Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Not getting X-Cache:Hit from the server for lab "Web cache poisoning with an unkeyed header"

Aakash | Last updated: Oct 19, 2024 05:24PM UTC

I am sending the first request for the / URI and getting X-Cache: miss in its response. Also, replay it and again getting the X-Cache: miss in the response. Tried multiple times as well. Can you please help me in understanding why response is not getting cached and why we are not getting the cache response for request to /? Below request we are sending: GET / HTTP/2 Host: 0ab200d4035ad73a82e6dd5900110058.web-security-academy.net Accept-Language: en-US,en;q=0.9 Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.6668.71 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Sec-Ch-Ua: "Chromium";v="129", "Not=A?Brand";v="8" Sec-Ch-Ua-Mobile: ?0 Sec-Ch-Ua-Platform: "Windows" Referer: https://portswigger.net/ Accept-Encoding: gzip, deflate, br Priority: u=0, i Below is the response headers we are getting again and again without X-Cache: hit HTTP/2 200 OK Content-Type: text/html; charset=utf-8 Set-Cookie: session=RC7XrbAUEY9DLl2kcDeH7kyWWKSjd9Kb; Secure; HttpOnly; SameSite=None X-Frame-Options: SAMEORIGIN Cache-Control: max-age=30 Age: 0 X-Cache: miss Content-Length: 10965

Ben, PortSwigger Agent | Last updated: Oct 21, 2024 09:58AM UTC