Tuesday, July 3, 2012 0 comments
Popular web application penetration testing tool, Burp Suit has been updated. Burp Suit v1.4.10 is now available to download. This penetration testing tool analyse web application and find vulnerabilities in it.
Now Burp Suit fully support JSON requests. These are properly handled by Intruder and Scanner, for automatic placement of attack insertion points, and syntax is correctly colorized in the message viewer:
Its search engine includes options to change parameter locations when scanning. This helps to perform filters based on locations in while analyzing the app.
Now it supports many new attacks which includes frameable responses (Clickjacking), HTML5 cross-origin resource sharing, user agent-dependent responses and disabling of browser XSS filter.
Existing attack checks have also been improved. Now you can whether the SQL injection checks should include attacks that are specific to different database types. This makes this tool better than before.