How it works...
If we are testing a web application that requires a username and password to perform any task, we need to evaluate how an attacker could discover valid usernames and passwords. The slightest difference in responses to valid and invalid users in the login, registration, and password recovery pages will let us find the first piece of information.
Analyzing the differences in responses to similar requests is a task we will always be performing as penetration testers. Here, we used Burp Suite's tools, such as a proxy to record the original request, and Intruder to repeat it many times with variations in the value of a variable (username). Intruder also allowed us to automatically search for a string and indicated to us in which ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access