Intercepting and Editing HTTP Requests with Burp Suite


Overview

Burp Suite Community Edition is a tool for exploring http transactions between a client and the server. We can intercept, edit, decode, and examine all requests by proxying browser traffic through burp suite.

Examples

To keep it simple, explore Burp with the built in browser:

Viewing a webpage with Intercept turned off. In this mode the website flows freely through burp:

When intercept is on, each transaction is stopped for inspection:

Here we can edit the request before forwarding it onto the server. For example, I will edit the GET / and change it to GET /posts before clicking Forward:

Results from editing the GET:

All transactions are saved in the HTTP History tab: