O'Reilly logo

Burp Suite Cookbook by Sunny Wear

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

How to do it...

  1. From the OWASP Mutilliae II menu, select Login by navigating to OWASP 2013 | A1-Injection (SQL) | SQLi – Bypass Authentication | Login:

  1. At the Login screen, place invalid credentials into the username and password text boxes. For example, username is tester and password is tester. Before clicking the Login button, let's turn on Proxy | Interceptor.
  2. Switch to the Burp Proxy | Intercept tab. Turn the Interceptor on by toggling to Intercept is on.
  1. While Proxy | Interceptor has the request paused, insert the new payload of ' or 1=1--<space> within the username parameter and click the Login button:
  1. Click the Forward button. Turn ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required