#BurpHacksForBounties - Day 2/30
Effective usage of Match and Replace feature of Burp Suite
False2True Trick & Injecting all fields with polyglot payloads 😉😉
How to thread 🧵👇
#infosec #security #appsec #burp #bugbounty #bugbountytips
Effective usage of Match and Replace feature of Burp Suite
False2True Trick & Injecting all fields with polyglot payloads 😉😉
How to thread 🧵👇
#infosec #security #appsec #burp #bugbounty #bugbountytips
♥️ #BurpHacksForBounties - Day 3/30 ♥️
🔍🔎
Find References: The most underrated and underused feature of Burp Suite
Pro Only & Can find references for URIs across the entire Burp.
A short thread : 🧵👇
#infosec #appsec #security #burp #bugbountytip #bugbountytips
🔍🔎
Find References: The most underrated and underused feature of Burp Suite
Pro Only & Can find references for URIs across the entire Burp.
A short thread : 🧵👇
#infosec #appsec #security #burp #bugbountytip #bugbountytips
🍺🤡 #BurpHacksForBounties - Day 4/30
Don't ignore junk-looking information in Burp Suite.
Keep this setting on, and play with zipped data in Burp Suite.
🤫🤫 You can change zipped data in req
Learned from @stokfredrik
#infosec #appsec #security #burp #bugbountytips #bugbountytip
Don't ignore junk-looking information in Burp Suite.
Keep this setting on, and play with zipped data in Burp Suite.
🤫🤫 You can change zipped data in req
Learned from @stokfredrik
#infosec #appsec #security #burp #bugbountytips #bugbountytip
🚨🚨 #BurpHacksForBounties - Day 6/30
Burp Suite and firefox 🔥🦊 match made in heaven.
Read the shortcomings of in-built browser and how to make firefox silent.
Down here 👇🍺
#infosec #appsec #burp #security #bugbounty #bugbountytips
Burp Suite and firefox 🔥🦊 match made in heaven.
Read the shortcomings of in-built browser and how to make firefox silent.
Down here 👇🍺
#infosec #appsec #burp #security #bugbounty #bugbountytips
#BurpHacksForBounties - Day 7/30
Macro: A recorded session in Burp Suite
Part 1: What, How & Why?
Part 2: How to use to automate testing?
#infosec #ppsec #bugbounty #bugbountytips #security #burp
Macro: A recorded session in Burp Suite
Part 1: What, How & Why?
Part 2: How to use to automate testing?
#infosec #ppsec #bugbounty #bugbountytips #security #burp
#BurpHacksForBounties - Day 8/30
Burp Suite Automation through Macros and Using macros in creating sessions for APIs and protected resources.
#infosec #appsec #burp #security #bugbountytips #bugbounty
Burp Suite Automation through Macros and Using macros in creating sessions for APIs and protected resources.
#infosec #appsec #burp #security #bugbountytips #bugbounty
🚨🚨🤓 #BurpHacksForBounties - Day 9/30
Following parameter in Burp Suite repeater's response.
A time-saver tip that I read from @sw33tLie reply in the thread by @codingo_
👇🔽⬇️
#security #appsec #burp #bugbountytips #bugbountytip
Following parameter in Burp Suite repeater's response.
A time-saver tip that I read from @sw33tLie reply in the thread by @codingo_
👇🔽⬇️
#security #appsec #burp #bugbountytips #bugbountytip
#BurpHacksForBounties - Hack 11/30
We mostly use PortSwigger 's Burp Suite pro for corporate pentesting, & we should not capture and store corporate credentials.
Steps that I use and why is it important: 👇
#infosec #appsec #burp #Burpsuite
We mostly use PortSwigger 's Burp Suite pro for corporate pentesting, & we should not capture and store corporate credentials.
Steps that I use and why is it important: 👇
#infosec #appsec #burp #Burpsuite
#BurpHacksForBounties - Day 12/30
IPtables + Burp Suite + Android Applications. 😍🤓🤫😀
Tricky and length but worth setting up.
#burp #bugbountytips #infosec #security #appsec #bugbountytip
IPtables + Burp Suite + Android Applications. 😍🤓🤫😀
Tricky and length but worth setting up.
#burp #bugbountytips #infosec #security #appsec #bugbountytip
#BurpHacksForBounties - Tip 14/30
Burp Suite Config provides options for handling configurations for User-level and project-level options.
I personally use this configuration :
#appsec #infosec #burp #bugbountytips #bugbountytip
Burp Suite Config provides options for handling configurations for User-level and project-level options.
I personally use this configuration :
#appsec #infosec #burp #bugbountytips #bugbountytip