1、Setting up the envrionment for burp Extensions  

before we can write extensions we need to ensure that the environment is set up. this is very important if you want to avoid hours and hours of the frustration with youself  more information  can be found at HTTP :http://www.burpextensions.com/tutorials/setting-up-the-pythonjython-environment-for-burpsuite/.

2、Writing your first burp Suite Extension 

A gentle introduce to writing your first exteniso use the code provided here as your boiler plate to test whrtehr your environemt has been set up properly iff the extension gets added without any errors then you are foog to go  , more information be found at http://blog.portswigger.net/2012/12/writing-yourfirst-burp-extension.html.

3- Write a simple Burp Extension in python :

Using Burp extension and writing your own this has be the place where ou lean how to write a Burp Extension in Python   the code is simple the post explains all that is required and the extension will useful things as soon as it is added ,More information can be found at http://www. burpextensions.com/tutorials/tutorial-python-extension-post-1/and http://www.burpextensions.com/downloads/pythontutorial-1.txt.

Burp Extensions tutorials :

Now that you have read the offical document you can  make full use of these toutorials that deep into extensions more information about burp Sutie extension toutorials can be found at http://www.burpextensions.com/category/tutorials/.

Extending Burp  Suite Proxy with Extensions

http://blog.opensecurityresearch.com/2014/03/extending-burp.html.

Burp suite Crawljax selenium JUint integration

https://github.com/malerisch/burp-csj.

Writing and debugging Burp Suiite Extension in Python :  http://sethsec. blogspot.in/2014/01/writing-and-debugging-burpsuite.html.

Searching Github for Burp Suite Extensions :https://github.com/search?utf 8=%E2%9C%93&q=burp+extension.

and if you want to Writing in any language you want  gey more information as :

https://github.com/liftsecurity/burpbuddy.

How we Tsting Mobile application for web Security using Burp Suite

some  useful resources  to test mobile application for web security using Burp Suite can be found at the foolwing locations

how to St UP An ios Pen Testing Envrionment : http://eightbit.io/post/64319534191/how-to-set-up-an-ios-pen-testing-environment

Import Burp Suite Certificate For android pentesting without root :http://backtosecurity.com/importing-burp-certificate-forandroid-
pentesting-without-root/

Windows Mobile Burp Suite Proxy setup :http://pentest-forum.com/index. php?topic=688.0

Pentesting Web Security with anti CSRE token using Burp PRO :http://www.notsosecure.com/blog/2014/07/02/pentesting-web-service-withcsrf-token-with-burp-pro/

IOS Assessment with Burp Suite +iFunBox +SQLLite :http://blog.nvisium. com/2014/08/ios-assessments-with-burp-ifunbox-sqlite.html

Burp Suite Extension tools的更多相关文章

  1. Burp Suite使用介绍

    Burp Suite使用介绍(一)  22人收藏 收藏 2014/05/01 19:54 | 小乐天 | 工具收集 | 占个座先 Getting Started Burp Suite 是用于攻击web ...

  2. Burp Suite使用介绍总结

    Burp Suite使用介绍(一) 小乐天 · 2014/05/01 19:54 Getting Started Burp Suite 是用于攻击web 应用程序的集成平台.它包含了许多工具,并为这些 ...

  3. Burp Suite初探

    Burp Suite 是用于攻击web 应用程序的集成平台.它包含了许多工具,并为这些工具设计了许多接口,以促进加快攻击应用程序的过程. 一.安装部署 需要配置java环境,首先安装java,然后配置 ...

  4. Burp Suite安装&环境配置&启动&浏览器设置代理

    一.简述 Burp Suite是一款使用Java编写的,用于Web安全审计与扫描套件.它集成了诸多实用的小工具以完成http请求的转发/修改/扫描等,同时这些小工具之间还可以 互相协作,在BurpSu ...

  5. Burp Suite使用

    Burp Suite是Web应用程序测试的最佳工具之一,其多种功能可以帮我们执行各种任务.请求的拦截和修改,扫描web应用程序漏洞,以暴力破解登陆表单,执行会话令牌等多种的随机性检查.本文将做一个Bu ...

  6. Burp Suite Walkthrough(英文版)

    Burp Suite is one of the best tools available for web application testing. Its wide variety of featu ...

  7. Burp Suite教程(英文版)

    In this article, we are going to see another powerful framework that is used widely in pen-testing. ...

  8. Burp Suite Walkthrough

    Burp Suite is one of the best tools available for web application testing. Its wide variety of featu ...

  9. 利用Burp Suite攻击Web应用

    i春秋作家:Passerby2 web应用测试综述: Web应用漏洞给企业信息系统造成了很大的风险.许多web应用程序漏洞是由于web应用程序缺乏对输入的过滤.简而言之Web应用程序利用来自用户的某种 ...

随机推荐

  1. LD SCore计算基因多效性、遗传度、遗传相关性(the LD Score regression intercept, heritability and genetic correlation)

    这篇文章是对之前啊啊救救我,为何我的QQ图那么飘(全基因组关联分析)这篇文章的一个补坑. LD SCore除了查看显著SNP位点对表型是否为基因多效性外,还额外补充了怎么计算表型的遗传度和遗传相关性. ...

  2. Python3 queue队列类

    class queue.PriorityQueue(maxsize=0) 优先级队列构造函数. maxsize 是个整数,用于设置可以放入队列中的项目数的上限.当达到这个大小的时候,插入操作将阻塞至队 ...

  3. NazoHell 攻略

    http://hell.one-story.cn/hell-start.html Level 0: http://nazohell.one-story.cn/nazohell-start.html 跳 ...

  4. Apollo环境配置

    一.背景 Apollo(阿波罗)是携程框架部门研发的分布式配置中心,能够集中化管理应用不同环境.不同集群的配置,配置修改后能够实时推送到应用端,并且具备规范的权限.流程治理等特性,适用于微服务配置管理 ...

  5. webbench源码学习笔记

    学习内容 一共五百多行代码,其中包含了linux编程常用的API.可以通过学习源码,把不熟悉的API练习练习. 1 如何使用webbench (1)查看参数帮助 (2)运行方法 即以上模拟30个客户端 ...

  6. PHP设计模式 - 享元模式

    运用共享技术有效的支持大量细粒度的对象 享元模式变化的是对象的存储开销 享元模式中主要角色: 抽象享元(Flyweight)角色:此角色是所有的具体享元类的超类,为这些类规定出需要实现的公共接口.那些 ...

  7. 10 Spring框架--基于注解和xml的配置的应用案例

    1.项目结构 2.基于xml配置的项目 <1>账户的业务层接口及其实现类 IAccountService.java package lucky.service; import lucky. ...

  8. [转帖]腾讯将使用AMD第二代霄龙处理器打造自研服务器:性能提升35%

    腾讯将使用AMD第二代霄龙处理器打造自研服务器:性能提升35% https://news.cnblogs.com/n/647499/ 我司的服务器是不是要少一块蛋糕了.. 作者:万南 今日,AMD 宣 ...

  9. JQuery 总结篇

    一.基础知识 1.jq的使用 在script块中: 方式1:$(function(){                                          $("[使用选择器] ...

  10. The Day Two 找到一个具有最大和的连续子数组,返回其最大和

    """ 给定一个整数数组 nums ,找到一个具有最大和的连续子数组(子数组最少包含一个元素),返回其最大和. 示例: 输入: [-2,1,-3,4,-1,2,1,-5, ...