Demo Application
Open the Demo Application
Section titled “Open the Demo Application”Navigate to https://botdemo.sales-demo.f5demos.com. This is a Juice Shop e-commerce application with product listings, user accounts, and a checkout flow.
Review Pages with Form Inputs
Section titled “Review Pages with Form Inputs”The login page is the primary page used in this demo:
-
Navigate to the Login page (
/#/login)
CSD auto-classifies the email and password fields as sensitive, making this page ideal for demonstrating formjacking detection. The Trigger Detection section uses this page.
The application has additional pages with form inputs that CSD monitors. Each page below collects data that a formjacking script could exfiltrate:
| Page | Route | Sensitive Fields | Data Category |
|---|---|---|---|
| Registration | /#/register | email, password, security question & answer | Credentials, account recovery |
| Forgot Password | /#/forgot-password | email, security answer, new password | Credentials |
| Payment | /#/payment/shop | cardholder name, card number, expiry | Financial |
| Address | /#/address/create | name, mobile number, address, city, zip, country | PII |
| Contact | /#/contact | author, comment | PII |
| Complaint | /#/complain | email, message, file upload | PII |
| Change Password | /#/privacy-security/change-password | current password, new password | Credentials |
CSD monitors all pages where JavaScript injection is enabled — not just those listed above.