Burp Suite-s me

Photo by Growtika on Unsplash

Burp Suite-s me

Bismillah

In today's work, I learned how to use the various Burp Suite Tools.

What is Burp Suite?

Burp suite is a software platform that contains multiple tools that are helpful in vulnerability scanning, penetration testing, understanding, and securing a web application.

Basic Tools in the Burp Suite Community Edition

handheld tool lot

This included the following tools:

  • Proxy: simply put, it helps with capturing and modifying requests sneaky is making to a website or app he's hacking.

  • Repeater: the repeater is designed to modify a request by giving you the chance to run the request multiple times.

  • Intruder: this is where sneaky would insert payloads to positions such as "username", "passwords", "cookies", and more

  • Sequencer: this one is more useful for pen-testing than it is for Bug bounty(I'll update the info once I get to learn more about it.

  • Comparer: as the name suggests, this can be a great tool to compare pieces of code, requests, responses, or more to each other. These will be compared either as words or bytes.

  • Encoder: You can use this to either encode, decode or hash pieces of data you'd like to look deeper into.

  • Extender: a feature that allows you to add either your user-created tools to burp or those created by others that you need.

Practical Stuff Coming Soon, Stay Tuned.