How to do it...

  1. From the OWASP Mutilliae II menu, select Login by navigating to OWASP 2013 | A3 - Cross Site Scripting (XSS) | Reflected (First Order) | Pen Test Tool Lookup:

  1. Select a tool from the drop-down listing and click the Lookup Tool button. Any value from the drop-down list will work for this recipe:

  1. Switch to Burp Proxy | HTTP history and find the HTTP message you just created by selecting the lookup tool. Note that in the request is a parameter called ToolID. In the following example, the value is 16:
  1. Flip over to the Response ...

Get Burp Suite Cookbook now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.