sails.js impressions? 5Reply
A
AlexStartsev2017-04-13 12:46:13
What are the current TODO plugins for Sublime Text 3? 3Reply
C
civdef2019-09-18 17:04:42
Port forwarding does not work when a white ip is provided by the provider's NAT on the external interface, why? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question