Prompting the Assistant to Explain Requests

⚡PRO FEATURE

The Assistant are only available to users with Individual or Team tier subscriptions.

WARNING

Submitted data is sent to the LLM's third-party provider (OpenAI) and can be stored for up to 30 days. Due to this, anonymize sensitive data when using the Assistant. Sensitive data may be unintentionally submitted when using the Assistant context menu options. Before using any context menu option, manually review all content to ensure no sensitive data is included. For more information, review:

• OpenAI's privacy policy.
• Caido's privacy policy.

To prompt the Assistant to explain a HTTP request in natural language, right-click within a request pane to open the context menu, hover your mouse cursor over Assistant, and select Explain.

Or, submit a prompt directly in the Send a message input field along with the request:

Explain the operation being performed by the endpoint in this request:
POST /change/email HTTP/1.1
Host: www.example.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, zstd
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
Priority: u=0, i
Pragma: no-cache
Cache-Control: no-cache
Cookie: session_id=123ABC321XYZ
Content-Type: application/x-www-form-urlencoded
Content-Length: 23

email=attacker@caido.io

TIP

Once the Assistant has the context of a request, you can ask for possible attack vectors.