Thursday, 21 April 2011

Tutorial on Burp Suite Repeater and Intruder

This tutorial on Burp Suite covers the Repeater and Intruder functionality.
  • Repeater allows you to play back a message to the server and amend it before it goes out.
  • Intruder allows you to play back messages, with various elements of the message varying with each playback e.g. a different set of parameters
In the tutorial video I explain how I use each function in my testing.
Other proxy tools do similar things. I also use JBroFuzz as it provides very similar functionality, so experiment with that too.

Did you can spot the deliberate mistake in the video? Blogging helps you make mistakes in public very easily – which helps you learn quickly. Any comments on the video will help me improve the quality of future videos.

2 comments:

  1. I was looking forward to learning about 'Sequencer'.

    ReplyDelete
  2. Alan Richardson3 May 2011 at 00:47

    I'm such a tease.

    Try this link instead http://www.securityninja.co.uk/application-security/burp-suite-tutorial-sequencer-tool/

    ReplyDelete