Hands-On Application Penetration Testing with Burp Suite

Use Burp Suite and its features to inspect, detect, and exploit security vulnerabilities in your web applications

Nonfiction, Computers, Application Software, Computer Security, Networking & Communications, General Computing
Cover of the book Hands-On Application Penetration Testing with Burp Suite by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar, Packt Publishing
View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart
Author: Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar ISBN: 9781788995283
Publisher: Packt Publishing Publication: February 28, 2019
Imprint: Packt Publishing Language: English
Author: Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
ISBN: 9781788995283
Publisher: Packt Publishing
Publication: February 28, 2019
Imprint: Packt Publishing
Language: English

Test, fuzz, and break web applications and services using Burp Suite’s powerful capabilities

Key Features

  • Master the skills to perform various types of security tests on your web applications
  • Get hands-on experience working with components like scanner, proxy, intruder and much more
  • Discover the best-way to penetrate and test web applications

Book Description

Burp suite is a set of graphic tools focused towards penetration testing of web applications. Burp suite is widely used for web penetration testing by many security professionals for performing different web-level security tasks.

The book starts by setting up the environment to begin an application penetration test. You will be able to configure the client and apply target whitelisting. You will also learn to setup and configure Android and IOS devices to work with Burp Suite. The book will explain how various features of Burp Suite can be used to detect various vulnerabilities as part of an application penetration test. Once detection is completed and the vulnerability is confirmed, you will be able to exploit a detected vulnerability using Burp Suite. The book will also covers advanced concepts like writing extensions and macros for Burp suite. Finally, you will discover various steps that are taken to identify the target, discover weaknesses in the authentication mechanism, and finally break the authentication implementation to gain access to the administrative console of the application.

By the end of this book, you will be able to effectively perform end-to-end penetration testing with Burp Suite.

What you will learn

  • Set up Burp Suite and its configurations for an application penetration test
  • Proxy application traffic from browsers and mobile devices to the server
  • Discover and identify application security issues in various scenarios
  • Exploit discovered vulnerabilities to execute commands
  • Exploit discovered vulnerabilities to gain access to data in various datastores
  • Write your own Burp Suite plugin and explore the Infiltrator module
  • Write macros to automate tasks in Burp Suite

Who this book is for

If you are interested in learning how to test web applications and the web part of mobile applications using Burp, then this is the book for you. It is specifically designed to meet your needs if you have basic experience in using Burp and are now aiming to become a professional Burp user.

View on Amazon View on AbeBooks View on Kobo View on B.Depository View on eBay View on Walmart

Test, fuzz, and break web applications and services using Burp Suite’s powerful capabilities

Key Features

Book Description

Burp suite is a set of graphic tools focused towards penetration testing of web applications. Burp suite is widely used for web penetration testing by many security professionals for performing different web-level security tasks.

The book starts by setting up the environment to begin an application penetration test. You will be able to configure the client and apply target whitelisting. You will also learn to setup and configure Android and IOS devices to work with Burp Suite. The book will explain how various features of Burp Suite can be used to detect various vulnerabilities as part of an application penetration test. Once detection is completed and the vulnerability is confirmed, you will be able to exploit a detected vulnerability using Burp Suite. The book will also covers advanced concepts like writing extensions and macros for Burp suite. Finally, you will discover various steps that are taken to identify the target, discover weaknesses in the authentication mechanism, and finally break the authentication implementation to gain access to the administrative console of the application.

By the end of this book, you will be able to effectively perform end-to-end penetration testing with Burp Suite.

What you will learn

Who this book is for

If you are interested in learning how to test web applications and the web part of mobile applications using Burp, then this is the book for you. It is specifically designed to meet your needs if you have basic experience in using Burp and are now aiming to become a professional Burp user.

More books from Packt Publishing

Cover of the book MODx Web Development by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Hyper-V 2016 Best Practices by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book ElasticSearch Cookbook - Second Edition by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book JBoss AS 5 Development by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Django: Web Development with Python by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Building Web Apps with Spring 5 and Angular by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Hadoop: Data Processing and Modelling by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Tkinter GUI Application Development Cookbook by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Modern C++: Efficient and Scalable Application Development by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Interviewing Engineering Graduates by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Spring Security 3.1 by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Google Web Toolkit 2 Application Development Cookbook by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Entity Framework 4.1: Expert's Cookbook by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book AJAX and PHP: Building Modern Web Applications 2nd Edition by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
Cover of the book Functional Python Programming by Carlos A. Lozano, Dhruv Shah, Riyaz Ahemed Walikar
We use our own "cookies" and third party cookies to improve services and to see statistical information. By using this website, you agree to our Privacy Policy