Burp Suite (Community)

Burp suite is a framework designed to serve as a comprehensive solution for conducting web application penetration testing.

Features of Burp Suite

Target

Site map: provides an overview of the directories
Scope: allows to define the scope of testing, such as the hosts and URLs
Issues definitions: details of the common web vulnerabilities and attacks

Proxy

Intercept
HTTP history
WebSockets history
Match and replace

Intruder

Attack methods:

a) Sniper

b) Battering ram

c) Pitchfork

d) Cluster bomb

Repeater

Allows to modify and resend intercepted requests. Modification of various parameters are allowed, such as: method, path, query and body parameters, cookies and headers.

Burp Suite toolsBurp_Suite

PreviousWeb fuzzing NextInformation gathering/reconnaissance

Last updated 1 month ago