BurpSuite.guide
@BurpSuiteGuide
Your guide to all things Burp Suite! Subscribe to my newsletter: http://newsletter.burpsuite.guide
You might like
What's happening in the Burp-verse - Issue #13 📰 is out! #burpsuite #newsletter newsletter.burpsuite.guide/archive/1223854
Introducing the brand new flavour of Burp Suite - completely free, and available for a CI/CD pipeline near you … #cicd #dast portswigger.net/blog/free-dast…
HTTP/3 connection contamination: an upcoming threat - by @albinowax portswigger.net/research/http-…
We released a @Burp_Suite extension to scan for CVE-2022-42889, aka. Text4Shell: blog.silentsignal.eu/2022/10/18/our…
That's what an expert user looks like! 🧠 Intruder + Hackvertor + Stepper, by @irsdl github.com/CoreyD97/Stepp…
Burp Suite 2022.9.1 released to the Early Adopter channel. Includes an upgrade to Burp's browser and various bug fixes. portswigger.net/burp/releases/…
Last week I published a number of novel CL.0 desync techniques, alongside advice on tuning your research to outwit the competition. Next week, a way to turn a 'medium' severity flaw into a crit with a $12k case study. And no it's not XSS :) portswigger.net/research/how-t…
Hope you enjoyed the talk, thanks for coming! Always a pleasure to present to a @defcon crowd. Time for a couple drinks, then on to the next research for me. You can find the sides&whitepaper here: portswigger.net/research/brows…
Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling by @albinowax portswigger.net/research/brows…
Burp Suite 2022.8.1 released to the Stable channel, with new scan checks based on the Browser-Powered Desync Attacks presented by @albinowax at Black Hat 2022, as well as new Repeater capabilities that let you test for these vulnerabilities manually. portswigger.net/burp/releases/…
We've prototyped a new feature in repeater where we are diffing the last response with the current and showing different colours depending on what changes. Please check it out we'd love your feedback! portswigger.net/bappstore/902e…
This is a Burp extension, and it's only a prototype currently - check it out and feel free to share your thoughts with us!
We've prototyped a new feature in repeater where we are diffing the last response with the current and showing different colours depending on what changes. Please check it out we'd love your feedback! portswigger.net/bappstore/902e…
Burp Suite 2022.7.1 released to the Stable channel. You can now configure tab-specific options for Repeater and automatically detect client-side prototype pollution sources using Burp Scanner. portswigger.net/burp/releases/…
It's worth knowing @Burp_Suite project files are memory mapped. This means they reduce RAM consumption, but don't support garbage collection (yet) so deleting requests frees up RAM for Burp, but doesn't reduce file size. For long-term storage, use 'Project->Save copy' then zip.
For this week's "There's a BApp for that", @Nu11ifidian shows how to use Stepper, a natural evolution of Burp Suite's Repeater tool to help automate “second-order” attacks. hackredcon.com/post/there-s-a… #burpsuite #pentester #cybersecurity #infosec #cybersecuritytips #HackRedCon
How we tune @Burp_Suite's performance: - "Proxy->Options->Misc->Don't send items to Proxy history or live tasks, if out of scope" - Enable "Project Options->HTTP->{keep-alive,HTTP/2}" - Disable live-tasks & extensions
Hey, Folks! Check this weekly series with Zachary Stashis called "There's a BApp for that". It shows a technical how-to-use of certain Burp Suite Plugins to help with Penetration Testing and Bug hunting. hackredcon.com/there-s-a-bapp… #cybersecurity #pentesting #HackRedCon
#BurpSuite Sharpener extension has been updated to version 1.9 to remember last size & position of Burp Suite as well as detecting whether it is off-screen! It also includes a number of important bug fixes: github.com/mdsecresearch/… Hopefully @BApp_Store will update it soon too.
United States Trends
- 1. #FinallyOverIt 5,442 posts
- 2. #TalusLabs N/A
- 3. Summer Walker 17.1K posts
- 4. 5sos 21.6K posts
- 5. #criticalrolespoilers 4,108 posts
- 6. Justin Fields 10K posts
- 7. Jets 68.5K posts
- 8. #GOAI 3,026 posts
- 9. Patriots 151K posts
- 10. Go Girl 25.7K posts
- 11. #BlackOps7 15.5K posts
- 12. Wale 32.8K posts
- 13. Jalen Johnson 8,830 posts
- 14. 1-800 Heartbreak 1,401 posts
- 15. Domain For Sale 12.5K posts
- 16. Drake Maye 21.2K posts
- 17. Judge 204K posts
- 18. Bihar 243K posts
- 19. Robbed You 4,056 posts
- 20. Disc 2 N/A
You might like
-
Mastering Burp Suite Pro
@MasteringBurp -
ProjectDiscovery
@pdiscoveryio -
Assetnote
@assetnote -
XSS Payloads
@XssPayloads -
Burp Suite
@Burp_Suite -
Bug Bounty Reports Explained
@gregxsunday -
Rana Khalil 🇵🇸
@rana__khalil -
BApp Store
@BApp_Store -
InfoSec Community
@InfoSecComm -
payloadartist
@payloadartist -
YesWeHack ⠵
@yeswehack -
pikpikcu
@pikpikcu -
Nicolas Grégoire
@Agarri_FR -
Nagli
@galnagli -
Yassine Aboukir 🐐
@Yassineaboukir
Something went wrong.
Something went wrong.