Instant Burp Suite Starter [Instant]


This title is available as an eBook only
Instant Burp Suite Starter [Instant]
eBook: $14.99
Formats: PDF, PacktLib, ePub and Mobi formats
$12.74
save 15%!
Print & eBook also available on:
Learn in an Instant - Short, Fast, Focused
Overview
Table of Contents
Author
Support
Sample Chapters
  • Learn something new in an Instant! A short, fast, focused guide delivering immediate results.
  • Intercept HTTP/S requests with Burp Proxy
  • Tamper and analyze responses
  • Perform enumeration using the Burp Suite Map and Spider
  • Launch an automatic scan with Burp Scanner
  • Automate attacks using Burp Intruder

Book Details

Language : English
eBook : 70 pages
Release Date : January 2013
ISBN : 1849695180
ISBN 13 : 9781849695183
Author(s) : Luca Carettoni
Topics and Technologies : All Books, Instant, Networking and Servers, Web Development

Table of Contents

Instant Burp Suite Starter
  • Instant Burp Suite Starter
    • So, what is Burp Suite?
    • Installation
      • Step 1 – What do I need?
      • Step 2 – Downloading Burp Suite
      • Step 3 – Launching Burp Suite
        • Windows
        • Linux and Mac OS X
      • Step 4 – Verify Burp Proxy configuration
      • Step 5 – Configuring the browser
        • Mozilla Firefox
        • Microsoft Internet Explorer
      • And that's it!!
        • One more thing...
    • Quick start – Using Burp Proxy
      • Step 1 – Intercepting web requests
      • Step 2 – Inspecting web requests
      • Step 3 – Tampering web requests
      • Advanced features
        • Match and replace
        • HTML modification
    • Top 8 features you need to know about
      • 1 – Using the target site map functionality
      • 2 – Crawling a web application with Burp Spider
      • 3 – Launching an automatic scan with Burp Scanner
      • 4 – Automating customized attacks with Burp Intruder
        • Configuring the target
        • Configuring the attack type and positions
        • Configuring payloads
        • Additional Burp Intruder options
        • Launching an attack
      • 5 – Manipulating and iterating web requests with Burp Repeater
      • 6 – Analysing application data randomness with Burp Sequencer
      • 7 – Decoding and encoding data with Burp Decoder
      • 8 – Comparing site maps
    • People and places you should get to know
      • Official sites
      • Articles and tutorials
      • Community
      • Blog
      • Twitter

Luca Carettoni

Luca Carettoni is a security researcher with over 8 years’ experience in the application security field. His professional expertise includes black box testing, web application security, vulnerability research, and source code analysis. He is the Director of Information Security at Addepar, a company that is reinventing the infrastructure which powers global wealth management. Prior to Addepar, Luca worked at Matasano Security as a senior security consultant, performing vulnerability research activities on a wide range of systems, from web applications to stand-alone software and mobile applications. He also worked at The Royal Bank of Scotland where he performed security audits against worldwide online banking systems. In the past few years, Luca has been an active participant in the security community and a member of the Open Web Application Security Project (OWASP). Luca holds a Master's Degree in Computer Engineering from the Politecnico di Milano University.
Sorry, we don't have any reviews for this title yet.

Submit Errata

Please let us know if you have found any errors not listed on this list by completing our errata submission form. Our editors will check them and add them to this list. Thank you.

Sorry, there are currently no downloads available for this title.

Frequently bought together

Instant Burp Suite Starter [Instant] +    Nmap 6: Network Exploration and Security Auditing Cookbook =
50% Off
the second eBook
Price for both: £14.44

Buy both these recommended eBooks together and get 50% off the cheapest eBook.

What you will learn from this book

  • Set up your browser and Burp Suite
  • Intercepting, inspecting, and modifying web traffic between your client and the server
  • Using the Burp Target site map functionality
  • Crawling a web application and discovering resources with Burp Spider
  • Launching a scan with Burp Scanner to automatically detect security vulnerabilities
  • Automating customized attacks with Burp Intruder
  • Manipulating and iterating web requests with Burp Repeater
  • Analyzing the randomness of application data with Burp Sequencer
  • Decoding and encoding data in multiple formats with Burp Decoder
  • Comparing site maps in order to detect authorization bugs

In Detail

Web security is more important than ever for protecting the confidentiality, integrity, and availability of web applications. Although there is no silver bullet tool, using the right instruments does play a critical role in any security initiative. Burp Suite is a well-known integrated platform for performing security testing and is considered the de-facto standard for testing web applications.

"Instant Burp Suite Starter" is a practical, hands-on guide that can help you take advantage of the Burp Suite, a powerful web security tool. Thanks to its step-by-step examples, you will quickly learn how to efficiently discover web application vulnerabilities such as SQL Injection and Cross-site scripting.

From intercepting your first web request, you will soon be able to inspect parameters, perform tampering, and eventually discover security flaws.

You will also learn how to use the numerous tools available in Burp Suite in order to enumerate all web application entry points, perform scans, and automatically detect security flaws. Then test your sites with automated customized attacks, analyze the randomness of application data, decode data in multiple formats, and much more.

"Instant Burp Suite Starter" will teach you everything you need to know to get started with testing your first application using Burp Suite. You will learn helpful tips and tricks on how to discover potentially destructive security flaws in your application.

Approach

Get to grips with a new technology, understand what it is and what it can do for you, and then get to work with the most important features and tasks. This starter guide will lead you through the field of application security with everyday examples explained. Build up your skills and your defenses with this hands-on tutorial.

Who this book is for

If you are an application developer with a focus on security then this practical guide is for you. Even with basic knowledge of security you will be able to develop your expertise and make your applications bulletproof.

Code Download and Errata
Packt Anytime, Anywhere
Register Books
Print Upgrades
eBook Downloads
Video Support
Contact Us
Awards Voting Nominations Previous Winners
Judges Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software
Resources
Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software