O'Reilly logo

Burp Suite Cookbook by Sunny Wear

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

How to do it...

  1. From the OWASP Mutilliae II menu, select Login by navigating to OWASP 2013 | A3 - Cross Site Scripting (XSS) | Persistent (First Order) | Add to your blog:

  1. Place some verbiage into the text area. Before clicking the Save Blog Entry button, let's try a payload with the entry:

  1. Switch to the Burp Proxy | Intercept tab. Turn Interceptor on with the button Intercept is on.
  2. While Proxy | Interceptor has the request paused, insert the new payload of <script>alert(1);</script> immediately following the verbiage you added to the ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required