I found it interesting,
As far as to my knowledge i had heard there were only 8 http methods ,
but after reading this page (pardon me i am beginner to this web-sec )
I found it really interesting,they had mentioned about the usage of arbitrary http methods ,so it made interested ,
here are my questions:
1) how can i MANUALLY find , what are the http methods are being supported by a web-server?
I tried net catting to the ports on some sites,but i didnt got the list of methods being supported by the web-servers .
how can i find this manually? because i do know that tools like accunteix and some other tools can do it,but i do want to do it manually so that i can get some knowledge about how it is being done ?
2)can you guys please explain me from your experience about
Arbitrary HTTP Methods ,i tought there were only 8 methods in http.i never heard about these,so i tought it would be nice to ask you guys..
3)is it possible to compromise a web-server with a UNKNOWN HTTP method or using a HTTP method other than the 8 traditional methods ?
4)first how a web-server supports the usage of a http methods other than the specified 8 methods in the rfc ?can any 1 explain me ?
5)Also i would like to know,how a web-site is explicitly checking for GET or POST methods?
Also how can we identify this manually?
Sorry guys,i think i had asked too much of questions,but as i don't have deep knowledge about these things,i tought it would be better to ask here, hope my doubts will be get cleared...