Hands-On Application Penetration Testing with Burp Suite

Burp suite is a set of graphic tools focused towards penetration testing of web applications. Burp suite is widely used for web penetration testing by many security professionals for performing different web-level security tasks.
The book starts by setting up the environment to begin an application penetration test. You will be able to configure the client and apply target whitelisting. You will also learn to setup and configure Android and IOS devices to work with Burp Suite. The book will explain how various features of Burp Suite can be used to detect various vulnerabilities as part of an application penetration test. Once detection is completed and the vulnerability is confirmed, you will be able to exploit a detected vulnerability using Burp Suite. The book will also covers advanced concepts like writing extensions and macros for Burp suite. Finally, you will discover various steps that are taken to identify the target, discover weaknesses in the authentication mechanism, and finally break the authentication implementation to gain access to the administrative console of the application.
By the end of this book, you will be able to effectively perform end-to-end penetration testing with Burp Suite.

Type

ebook

Category

publication date

2019-02-28

what you will learn

Set up Burp Suite and its configurations for an application penetration test
Proxy application traffic from browsers and mobile devices to the server
Discover and identify application security issues in various scenarios
Exploit discovered vulnerabilities to execute commands
Exploit discovered vulnerabilities to gain access to data in various datastores
Write your own Burp Suite plugin and explore the Infiltrator module
Write macros to automate tasks in Burp Suite

no of pages

366

duration

732

key features

Master the skills to perform various types of security tests on your web applications * Get hands-on experience working with components like scanner, proxy, intruder and much more * Discover the best-way to penetrate and test web applications *

approach

This book provides hands on approach that will help you to setup and practice discovery and exploitation of impactful vulnerabilities. It will also teach you to automate all of this using the capabilities of Burp Suite.

audience

If you are interested in learning how to test web applications and the web part of mobile applications using Burp, then this is the book for you. It is specifically designed to meet your needs if you have basic experience in using Burp and are now aiming to become a professional Burp user.

meta description

Test, fuzz, and break web applications and services using Burp Suite’s powerful capabilities

short description

Using Burp Suite, you can quickly build proof of concepts, extract data via an exploit, attack multiple end points in an application and even begin to script complex multi stage attacks. This book will provide a hands-on coverage on how you can get started with executing an application penetration test and be sure of the results.

subtitle

Use Burp Suite and its features to inspect, detect, and exploit security vulnerabilities in your web applications

keywords

Burp Suite, Application Penetration Testing, Proxy Listeners, Scanner, proxy, intruder

Product ISBN

9781788994064

ATLAS

ATLAS

Here to assist you. Please feel free to ask!

×

Hello and welcome! I'm ATLAS, your AI Learning Assistant. I’m here to provide expert answers and detailed explanations for your educational queries.