Introduction to Burp Suite

WHAT IS BURP SUITE?

TOOLS OF BURP SUITE

SPIDER:

SEQUENCER:

EXTENDER:

DECODER:

REPEATER:

  • Checking to see if the user-supplied values are being checked.
  • How successfully is it being done if user-supplied values are being verified?
  • What values does the server expect in an input parameter/request header?
  • What happens if the server encounters unexpected values?
  • Is the server doing input sanitation?
  • How thoroughly does the server sanitise the data provided by the user?
  • What sanitation method does the server employ?
  • Which of the cookies on your computer is the session cookie?
  • How is CSRF protection done, and is it possible to go around it?

CONCLUSION

--

--

India’s first consolidated Bug Bounty Platform’s technical blog by Aditya Arun Iyer

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
BugBase - The BugGyaan Blog

India’s first consolidated Bug Bounty Platform’s technical blog by Aditya Arun Iyer