banner
lca

lca

真正的不自由,是在自己的心中设下牢笼。
HomeArchives图文

Some tips for using Burp Suite

#工具598
AI Translation
This post is translated from Chinese into English through AI.View Original
AI-generated summary
This text provides instructions on how to configure and use the Burp Suite tool. It explains how to enable and disable certain features, filter unwanted content, install extensions, enable dark mode, save project settings, load configuration files, filter unwanted websites, fix Chinese character display issues, and toggle between different views.

Start burpsuite and disable interception by default.

User options->Misc->Proxy Interception

Filter unwanted content.

Proxy->HTTP History->Filter

  • Hidden file types: gif, jpg, png, css, woff, woff2, svg, mp4, map
  • Filter OPTIONS requests ^OPTIONS /
  • Show only items within a range
  • Hide packets without a response

Keep it clean: Do not record items outside the range.

User options->Misc->Proxy History Logging

If you want to enable burpsuite plugins for scanning in the background, you can leave the logging open.

Install some burpsuite extensions.

Dark mode.

User options->Misc->Display

Save settings: Do not lose project progress.

Project settings -> Save project settings

The content saved in the project configuration file is as follows:

Load the project configuration in the first panel when opening burp.

Load the user configuration in the second panel when opening burp.

Load from configuration file -> Pick the file you saved, check Default to the above in the future.

Filter unwanted websites.

https://gist.github.com/vsec7/d5518a432b70714bedad79e4963ff320

.*\.google\.com 
.*\.gstatic\.com
.*\.mozilla\.com
.*\.googleapis\.com
.*\.pki\.goog

Download the configuration file and load it.

Chinese garbled characters.

User options->Misc->Display->HTTP Message Display

Disable passive scanning and scan all.

Dashboard

Switch to sitemap view.

Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.