Does it include payloads for common web attacks?

Yes, the skill includes a quick reference for common payloads used in SQL injection, Cross-Site Scripting (XSS), path traversal, and command injection.

Can I use this skill to automate security testing?

Yes, the skill provides specific workflows for using Burp Intruder for brute-forcing and fuzzing, as well as the Professional scanner for automated vulnerability detection.

How do I handle HTTPS traffic with this skill?

The skill includes troubleshooting and setup guidance for installing Burp's CA certificate to enable seamless interception of encrypted HTTPS traffic.

Does this skill require Burp Suite Professional?

While core features like the Proxy and Repeater work with the Community Edition, advanced automated scanning and full Intruder capabilities described in this skill require Burp Suite Professional.

Burp Suite Web Security Testing

Name: Burp Suite Web Security Testing
Author: claudiodearaujo

byclaudiodearaujo

0•

Seguridad y Pruebas

Provides comprehensive guidance for performing web application security audits and penetration testing using the Burp Suite toolset.

This skill empowers users to execute systematic web security assessments through Burp Suite, covering everything from initial HTTP traffic interception to advanced exploitation techniques. It provides detailed workflows for using core tools like the Proxy, Repeater, and Intruder, enabling effective vulnerability discovery for issues like SQL injection, XSS, and business logic flaws. Whether you're a security professional or a developer seeking to harden your application, this skill offers the structured methodology needed to navigate Burp's complex feature set and identify critical security risks.

Características Principales

01Step-by-step HTTP traffic interception and modification workflows

02Vulnerability scanning procedures and remediation advisory analysis

03Detailed manual testing patterns using Burp Repeater

04Guided setup for target scope management and traffic filtering

05Automated attack configurations for Burp Intruder and Fuzzing

060 GitHub stars

Casos de Uso

01Identifying and exploiting common vulnerabilities like SQLi, XSS, and Path Traversal

02Conducting professional penetration tests on authenticated web applications

03Testing complex business logic flaws such as price manipulation and privilege escalation

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front burp-suite-testing

For use in Claude.ai and ChatGPT

Download Skill