A somewhat curated list of links to various topics in application security.
| Link | Excerpt |
|---|---|
| xnl-h4ck3r/GAP-Burp-Extension | This is an evolution of the original getAllParams extension for Burp. Not only does it find more potential parameters for you to investigate, but it also finds potential links to try these parameters on. |
| A Step-by-Step Guide to Writing Extensions for API Pentesting in BurpSuite | API pentesting is an integral part of any security assessment, and BurpSuite can be a powerful tool for testing APIs. But did you know that you can extend the capabilities of BurpSuite even further by writing your own extensions? |
| Burp Suite Extensions Rarely Utilized but Quite Useful | Almost everyone who is involved in the security field especially web application security, already familiar with a fairly strong platform namely Burp Suite. |
| Burp extensions | Burp extensions enable you to customize how Burp Suite behaves. You can use Burp extensions created by the community, or you can write your own. You can download Burp extensions from the BApp Store. |
| botesjuan/Burp-Suite-Certified-Practitioner-Exam-Study | My study notes on the PortSwigger Academy Burp Suite Certified Practitioner (BSCP) Exam topics. The below BSCP notes may require going to PortSwigger Academy labs to understand my thinking in changing payloads to get require results needed to progress to next stage in exam. |
| Automating Authorization Testing: AuthMatrix – Part 1 | If you’ve ever encountered a large web application with multiple roles, each with their own distinct permissions, you will understand the pain that comes with testing for authorization issues. |
| Web App Pentesting With Burp Suite Scan Profiles | With the introduction of the Configuration Library in Burp Suite 2.0’s release, we’ve been creating more and more predefined templates to use during our web application penetration tests. |
| Great getting started resources for new users of Burp Suite Professional | If you're new to Burp Suite Professional, then congratulations. Not only have you just bought into the world's leading toolkit for web security testing - you've also joined a massive worldwide community of security professionals. Welcome to the party. |
| Automating Burp Suite -4 | Understanding And Customising Custom Header From Response Via Burp Macro | This is the 4th tutorial where I have skipped 3rd tutorial which will be updated later and developed a Burp Extension using jython and implemented addition on custom header in the request headers derived from response body/response header using Burp Suite Macro. |
| Some of the best Burp extensions - as chosen by you | As we mentioned in our recent blog post on good resources for new Burp Suite Professional users, the BApp Store is one of the largest repositories of community-created user content you're likely to find anywhere. |
| Web App Pentesting With Burp Suite Scan Profiles | With the introduction of the Configuration Library in Burp Suite 2.0’s release, we’ve been creating more and more predefined templates to use during our web application penetration tests. |
| 🔥 ssrf-king 🔥 | 🔥 ssrf-king 🔥 v1. |
| My First Burp Suite Extension | I recently had a career change from the defensive side of security to the offensive which means a whole knew set of skills to develop. For those who are not familiar Burp Suite is a security tool for testing web applications. |
| Launching Tea Break burp extension: Reduce Burnout | For some time, I was having severe neck pain, eye strain etc. The neck was also causing headache and dizzy feeling. I know of many people who are putting out many hours staring at terminals, using Burpsuite for continuous long hours. |
| POSTS | Logging Made Easy Through Graylog Part 1 Logging is an important piece of an organization’s security posture. Logging without organization, searchability, or reporting leads to data being missed. This is the start of a long series that VDA Labs is writing on Graylog. |
| Authentication Token Obtain and Replace (ATOR) Burp Plugin: Fast and Reliable plugin to handle Complex Login Sequences | Automated scanners require a constant flow of requests and most tools have built-in session handling logic. Automated scanning/Session Handling for web applications is tricky these days especially because of the following vectors: |
| [BURP] 12 tricks for Burp Repeater | Repeater is one of the most frequently used part of Burp Suite. But there is plenty of hidden features there. Do you know all of them? Check my video with 12 tricks. 0:09 Change tab name 0:24 Restore closed tab 0:44 Request history 0:55 Auto scroll 1:19 Export to XML 1:41 Create request based on UR |
| Integrating Burp Suite Enterprise into Jenkins CI/CD Pipeline | Last year, Portswigger, the company behind Burp Suite, the world’s most widely used web application security testing software, released a new product separate from Burp Suite Pro called Burp Suite Enterprise Edition. This new offering is a scalable automation and CI integration product. |
| Burp Share Requests | This Burp Suite extension enables the generation of shareable links to specific requests which other Burp Suite users can import. |
| The top 10 best pentesting tools and extensions in Burp Suite | At its heart, Burp Suite is an intercepting proxy. Manually proxying HTTP(S) traffic can provide a great deal of insight into a target web application's behavior. |
| Burp Suite Secret Finder - Burp Suite Extension To Discover Apikeys/Tokens From HTTP Response | Burp Suite extension to discover a apikey/tokens from HTTP response. |
| PortSwigger Launches Web Security Academy | PortSwigger has launched a free interactive training platform in an attempt to address the global shortage of cybersecurity talent. The Web Security Academy features a vast amount of high-quality reading materials and interactive labs of varying levels of difficulty. |
| The Top 8 Burp Suite Extensions That I Use to Hack Web Sites | When doing Web Application Penetration Tests, one tool dominates the desktops of most Security Consultants: Burp Suite Professional (https://portswigger.net). This comes as no surprise. It has solid performance, a ton of features, and most importantly, extensibility. |
| Redirecting | |
| How i exploit out-of-band resource load (HTTP) using burp suite extension plugin (taborator) | Out-of-band resource load arises when it is possible to induce an application to fetch content from an arbitrary external location, and incorporate that content into the application’s own response(s). |
| Simple dirty script to fuzz a SOAP request using the BURP Sniper approach using Windows authentication | Simple dirty script to fuzz a SOAP request using the BURP Sniper approach using Windows authentication - ws_soap_fuzz.py |
| Using Burp to Test a REST API | REST (representational state transfer) is an architectural style consisting of a coordinated set of constraints applied to components, connectors, and data elements, within a distributed hypermedia system. |
| Quick and Dirty BurpSuite Tutorial | In this article, we are going to see another powerful framework that is used widely in pen-testing. |
| The Top 5 Burp Suite Extensions | If you’re a freelance security researcher, chances are you’ve heard of — or use — Burp Suite, a program commonly considered the gold standard for penetration testing software. |
| My Favorite Burp Suite Extensions | My new buddy Matt (https://twitter.com/matt0177), long-time SANS TA and Facilitator and all-around amazingly-smart dude, asked for my suggestions for Burp Suite extensions that I like using. This post is for him (and you). |
| SleuthQL Description | SleuthQL is a python3 script to identify parameters and values that contain SQL-like syntax. Once identified, SleuthQL will then insert SQLMap identifiers (*) into each parameter where the SQL-esque variables were identified. SleuthQL requires an export of Burp's Proxy History. |
| Attacking Web Applications With Burp Suite | Learn to effectively and dynamically attack web applications by discovering security weaknesses and common vulnerabilities using an industry standard methodology backed by the most comprehensive suite of web application penetration testing tools available today. The Burp Suite! |
| Awesome Burp Extensions | Please refer to the contributing guide for details. Awesome burp extensions is an amazing list for people who want to spice up their Burp instance with awesome plugins. The best ways to use are: |
| AES-Killer v3.0 - Burp Plugin To Decrypt AES Encrypted Traffic Of Mobile Apps On The Fly | Burpsuite Plugin to decrypt AES Encrypted traffic on the fly. |
| Playing With the New Burp Suite REST API | One of the coolest new features released in the recent beta version of Burp Suite is the introduction of a REST API. I blogged about the UI and some other feature enhancements earlier this week. |
| param-miner | This extension identifies hidden, unlinked parameters. It's particularly useful for finding web cache poisoning vulnerabilities. It combines advanced diffing logic from Backslash Powered Scanner with a binary search technique to guess up to 65,000 param names per request. |
| AutoRepeater: Automated HTTP Request Repeating With Burp Suite | AutoRepeater will only resend requests which are changed by a defined replacement. |
| Burp Suite HTTP Smuggler | A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques. This extension has been developed by Soroush Dalili (@irsdl) from NCC Group. The initial release (v0. |
| SleuthQL - Burp History Parsing Tool To Discover Potential SQL Injection Points | SleuthQL is a python3 script to identify parameters and values that contain SQL-like syntax. Once identified, SleuthQL will then insert SQLMap identifiers (*) into each parameter where the SQL-esque variables were identified. SleuthQL requires an export of Burp's Proxy History. |
| 0ang3el/EasyCSRF | EasyCSRF helps to find weak CSRF-protection in WebApp which can be easily bypassed. For example, content type based protection for API (Rest API, GraphQL API, etc) or CSRF-protection based on obscure data format (binary format, etc) are known to be weak. |
| Writing your first Burp Suite extension | Before we get into specifics for each language, there is some general context to bear in mind: Burp looks for a class called BurpExtender to instantiate (with no constructor parameters) and then calls registerExtenderCallbacks() on this object passing in a "callbacks" object. |
| The Top 8 Burp Suite Extensions | Burp Suite is an integrated platform for attacking web applications. It contains a number of tools, and for these tools to design a number of interfaces to accelerate the process of attacking the application process. |
| Extending Burp Proxy With Extensions | By Chris Bush. The world of information security is awash with tools to help security practitioners do their jobs more easily, accurately and productively. |
| Writing your first Burp Suite extension | The new Burp Suite extensibility makes it much easier for non-programmers to create and use Burp extensions. This post explains the basics, and we'll soon be releasing a series of examples of Burp's extensibility in action. You can create Burp extensions using Java or Python. |
