Hands-on application penetration testing with Burp Suite use Burp Suite and its features to inspect, detect, and exploit security vulnerabilities in your web applications

✍ Scribed by Lozano, Carlos A;Shah, Dhruv;Walikar, Riyaz Ahemed

Publisher: Packt Publishing
Year: 2019
Tongue: English
Leaves: 356
Category: Library

No coin nor oath required. For personal study only.

✦ Synopsis

Test, fuzz, and break web applications and services using Burp Suite’s powerful capabilitiesKey Features Master the skills to perform various types of security tests on your web applications Get hands-on experience working with components like scanner, proxy, intruder and much more Discover the best-way to penetrate and test web applications Book DescriptionBurp suite is a set of graphic tools focused towards penetration testing of web applications. Burp suite is widely used for web penetration testing by many security professionals for performing different web-level security tasks.The book starts by setting up the environment to begin an application penetration test. You will be able to configure the client and apply target whitelisting. You will also learn to setup and configure Android and IOS devices to work with Burp Suite. The book will explain how various features of Burp Suite can be used to detect various vulnerabilities as part of an application penetration test. Once detection is completed and the vulnerability is confirmed, you will be able to exploit a detected vulnerability using Burp Suite. The book will also covers advanced concepts like writing extensions and macros for Burp suite. Finally, you will discover various steps that are taken to identify the target, discover weaknesses in the authentication mechanism, and finally break the authentication implementation to gain access to the administrative console of the application.By the end of this book, you will be able to effectively perform end-to-end penetration testing with Burp Suite.What you will learn Set up Burp Suite and its configurations for an application penetration test Proxy application traffic from browsers and mobile devices to the server Discover and identify application security issues in various scenarios Exploit discovered vulnerabilities to execute commands Exploit discovered vulnerabilities to gain access to data in various datastores Write your own Burp Suite plugin and explore the Infiltrator module Write macros to automate tasks in Burp Suite Who this book is forIf you are interested in learning how to test web applications and the web part of mobile applications using Burp, then this is the book for you. It is specifically designed to meet your needs if you have basic experience in using Burp and are now aiming to become a professional Burp user.Table of Contents Configuring Burp Suite Configuring the Client and Setting Up Mobile Devices Executing an Application Penetration Test Exploring the Stages of an Application Penetration Test Preparing for an Application Penetration Test Identifying Vulnerabilities Using Burp Suite Detecting Vulnerabilities Using Burp Suite Exploiting Vulnerabilities Using Burp Suite - Part 1 Exploitation of Vulnerabilities using Burp Suite - Part 2 Writing Burp Suite Extensions Breaking the authentication for a large online retailer Exploiting and exfiltrating data from a large shipping corporation

✦ Table of Contents

Cover
Title Page
Copyright and Credits
Contributors
About Packt
Table of Contents
Preface
Chapter 1: Configuring Burp Suite
Getting to know Burp Suite
Setting up proxy listeners
Managing multiple proxy listeners
Working with non-proxy-aware clients
Creating target scopes in Burp Suite
Working with target exclusions
Quick settings before beginning
Summary
Chapter 2: Configuring the Client and Setting Up Mobile Devices
Setting up Firefox to work with Burp Suite (HTTP and HTTPS)
Setting up Chrome to work with Burp Suite (HTTP and HTTPS)
Setting up Chrome proxy options on Linux
Setting up Internet Explorer to work with Burp Suite (HTTP and HTTPS)
Additional browser add-ons that can be used to manage proxy settings
FoxyProxy for Firefox
Proxy SwitchySharp for Google Chrome
Setting system-wide proxy for non-proxy-aware clients
Linux or macOS X
Windows
Setting up Android to work with Burp Suite
Setting up iOS to work with Burp Suite
Summary
Chapter 3: Executing an Application Penetration Test
Differences between a bug bounty and a client-initiated pentest
Initiating a penetration test
Why Burp Suite? Let's cover some groundwork!
Types and features
Crawling
Why Burp Suite Scanner?
Auditor/Scanner
Understanding the insertion points
Summary
Chapter 4: Exploring the Stages of an Application Penetration Test
Stages of an application pentest
Planning and reconnaissance
Client-end code analysis
Manual testing
Various business logic flaws
Second-order SQL injection
Pentesting cryptographic parameters
Privilege escalation
Sensitive information disclosures
Automated testing
Exploiting discovered issues
Digging deep for data exfiltration
Taking shells
Reporting
Getting to know Burp Suite better
Features of Burp Suite
Dashboard
Target
Proxy
Intruder
Repeater
Comparer
Sequencer
Decoder
Extender
Project options
User options
Summary
Chapter 5: Preparing for an Application Penetration Test
Setup of vulnerable web applications
Setting up Xtreme Vulnerable Web Application
Setting up OWASP Broken Web Application
Reconnaissance and file discovery
Using Burp for content and file discovery
Testing for authentication via Burp
Brute forcing login pages using Burp Intruder
Testing for authentication page for SQL injection
Summary
Chapter 6: Identifying Vulnerabilities Using Burp Suite
Detecting SQL injection flaws
Manual detection
Scanner detection
CO2 detection
Detecting OS command injection
Manual detection
Detecting XSS vulnerabilities
Detecting XML-related issues, such as XXE
Detecting SSTI
Detecting SSRF
Summary
Chapter 7: Detecting Vulnerabilities Using Burp Suite
Detecting CSRF
Detecting CSRF using Burp Suite
Steps for detecting CSRF using Burp Suite
Detecting Insecure Direct Object References
Detecting security misconfigurations
Unencrypted communications and clear text protocols
Default credentials
Unattended installations
Testing information
Default pages
Detecting insecure deserialization
Java Deserialization Scanner
Detecting OAuth-related issues
Detecting SSO protocols
Detecting OAuth issues using Burp Suite
Redirections
Insecure storage
Detecting broken authentication
Detecting weak storage for credentials
Detecting predictable login credentials
Session IDs exposed in the URL
Session IDs susceptible to session fixation attacks
Time out implementation
Session is not destructed after logout
Summary
Chapter 8: Exploiting Vulnerabilities Using Burp Suite - Part 1
Data exfiltration via a blind Boolean-based SQL injection
The vulnerability
The exploitation
Performing exfiltration using Burp Suite
Executing OS commands using an SQL injection
The vulnerability
Executing an out-of-band command injection
SHELLING
Stealing session credentials using XSS
Exploiting the vulnerability
Taking control of the user's browser using XSS
Extracting server files using XXE vulnerabilities
Exploiting the vulnerability
Performing out-of-data extraction using XXE and Burp Suite collaborator
Using Burp Suite to exploit the vulnerability
Exploiting SSTI vulnerabilities to execute server commands
Using Burp Suite to exploit the vulnerability
Summary
Chapter 9: Exploiting Vulnerabilities Using Burp Suite - Part 2
Using SSRF/XSPA to perform internal port scans
Performing an internal port scan to the backend
Using SSRF/XSPA to extract data from internal machines
Extracting data using Insecure Direct Object Reference (IDOR) flaws
Exploiting IDOR with Burp Suite
Exploiting security misconfigurations
Default pages
Directory listings
Scanning
Mapping the application
Using Intruder
Default credentials
Untrusted HTTP methods
Using insecure deserialization to execute OS commands
Exploiting the vulnerability
Exploiting crypto vulnerabilities
Brute forcing HTTP basic authentication
Brute forcing it with Burp Suite
Brute forcing forms
Automation with Burp Suite
Bypassing file upload restrictions
Bypassing type restrictions
Summary
Chapter 10: Writing Burp Suite Extensions
Setting up the development environment
Writing a Burp Suite extension
Burp Suite's API
Modifying the user-agent using an extension
Creating the user-agents (strings)
Creating the GUI
The operation
Executing the extension
Summary
Chapter 11: Breaking the Authentication for a Large Online Retailer
Remembering about authentication
Large online retailers
Performing information gathering
Port scanning
Discovering authentication weaknesses
Authentication method analysis
Weak storage for credentials
Predictable login credentials
Session IDs exposed in the URL
Session IDs susceptible to session fixations attacks
The session is not destructed after the logout
Sensitive information sent via unprotected channels
Summary
Chapter 12: Exploiting and Exfiltrating Data from a Large Shipping Corporation
Discovering Blind SQL injection
Automatic scan
SQLMap detection
Looking for entry points
Using SQLMap
Intruder detection
Exploitation
Summary
Other Books You May Enjoy
Index

📜 SIMILAR VOLUMES

Hands-on application penetration testing

📁 Hands-on application penetration testing with Burp Suite use Burp Suite and its features to inspect, detect, and exploit security vulnerabilities in your web applications

✍ Lozano, Carlos A;Shah, Dhruv;Walikar, Riyaz Ahemed 📂 Library 📅 2019 🏛 Packt Publishing 🌐 English

Practical Web Penetration Testing: Secur

📁 Practical Web Penetration Testing: Secure web applications using Burp Suite, Nmap, Metasploit, and more

✍ Gus Khawaja 📂 Library 📅 2018 🏛 Packt Publishing 🌐 English

<p><b>Learn how to execute web application penetration testing end-to-end</b></p><h4>Key Features</h4><ul><li>Build an end-to-end threat model landscape for web application security</li><li>Learn both web application vulnerabilities and web intrusion testing</li><li>Associate network vulnerabilities

Practical Web Penetration Testing: Secur

📁 Practical Web Penetration Testing: Secure Web Applications Using Burp Suite, Nmap, Metasploit, and More

✍ Gus Khawaja 📂 Library 📅 2018 🌐 English

Learn how to execute web application penetration testing end-to-end Key Features Build an end-to-end threat model landscape for web application security Learn both web application vulnerabilities and web intrusion testing Associate network vulnerabilities with a web application infrastructure Book D

Burp Suite Cookbook: Web application sec

📁 Burp Suite Cookbook: Web application security made easy with Burp Suite

✍ Dr. Sunny Wear 📂 Library 📅 2023 🏛 Packt Publishing 🌐 English

<p><span>Find and fix security vulnerabilities in your web applications with Burp Suite</span></p><h4><span>Key Features</span></h4><ul><li><span><span>Set up and optimize Burp Suite to maximize its effectiveness in web application security testing</span></span></li><li><span><span>Explore how Burp

Burp Suite Cookbook: Web application sec

📁 Burp Suite Cookbook: Web application security made easy with Burp Suite

✍ Dr. Sunny Wear 📂 Library 📅 2023 🏛 Packt Publishing Pvt Ltd 🌐 English

Burp Suite is an immensely powerful and popular tool for web application security testing. This book provides a collection of recipes that address vulnerabilities in web applications and APIs.

Burp Suite cookbook practical recipes to

📁 Burp Suite cookbook practical recipes to help you master web penetration testing with Burp Suite

✍ Wear, Sunny 📂 Library 📅 2018 🏛 Packt Publishing Limited 🌐 English

Get hands-on experience in using Burp Suite to execute attacks and perform web assessments Key Features Explore the tools in Burp Suite to meet your web infrastructure security demands Configure Burp to fine-tune the suite of tools specific to the target Use Burp extensions to assist with different