Reviewing the improvements to Burp Suite – The Crawler + Basic Setup

The Crawler – Still arachnid based, never fear.

I have always wondered how application crawlers were going to deal with the problem of infinitely crawl-able application spaces that self enumerate your efforts to map an application into oblivion. Now with Burp’s new crawler being able to map a given application through induction, I think it will greatly speed up the process and present data in a much more understandable way. I will post more once I have tried it out.

But first!… I think that Haddix published a great starter intro to Burp Suite in case you haven’t used it before. Check it out here.

Great things to remember that Haddix points out:

Setting up multiple profiles in Chrome to keep Burp slender and fit
A VPN is useful for masking your IP in case your testing traffic gets you banned
Getting your Burp Cert installed in the keychain on your mac for Chrome can be tricky. Un-tricky it here.

theSecureMethod();

A soapbox for security

Reviewing the improvements to Burp Suite – The Crawler + Basic Setup