BURPSUITE - Gopinath2014/cyber-security-training GitHub Wiki

BURPSUITE

#DAY 2 WHAT IS BURPSUITE Burp Suite is an integrated platform/graphical tool for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting security vulnerabilities.

#PROCEDURE

1 - Search xss payload in github 2 - Copy the code open terminal git clone 3 - Start burpsuite in terminal 4 - Go to proxy tab < Intercept on<open browser < web page(try to login) 5 - In proxy right click < to intruder < highlight password (add$) 6 - Start attack