如何使用Burp進行網站安全測試
- Using Burp to Test for the OWASP Top Ten
- Using Burp to Bypass Client-Side Controls
- Using Burp to Bypass Hidden Form Fields
- Using Burp to Bypass Client Side JavaScript Validation
- Using Burp to Attack Authentication
- Using Burp to Brute Force a Login Page
- Using Burp to Attack Session Management
- Using Burp to Hack Cookies and Manipulate Sessions
- Using Burp to Test Session Token Generation
- Using Burp to Test Session Token Handling
- Bypassing client-side controls
- Attacking authentication
- Attacking session management
- Testing access controls
- Testing for injection vulnerabilities
- Finding cross-site scripting vulnerabilities (XSS)
- Testing for cross-site request forgery (CSRF)
- Testing for insecure direct object references
- Finding security misconfiguration issues
- Testing for sensitive data exposure
- Finding open redirection vulnerabilities