| Action | Purpose |
|---|---|
| Start Burp Suite | Launch GUI interface |
| Configure browser proxy (127.0.0.1:8080) | Route traffic through Burp |
| Enable Intercept | Pause and inspect HTTP requests |
| Forward / Drop | Send or discard intercepted request |
| Save request to Repeater | Send request for manual testing |
| Action | Purpose |
|---|---|
| Target > Site Map | View discovered endpoints |
| Right-click > Scan | Launch active scan on target |
| Dashboard > Issues | Review vulnerabilities found |
| Spider / Crawl | Automatically discover pages and forms |
| Filter by severity | Prioritize critical findings |
| Action | Purpose |
|---|---|
| Send request to Repeater | Manually modify and resend requests |
| Analyze response | Check for changes, errors, or leaks |
| Send request to Intruder | Automate payload injection |
| Set attack positions | Mark fields for fuzzing |
| Choose payload type | Use lists, numbers, or brute force |
| Action | Purpose |
|---|---|
| Install BApp extensions | Add custom modules and tools |
| Export scan results | Save findings to HTML or XML |
| Generate report | Create summary of vulnerabilities |
| Use Logger++ | Track all requests and responses |