Screencast: Burp Suite tutorial highlights Burp Proxy, other key tools

When penetration testers finish testing Web applications, they are often asked questions like, "How did you find that vulnerability? How can I find it? What can I do to detect these vulnerabilities?" This is where the powerful pen testing tool Burp Suite proves useful.

In this screencast, penetration tester Mike McLaughlin offers a brief Burp Suite tutorial that highlights the key features available in both the free and paid versions of the tool. He points to Burp Proxy , which works in a similar fashion to a man-in-middle-attack, as the most powerful feature. Burp Proxy allows for easier manipulation of the data flowing between the browser and the target application to highlight vulnerabilities in the application. Another particularly useful feature is Burp Spider, which automates the normally tedious task of mapping a Web application. With Burp Proxy, Burp Spider, and the other features of Burp Suite, pen testers can now confidently answer all of the questions that come after testing a Web application.

About the presenter:
Mike McLaughlin is a penetration tester working for First Base Technologies, an information security consultancy in the UK. Mike's daily work consists of both internal and external network based penetration testing, Web application penetration testing, and social engineering.

View All Videos

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.







  • CIO Trends #6: Nordics

    In this e-guide, read how the High North and Baltic Sea collaboration is about to undergo a serious and redefining makeover to ...

  • CIO Trends #6: Middle East

    In this e-guide we look at the role of information technology as the Arabian Gulf commits billions of dollars to building more ...

  • CIO Trends #6: Benelux

    In this e-guide, read about the Netherlands' coalition government's four year plan which includes the term 'cyber' no fewer than ...