Web Application Security Testing with Burp Suite
Setup Burp Suite proxy
Intercept, modify and forward HTTP requests
Brute force login page with a dictionary list and exploit file upload and SQL injection vulnerabilities
By the end of this project, you will learn the fundamentals of how to use Burp Suite Community Edition. This tool helps security professionals and penetration testers assess web application vulnerabilities. This course includes steps on how to configure the proxy between the browser and web application to intercept, view, alter, and forward HTTP requests and responses, and then analyze the results of your modifications. This course will also explain how to use a dictionary list to brute force logins, and how to exploit file upload and SQL injection vulnerabilities.
您要培养的技能
分步进行学习
在与您的工作区一起在分屏中播放的视频中,您的授课教师将指导您完成每个步骤:
Explain Burp Suite and its purpose in web application security.
Configure FoxyProxy and Firefox browser to use Burp as a proxy.
Intercept HTTP requests from a browser and send them to the Burp Suite Repeater.
Analyze HTTP requests, sniff credentials, and alter the request with Burp Suite Intercept.
Use dictionary attacks on website login pages to discover credentials with Burp Suite Intruder.
Learn how to exploit File Upload and SQL Injection vulnerabilities with Burp Suite.
指导项目工作原理
您的工作空间就是浏览器中的云桌面,无需下载
在分屏视频中,您的授课教师会为您提供分步指导
审阅
来自WEB APPLICATION SECURITY TESTING WITH BURP SUITE的热门评论
This course is helpful to understand basics of burp suite. i helps me to how to configure the proxy, how to scan and penetrate the website. I like to learn more about burp suite.
I found in few places there more explaination given than needed and in few places we need to browse seperately to understand what actually happened.And the rest was good.
Good explantion from the instructor but it was too short and the lab didnt have preinstalled burp application .But it went on good overall in understanding. Thank You..
It was a really good experience to know a new thing on website testing. But I would suggest you inform participants to install some tools by themselves in rhyme.
常见问题
常见问题
如果我购买指导项目,会得到什么?
购买指导项目后,您将获得完成指导项目所需的一切,包括通过 Web 浏览器访问云桌面工作空间,工作空间中包含您需要了解的文件和软件,以及特定领域的专家提供的分步视频说明。
指导项目可在台式设备和移动设备上学习吗?
由于您的工作空间包含适合笔记本电脑或台式计算机使用的云桌面,因此指导项目不在移动设备上提供。
指导项目的讲师是谁?
指导项目讲师是特定领域的专家,他们在项目的技能、工具或领域方面经验丰富,并且热衷于分享自己的知识以影响全球数百万的学生。
我能在完成指导项目后从中下载作品吗?
您可以从指导项目中下载并保留您创建的任何文件。为此,您可以在访问云桌面时使用‘文件浏览器’功能。
我能够退款吗?退款政策是如何规定的?
指导项目不符合退款条件。请查看我们完整的退款政策。
有助学金吗?
指导项目不提供助学金。
我能旁听指导项目并免费观看视频部分吗?
指导项目不支持旁听。
我需要具备多少经验才能做这个指导项目?
您可在页面顶部点按此指导项目的经验级别,查看任何知识先决条件。对于指导项目的每个级别,您的讲师会逐步为您提供指导。
我能直接通过 Web 浏览器来完成此指导项目,而不必安装特殊软件吗?
是,您可以在浏览器的云桌面中获得完成指导项目所需的一切。
指导项目的学习体验如何?
您可以直接在浏览器中于分屏环境下完成任务,以此从做中学。在屏幕的左侧,您将在工作空间中完成任务。在屏幕的右侧,您将看到有讲师逐步指导您完成项目。
还有其他问题吗?请访问 学生帮助中心。
Coursera Footer
