When scanning a target, it’s important that your payloads are all in session otherwise you might not be hitting the attack surface. Tom from the development team demonstrates how Burp Scanner can automatically detect when a request is no longer in session, and replay the required steps to continue with a fresh one.
Check out our related blog post: portswigger.net/blog/web-appl...
Learn more at: portswigger.net/burp/vulnerab...
Негізгі бет Ғылым және технология Burp Suite Shorts | Automatic Session Handling
Пікірлер: 3