Small white diary 33:kali Penetration Testing Web penetration-scan Tool-burpsuite (i)

Scan Tool-burpsuite

Burp Suite is one of the best tools for Web application testing and becomes the Swiss Army knife in web security tools. Its various functions can help us carry out a variety of tasks. Request interception and modification, Scan Web application vulnerability to brute force login form, perform various random checks such as session tokens. "As a heavyweight tool, each security practitioner must be" but not open source software, with its free version, but no active scanning feature in release, which can be used for manual mining. "Has its cracked version, suitable for personal use" all tools share a powerful extensible framework that can handle and display HTTP messages, persistence, authentication, proxies, logs, alerts. Zui

# # #在截断代理方面做得比其他的优秀

#建议安装一个Oracle Java

#定义脚本启动

[Email protected]:~# cd/opt[email protected]:/opt# lsburpsuite_pro_1.6.38  jython-standalone-2.7.0  teethjdk1.8.0_101          nessus                   vboxguestadditions-5.1.4[email protected]:/opt# cd Burpsuite_pro_1.6.38[email protected]:/opt/burpsuite_pro_1.6.38# Lsburploader_v1.6.38.jar  Burpsuite_pro_v1.6.38.jar[email protected]:/ opt/burpsuite_pro_1.6.38# Cat BURP.SHJAVA-CP Burploader_v1.6.38.jar Larry.lau.BurpLoader

#因为属于盗版, so do not update

1, the default English version, the first font adjustment, to prevent when using truncation agent, Chinese characters appear garbled

2. Truncation Agent

#######################################################################################

This feature is turned on by default, truncates the requested traffic, sends the packet manually, or pauses the truncation of "Intercept I Son" (Note: The agent is not paused)

#默认情况下, listening on port 8080

######################################################################################

Options

#Invisible (host header multi-target domain)

When the client does not support the proxy, start burpsuite invisible as the proxy "Do DNS spoofing, modify its own host file, redirect the domain name to act as a proxy" (for example:)

# #当客户端和burpsuite都在一台机器上, modify the native Hosts file to resolve the DNS resolution of the machine IP, start invisible, and use the following configuration, then Burpsuite will not do DNS resolution with the native Hosts file

#代理情况下 "Absolute path" & Non-proxy "relative path" (Burpsuite will be stitched together to send)

#客户端不按规范发http请求送, may not contain host header, use DNS spoofing to resolve

#一个web页面有多个域名, may correspond to multiple ports or multiple IPS "generate multiple network cards on the system configuration, create listeners on each network card (depending on the actual web domain name), and then use DNS resolution"

#CA (Import/Export)

A targeted certificate is generated based on the target domain name accessed by the system

# # #导出证书, import browser

1.

2.

#导入证书

Target

Filter scan results using scope (highlighting, exclusions, parameter display)

Small white diary 33:kali Penetration Testing Web penetration-scan Tool-burpsuite (i)