Burp Suite Community Edition is a tool for exploring
http transactions between a client and the server.
We can intercept, edit, decode, and examine all requests by proxying browser traffic through burp suite.
To keep it simple, explore Burp with the built in browser:
Viewing a webpage with Intercept turned off. In this mode the website flows freely through burp:
intercept is on, each transaction is stopped for inspection:
Here we can edit the request before
forwarding it onto the server. For example, I will edit the
GET / and change it to
GET /posts before clicking
Results from editing the
All transactions are saved in the
HTTP History tab: