Oct 17, 2025 · 7 min read · Burp Suite is Java based framework designed to serve as a comprehensive solution for conducting web application penetration testing.It captures and enables manipulation of all the HTTP?HTTPS traffic between a browser and a web server. Burp Suite is ...
Join discussionJun 6, 2025 · 2 min read · Intro I first got experience with Burp Suite during TryhackMe’s Advent of Cyber 24 event. Months later I haven’t used it since. I wanted to refresh and learn more so I signed up to Portswigger Web Security Academy to get more hands on experience from...
Join discussion
Oct 17, 2024 · 3 min read · In this post, we'll explore how to exploit a SQL injection vulnerability in a non-Oracle database. SQL injection is one of the most dangerous security risks and can lead to unauthorized access to sensitive data. By following this lab, you'll learn ho...
Join discussion
Oct 4, 2024 · 2 min read · Solved: Method 1: set filter to see image files in burp proxy upload an image file and retrive the POST request and sent it to repeater. now from the browser click to go back to “My Account”. now retrive the GET request and send it to repeater. ...
Join discussionApr 29, 2024 · 2 min read · Lab Scenario: Our mission is to exploit XXE through a web application's "Check stock" feature, specifically using external entities to retrieve files. By intercepting and manipulating a POST request, we intend to use XXE to trigger the retrieval of s...
Join discussion
Apr 12, 2023 · 3 min read · Burp Suite Definition Burp Suite is a web proxy program (packet manipulation program) that sits between the client and the server. It allows interception of data being sent between the two and provides various tools such as vulnerability scanners and...
Join discussion