Master Burp Suite Like A Pro In Just 1 Hour

preview_player
Показать описание
One of the most common problems with modern tutorials for tools is that they tend to sound a lot like man-pages or documentation. For instance, they'll tell you all about the little command flags, all the little buttons you can click on; but something that they seem to miss out on is "WHY you would use each of these options?"

So, for this video, we're going to do things a little different. Instead, I'm going to walk you through a typical pentest, and we're going to see where you should use each tool within Burp Suite along the way.

0:00 Intro
0:57 Setup
1:57 Reconnaissance Steps
2:16 Application Mapping
5:42 Parameter Tampering
9:44 Finding Secrets
14:01 Registration/Login Flow
20:03 Analyzing JWT Tokens
23:16 Special Message
25:25 Exploiting IDOR
26:21 Burp Intruder Workflow
28:06 Advanced Intruder Settings
33:03 Finding Logic Flaws
37:30 Exploiting Logic Flaws
39:31 Success & Homework for you
40:23 Putting it all together (Another logic flaw)
49:26 Stealing Christmas
49:52 How you know you're done
50:50 Wrap up

#infosec #bugbounty #pentesting #hacking #cybersecurity #burpsuite
  1. Netsec Explained
  2. SQL
  3. SQL Injection
  4. SQLi
  5. RCE
  6. Remote code execution
Рекомендации по теме
Master Burp Suite 0:51:29

Master Burp Suite Like A Pro In Just 1 Hour

Mastering Burp Suite: 0:06:09

Mastering Burp Suite: The Ultimate Web Application Hacking Tool

Burp Suite Tutorial 0:07:15

Burp Suite Tutorial For Beginners With SQL Injection

Burp Suite Master 0:22:49

Burp Suite Master Guide For OSCP - Introduction to Hacking Websites

Burpsuite Basics (FREE 0:28:01

Burpsuite Basics (FREE Community Edition)

[Hindi] BurpSuite Complete 1:02:40

[Hindi] BurpSuite Complete Course in Hindi | Everything you need to know #burpsuite #bugbounty

Introduction to Burp 0:29:58

Introduction to Burp Suite (for beginners)

Become a MASTER 0:29:43

Become a MASTER Hacker with Burpsuite!

The Ultimate All-in-One 0:18:12

The Ultimate All-in-One Hacking Tools for Hackers in Kali Linux 2024

Master Burp Suite 0:00:50

Master Burp Suite Scanning in 60s!

What is Burp 0:04:04

What is Burp suite? | Burpsuite Tutorial

Burp Suite Pro 0:18:08

Burp Suite Pro Walkthrough

02. Master Burp 0:05:30

02. Master Burp Suite: How to Configure Proxy and Intercept Requests | Step-by-Step Guide

Master Burp Suite:Guide 0:06:26

Master Burp Suite:Guide to Intercept, Modify, and Analyze HTTP Responses | Web Security Tutorial

01.Master Burp Suite: 0:02:07

01.Master Burp Suite: Comprehensive Introduction to Burp Proxy Tab | Step-by-Step Guide

How To Hack 0:00:27

How To Hack Any Website: Master Burp Suite: Intercepting Requests and Manipulating Data

96 Mastering Burp 0:07:36

96 Mastering Burp Suite Intruder: Unleashing the Power of Advanced Web Application Security Testing

burp suite 1:06:14

burp suite

BURP suite basics 0:18:22

BURP suite basics TryHackMe

Everything You Need 1:44:44

Everything You Need To Know About Burp Suite For Bug Bounty Hunting!

udemy (BurpSuite: A 0:00:53

udemy (BurpSuite: A master of Bug bounty hunter)

01- Mastering Web 0:00:36

01- Mastering Web Application Security with Burp Suite: Your Ultimate Guide to Ethical Hacking

Burp suit sequencer 0:06:49

Burp suit sequencer fully explained | web application penetration testing | Bug bounty hunting

Master Burp Suite: 0:06:34

Master Burp Suite: tutorial, Plans, and Pricing| Web Security Testing |Free Cyber Security Course

Комментарии
Автор

Even when I am not finished with this video I put comment to give this great guide more chance to get into algorithm

NiFreZ
Автор

Awesome, not one of the thousand "basic" videos, but one with actual content!

Horstlicious
Автор

really useful, highly comprehensive and detailed guide, lots of detailed not viewed in other guides.I do recommend it

kobabumga
Автор

Man this tutorial rocks! I just started my journey with cyber security (I have frontend and backend background) and I very appreciate that beside of explaining how burp works you are providing very useful info about whole pentesting and finding out the vulnerabilities. Now I am more aware how important its checking requests and sending safe responses.

paca
Автор

As someone trying to leverage my knowledge from studying for the ccna into my plan to get into cyber security this video was super helpful in demonstrating some points of attack and possible uses for burp, thank you!

shaggy
Автор

Insanely helpful! Beats any other tutorial I've seen in almost any other skill. Will watch more of your videos now!

cristianpiano
Автор

Thank you very much, I was going to start this topic and decided, and my stop over was the best moment. I am very greatful for all your effort to teach for free, and with work related examples.

wiltonwell
Автор

Man...this is the first video that was able to teach me this software. Even a course did not made the trick. Thank you sir for your efforts!

CRandJP
Автор

havent finished the video but so far i like it, earlier today i heard some pentesters/bug bounty hunters use burp as their only tool and are still very successful and i wanted to see how. this videos very good, i like the way you explain things.

z.
Автор

I see I'm not the only one on here with the same thoughts, but wanted to bring a comment (subscribe and liked this video as well) because of how well this was done!! I'm honestly super shocked, someone made a video, got to the meat and potatoes very quickly, provides awesome content, shows you where everything is to follow along, then allows the PERFECT amount of time to complete the follow along portion and be ready for the next block. Truly great job and thank you so much for not being like the rest of YT.

patient
Автор

My first Burp Suite tutorial and I'm so grateful. Thank you.

ALXStrikers
Автор

This was an excellent video. It was informative, well structured and presented in a manner that keeps me interested.

You speak in a manner that is comfortable for me to listen to.

You keep a good pace as you present the information which includes occasionally making short pauses.

The presentation had a good structure and you speak with intent, which makes it easy to maintain my attention.

You keep filler words to a minimum. Words such as 'um', 'like' and other abominations such as those words.

Please keep up the good work, sir! 🎉

alkaliemetall
Автор

I juts started my journey as a Blue Sec champion and this tool is incredibly useful. Im just stunned to see what the CE offers already. Nice video by the way. There are stuff that I didn't know that definitely gives a smoother experience while doing reconnaissance.

zakb.
Автор

This is honestly so helpful. I'm really surprised you're not bigger than you are on Youtube.. I love your process of looking at the HTTP history, the highlighting, using the decoder/encoder, everything is so useful. I used to entirely dismiss the HTTP history because of all the ad/analytics requests that flood it and focus solely on interception... not anymore. And another mistake I was making was constantly switching my proxy on/off just to search up various encoders/decoders. Thanks so much.

MoldyTurtleBurgers
Автор

seriously the best pen testing tutorial of any kind I've seen yet, I'm a beginner and know next to nothing about this stuff, but man this was simple and amazing

bobbydrillboid
Автор

This really helped me understand some things about burpe...🤝Thanks mahn!

isaacphiri
Автор

super best best pentest using burp suite i've seen, seriuosly if you open the class, definietly i'll register.

dedyalamsyah
Автор

I'm so glad I came across your video. It prepared me for a job interview. Thank you so much!

psionicjake
Автор

Thanks for the neat and simple Burp Suite explanation, great job!

ammisetty
Автор

damn that was really helpful, only video on youtube which talks in depth about Burp Suite and that too very well

shivagupta