An Introduction to Burp Suite – Part One
An Introduction to Burp Suite – Part One Burp suite provides a solid platform for launching a web application security assessment. In this guide we’re going to introduce the features of Burp and how you can use them to discover web application vulnerabilities. The Basics Burp is available for download from www.portswigger.net, or you can find a copy in most popular security tool distributions, including Backtrack and Kali. Burp is a GUI application written in Java, and distributed as a ‘.jar’ file - so it is possible to fire it up by opening the ‘.jar’ with a double click. However, I tend to prefer to open the Burp GUI via the command line, as that allows me to provide Burp with more system memory to improve its performance. java -jar –Xmx2048mb /Applications/burpsuite_pro_v1.5.jar Running the above command from the command line opens Burp with 2 GB’s (2048 MB’s) of memory allocated. There are two versions of Burp,...