Exploring HTTP Status Codes | TKM Lab

Durre ShaffaDurre Shaffa
2 min read

Table of contents

Introduction

As part of my PreSecurity learning path on TryHackMe, I recently completed a practical exercise designed to enhance my understanding of HTTP status codes. In this activity, I examined how different web pages respond to specific types of requests, particularly when an error occurs. Specifically, I encountered three important HTTP status codes: 403, 404, and 503.

Why HTTP Status Codes Matter

HTTP status codes are crucial to the functioning of the web. Whenever you visit a website, your browser sends a request to the server. The server then responds with a status code that tells your browser what happened, whether the request was successful or if there was an error.

The Activity: Practical Exploration

The TryHackMe lab provided a mock webpage designed for experimentation. Here's what I observed when I visited specific URLs:

403 – Forbidden

When I tried to access a restricted page without the proper permissions, I received a 403 Forbidden error. This means the server understood my request but refused to authorize it. This is often due to permission settings or access control restrictions.

404 – Not Found

Visiting a non-existent URL resulted in a 404 Not Found error. This is one of the most common errors on the internet and simply means the requested resource could not be located on the server.

503 – Service Unavailable

In another test, I triggered a 503 Service Unavailable error. This status code appears when a server is temporarily unable to handle the request, usually due to maintenance or overload.

What I Learned

This activity gave me a clearer understanding of how servers respond to different types of requests and errors. These codes are more than just error messages—they are tools that help developers and security professionals troubleshoot and improve systems.

Key takeaways:

  • 403 = Access denied

  • 404 = Page not found

  • 503 = Server temporarily unavailable

Understanding these responses is critical for diagnosing web issues and improving user experience and security.

Conclusion

This hands-on experience was a simple but powerful way to reinforce my understanding of web communication protocols. HTTP status codes are everywhere, and knowing how to read them is a foundational skill in both IT and cybersecurity.

0
Subscribe to my newsletter

Read articles from Durre Shaffa directly inside your inbox. Subscribe to the newsletter, and don't miss out.

#cybersecuritycybersecurityhackingtryhackmehttp

Written by

Durre Shaffa
Durre Shaffa