What do you think?
Rate this book
Burp Suite Essentials
Discover the secrets of web application pentesting using Burp Suite, the best tool for the jobAbout This BookAcquire and master the skills of a professional Burp user to perform all kinds of security tests on your web applicationsIntegrate and use different components of Burp Suite together such as Proxy, Intruder, Scanner, and RepeaterStep-by-step instructions covering the wide range of features of Burp Suite including tips and tricks to use them effectivelyWho This Book Is ForIf you are interested in learning how to test web applications and the web part of mobile applications using Burp, then this is the book for you. It is specifically designed to meet your needs if you have basic experience in using Burp and are now aiming to become a professional Burp user.
What You Will LearnGet to grips with the user-driven workflow so that you can test any kind of web applicationGet acquainted with the use of each of the components in Burp—Target, Proxy, Intruder, Scanner, and RepeaterSearch, extract, and match patterns for requests and responses using response extraction rules, URL-matching rules, and Grep - MatchSet up and test SSL-enabled applications without any errorsIntercept SSL traffic from all kinds of web and mobile applicationsDevelop customized Burp Extensions to suit your needs using Java, Python, and RubyIn DetailThis book aims to impart the skills of a professional Burp user to empower you to successfully perform various kinds of tests on any web application of your choice. It begins by acquainting you with Burp Suite on various operating systems and showing you how to customize the settings for maximum performance. You will then get to grips with SSH port forwarding and SOCKS-based proxies. You will also get hands-on experience in leveraging the features of Burp tools such as Target, Proxy, Intruder, Scanner, Repeater, Spider, Sequencer, Decoder, and more. You will then move on to searching, extracting, and matching patterns for requests and responses, and you will learn how to work with upstream proxies and SSL certificates. Next, you will dive into the world of Burp Extensions and also learn how to write simple extensions of your own in Java, Python, and Ruby.
As a professional tester, you will need to be able to report your work, safeguard it, and sometimes even extend the tools that you are using; you will learn how to do all this in the concluding chapters of this book.
What You Will LearnGet to grips with the user-driven workflow so that you can test any kind of web applicationGet acquainted with the use of each of the components in Burp—Target, Proxy, Intruder, Scanner, and RepeaterSearch, extract, and match patterns for requests and responses using response extraction rules, URL-matching rules, and Grep - MatchSet up and test SSL-enabled applications without any errorsIntercept SSL traffic from all kinds of web and mobile applicationsDevelop customized Burp Extensions to suit your needs using Java, Python, and RubyIn DetailThis book aims to impart the skills of a professional Burp user to empower you to successfully perform various kinds of tests on any web application of your choice. It begins by acquainting you with Burp Suite on various operating systems and showing you how to customize the settings for maximum performance. You will then get to grips with SSH port forwarding and SOCKS-based proxies. You will also get hands-on experience in leveraging the features of Burp tools such as Target, Proxy, Intruder, Scanner, Repeater, Spider, Sequencer, Decoder, and more. You will then move on to searching, extracting, and matching patterns for requests and responses, and you will learn how to work with upstream proxies and SSL certificates. Next, you will dive into the world of Burp Extensions and also learn how to write simple extensions of your own in Java, Python, and Ruby.
As a professional tester, you will need to be able to report your work, safeguard it, and sometimes even extend the tools that you are using; you will learn how to do all this in the concluding chapters of this book.
- GenresHackers
211 pages, Kindle Edition
First published November 28, 2014
16 people are currently reading
28 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 of 1 review
March 17, 2015
I have not used Burp Suite much as I never required it for my job ... but I wanted to master the tool and this book was my best companion...extremely well written and the concepts are very well explained...recommended for anyone who wants to be a professional burp user..
Displaying 1 of 1 review