Miscellaneous security testing tutorials with Burp Suite
Other tutorials can be found at the following links:
- Security Ninja's tutorials on Burp Suite are very comprehensive and easy to follow, http://www.securityninja.co.uk/?s=Burp+Suite.
- The Automating SQL Injection with Burp, Sqlmap, and GDS Burp API article, http://milo2012.wordpress.com/2012/06/26/automating-sql-injection-with-burp-sqlmap-and-gds-burp-api/. sqlmap is the go-to tool for detecting and exploiting SQL injection. It is free and open source, and using Burp Suite with sqlmap is a brilliant idea. Find possible SQL injections with Burp Suite, and then pass them on to sqlmap for further analysis and attack.
- The Adding Anti-CSRF Support to Burp Suite Intruder blog post, http://blog.spiderlabs.com/2012/09/adding-anti-csrf-support-to-burp-suite-intruder.html ...
Get Burp Suite Essentials now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.