Shulou(Shulou.com)06/02 Report--

In this issue, the editor will bring you about the role of the proxy module in Burpsuite. The article is rich in content and analyzes and narrates it from a professional point of view. I hope you can get something after reading this article.

1. Proxy module

Intercept, view, and modify data transferred between all clients and servers

II. Intercept function

1. Forward: release the intercepted packet and continue to send it to the server

2. Drop: discard the intercepted packet and will not reach the server

3. Intercept is on/off: enable or disable the intercept feature

4. Action: sending intercepted packets to other modules is equivalent to right-clicking the intercepted packets.

5. Raw: view the data flow of the intercepted package

6. Params: view the parameters of the interceptor package

7. Headers: view the header information of the intercepted package

8. Hex: view the hexadecimal form of the interceptor package

III. HTTP history and WebSockets history

Displays request and response information for all intercepted packets

IV. Options function

1. Proxy Listeners proxy listening, adding, modifying and deleting proxy settings

2. Intercept Client Requests intercept request settings

If we just want to intercept the www.aiyou.com request packet, add the following information

3. Inertcept Server Response response interception

If we only want to intercept response packets with a status code of 302, add the following information

4. Intercept WebSockets Messages intercepts websocket information. It is enabled by default.

5. Response Modification response operation

Force hidden form fields to be displayed

Highlight forced fields

Activate invalid form fields

Delete input field length limit

Delete JavaScript form validation

Delete all JavaScript

Delete tag

Convert HTTPS links to HTTP

Remove security attributes from cookie

6. Match and Replace search and replace, automatically replace request and response related information, such as UA and other relevant information

7. TLS Pass Through, which roughly means that the destination address is connected directly to the SSL.

8. Miscellaneous other options

Use HTTP/1.0 to request the server

Respond to the client using HTTP/1.0

"Connection:close" is set in the response header

Set "Connections close" to receive requests

Remove the Proxy-* header from the request received

Remove unsupported encodings from the Accept-Encoding header that has received the request

Remove the Sec-WebSocket-Extensions header from the incoming request

Expand the requested gzip/deflate

Expand response gzip/deflate

Disable the Web interface for http://burpsuite

Suppress Burp error messages for browsers

Do not send projects to agent history or real-time tasks

If it is out of range, do not send the project to the agent history or real-time tasks

The above is the role of the proxy module in Burpsuite shared by the editor. If you happen to have similar doubts, you might as well refer to the above analysis to understand. If you want to know more about it, you are welcome to follow the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.