Burp Suite, the leading toolkit for web application security testing

PortSwigger Web Security Blog

Monday, 2 November 2009

GIAC paper on Burp Intruder

Karl Dawson has written a nice paper about using Burp Intruder for discovering login credentials, and how you can use various tricks to reveal other useful information and anomalies, as well as actually guessing valid passwords. Download it here.

1 comment:

Anonymous said...

Not to badmouth the author b/c the paper is well written but the content seems nothing more than a plethora of the obvious.

Blog Archive

User Forum

Get help from other users, at the Burp Suite User Forum:

Visit the forum ›

Copyright 2014 PortSwigger Ltd. All rights reserved.