Burp suite is the de-facto proxy application for web security testers. This two-day training will explore the different capabilities of burp proxy application, also dive into the extensions and tooling options to perform improved application security test cases.
The training will start with quick overview of burp usage, different settings, features, some commonly useful extensions and then explore deep into its extension APIs to build own custom extensions. We will provide suitable development environment in Java and Python platforms. This will be hands-on training and participants will learn how to automate different application security test scenarios and build burp extensions to automate them with the help of given templates.
Participants are supposed to bring laptop installed following software
- Java JDK
- NetBeans IDE
- Sublime Text
- Browser (Firefox, Chrome)
- VirtualBox latest version