Burp Suite Cookbook: Web application security made easy with Burp Suite 2nd ed. Edition


Burp Suite Cookbook: Web application security made easy with Burp Suite 2nd ed. Edition
by: Dr. Sunny Wear (Author)
Publisher finelybook 出版社: ‎Packt Publishing; 2nd ed. edition (October 27, 2023)
Language 语言: ‎English
Print Length 页数: ‎450 pages
ISBN-10: ‎183508107X
ISBN-13: ‎9781835081075


Book Description
By finelybook

Find and fix security vulnerabilities in your web applications with Burp Suite
Key Features
Set up and optimize Burp Suite to maximize its effectiveness in web application security testing
Explore how Burp Suite can be used to execute various OWASP test cases
Get to grips with the essential features and functionalities of Burp Suite
Purchase of the print or Kindle book includes a free PDF eBook

Book Description
By finelybook

With its many features, easy-to-use interface, and fl exibility, Burp Suite is the top choice for professionals looking to strengthen web application and API security.
This book off ers solutions to challenges related to identifying, testing, and exploiting vulnerabilities in web applications and APIs. It provides guidance on identifying security weaknesses in diverse environments by using diff erent test cases. Once you’ve learned how to confi gure Burp Suite, the book will demonstrate the eff ective utilization of its tools, such as Live tasks, Scanner, Intruder, Repeater, and Decoder, enabling you to evaluate the security vulnerability of target applications. Additionally, you’ll explore various Burp extensions and the latest features of Burp Suite, including DOM Invader.
By the end of this book, you’ll have acquired the skills needed to confi dently use Burp Suite to conduct comprehensive security assessments of web applications and APIs.
What you will learn
Perform a wide range of tests, including authentication, authorization, business logic, data validation, and client-side attacks
Use Burp Suite to execute OWASP test cases focused on session management
Conduct Server-Side Request Forgery (SSRF) attacks with Burp Suite
Execute XML External Entity (XXE) attacks and perform Remote Code Execution (RCE) using Burp Suite’s functionalities
Use Burp to help determine security posture of applications using GraphQL
Perform various attacks against JSON Web Tokens (JWTs)
Who this book is for
If you are a beginner- or intermediate-level web security enthusiast, penetration tester, or security consultant preparing to test the security posture of your applications and APIs, this is the book for you.
Tableof Contents
1. Getting Started with Burp Suite
2. Getting to Know the Burp Suite of Tools
3. Configuring, Crawling, Auditing, and Reporting with Burp
4. Assessing Authentication Schemes
5. Assessing Authorization Checks
6. Assessing Session Management Vechanisms
7. Assessing Business Logic
8. Evaluating Input validation Checks
9. Attacking the Client
1o. working with Burp Suite Macros and Extensions
11. Implementing Acvanced Topic Attacks
About the Author
Dr. Sunny Wear is a web security architect and penetration tester. She provides secure coding classes, creates software, and performs penetration testing on web/API and mobile applications. Sunny has more than 25 years of hands-on software programming, architecture, and security experience and holds a Doctor of Science in Cybersecurity. She is a content creator on Pluralsight, with three courses on Burp Suite. She is a published author, a developer of mobile apps such as Burp Tool Buddy, and a content creator on courses related to web security and penetration testing. She regularly speaks and holds classes at security conferences such as Defcon, Hackfest, and BSides. Amazon page

相关文件下载地址

打赏
未经允许不得转载:finelybook » Burp Suite Cookbook: Web application security made easy with Burp Suite

评论 抢沙发

觉得文章有用就打赏一下

您的打赏,我们将继续给力更多优质内容

支付宝扫一扫

微信扫一扫