The document provides an overview of Burp Suite, a tool for security testing and penetration testing. It discusses what Burp Suite is, its main features and tools, and how to install and configure it. The document outlines the different editions of Burp Suite, why it is useful for penetration testing, and how its various interconnected tools allow effective testing of web applications. It also provides brief descriptions of the Proxy tool, Intruder, Repeater, Sequencer and other common Burp Suite tools.

1. Burp Suite 101
Swar Shah

2. Agenda..
● About Burp Suite .
● Why Burp Suite.
● Installation.
● Configuring Browser with proxy for Burp.
● Tools in Burp Suite.
● Briefing about Tools.
● Hands on .

3. About Burpsuite
❖ BurpSuite is a collection of tools to carry out pen testing or security auditing.
❖ It is developed by the company named Portswigger.
❖ It’s a java executable and hence it is cross-platform.
❖ It gives us a lot of flexibility to do some very interesting things.
❖ It provides a great combination of tools that allow automated and manual
workflows to test, assess, and attack web applications of all shapes and
sizes.
❖ There are three versions of Burpsuite.

4. Continues...
❖ It has 3 editions .
➢ Community.
➢ Professional.
➢ Enterprise.

5. Why Burp Suite ?
➢ It's various tools & features work effectively and seamlessly in any
environment for penetration testing.
➢ This scanner allows you to club both manual and automated techniques,
allowing in depth penetration and analysis.
➢ All the scanners are interconnected and keep the information flow going from
one to another, thereby allowing exchange of information to develop
remedies.
➢ It allows you to route and forward the traffic on web application through
internet so that each and every request can be manipulated.

6. What is Web proxy ?
● In computer network a proxy is a system or application that acts as an
intermediary for requests from clients seeking resources from other servers.
● It sits between your browser and web application you want to test and captures
all the HTTP requests.

7. Installation
&&
Browser config

8. Tools in Burp Suite
The common tools which are present in Burp Suite are :-
➢ Target Tab
○ Sitemap
○ Scope
➢ Proxy Tab
○ Intercepter
○ HTTP History
○ Web Socket History

9. ➢ Intruder
○ Target
○ Positions
■ Sniper
■ Battering-ram
■ Pitchfork
■ Cluster-Bomb
○ Payloads
➢ Repeater
➢ Sequencer
➢ Decoder
➢ Comparer
➢ Extender

10. Hands on ..

11. ★ Burp Suite Essentials
https://www.amazon.in/Bur
p-Suite-Essentials-Akash-
Mahajan-
ebook/dp/B00QFBNXHA
★ https://www.youtube.com/
watch?v=ZbjMOE1OFPo Reference..

12. ❖ Final year student at Parul
University.
❖ Null Ahmedabad Volunteer
❖ Author at
https://medium.com/bugbo
untywriteup
@swar_shah05
Whoami
?

13. ?