Please enter your name to register
Now the same with POST instead of GET:
Please enter your name to register
Try out the buttons above, and look at the generated web
traffic in the OWASP ZAP proxy.
You should see GET and POST requests to www.w3schools.com.
Here you should see that for the GET requests the two parameters, firstname and lastname end up in the URL, whereas with the POST request they do not, but are in the body.
Hello John, please also enter your last name to register:
Now the same, but with a POST field:
Hello John, please also enter your last name to register:
Look at the HTTP trafic to see which paramters is send at the first name, and look at the HTML source of this webpage to see where the hidden parameter comes from.