Activating Burp Suite
What makes Burp Suite so valuable to us as a primary tool is that we can quickly move from the recon phase and into the exploitation phase of the testing, allowing us to validate our findings without having to manually coordinate with an outside tool. In this section, we'll see how Burp's Scanner, Intruder, Repeater, and Sequencer can help dig into the working list of vulnerabilities and help us scope the damage (or potential damage) to our targets. The problem with some pen testing methodologies is that those developing them are under the impression that more tools indicate better results. Peers of mine who have years of experience in smaller firms or teams, however, find that they see greater coverage, more coherent ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access