更新时间:2021-08-05 17:03:55
封面
版权页
Credits
About the Author
Acknowledgments
About the Reviewers
www.PacktPub.com
Support files eBooks discount offers and more
Preface
What this book covers
What you need for this book
Who this book is for
Conventions
Reader feedback
Customer support
Chapter 1. Getting Started with Burp
Starting Burp from the command line
Specifying memory size for Burp
Ensuring that IPv4 is allowed
Working with other JVMs
Summary
Chapter 2. Configuring Browsers to Proxy through Burp
Configuring widely used browsers to proxy through Burp Suite
Chapter 3. Setting the Scope and Dealing with Upstream Proxies
Multiple ways to add targets to the scope
Scope and Burp Suite tools
Scope inclusion versus exclusion
Dropping out-of-scope requests
Dealing with upstream proxies and SOCKS proxies
Chapter 4. SSL and Other Advanced Settings
Importing the Burp certificate in Mozilla Firefox
Importing the Burp certificate in Microsoft IE and Google Chrome
Installing the Burp certificate in iOS or Android
SSL pass-through
Invisible Proxy
Chapter 5. Using Burp Tools As a Power User – Part 1
Target
Proxy
The Message Analysis tab
Actions on the intercepted requests
Intruder
Scanner
Repeater
Chapter 6. Using Burp Tools As a Power User – Part 2
Spidering
Sequencer
Decoder
Comparer
Alerts
Chapter 7. Searching Extracting Pattern Matching and More
Filtering
Matching
Grep - Match and Grep - Extract
Chapter 8. Using Engagement Tools and Other Utilities
Search
Target Analyzer
Content Discovery
Task Scheduler
CSRF proof of concept Generator
Chapter 9. Using Burp Extensions and Writing Your Own
Setting up the Python runtime for Burp Extensions
Setting up the Ruby environment for Burp Extensions
Loading and installing a Burp Extension from the Burp App Store
Loading and installing a Burp Extension manually
Managing Burp Extensions
Writing our own Burp Extensions
Noteworthy Burp Extensions
Chapter 10. Saving Securely Backing Up and Other Maintenance Activities
Saving and restoring a state
Automatic backups
Scheduled tasks
Logging all activities
Chapter 11. Resources References and Links
Primary references
Web application security testing with Burp
Miscellaneous security testing tutorials with Burp Suite
Pentesting thick clients
Testing mobile applications for web security using Burp Suite
Extensions references
Books
Index
