How to Analyze Session Token Randomness using Burp-Suite Sequencer

Author: Jeremy Druin
Twitter: @webpwnized
Description: Using the Burp Suite Sequencer application, we capture a series of session tokens from the Mutilidae PHP application server, then analyze them using the Burp Suite Sequencer analysis functionality. The beginning of the video covers the basics of how session tokens are passed to the web browser and how to coax the web server to send multiple tokens.

The webpwnized YouTube channel is dedicated to information security, security testing and ethical hacking. There is an emphasis on web application security but many other topics are covers. Some of these include forensics, network security, security testing tools and security testing processes. The channel provides videos to encourage software developers and system administrators to perform security testing. Also, the channel educates the next generation of security testers and bug bounty hunters who want to respectfully, legally and ethically help system owners that allow security testing.