Dr. Drew Hwang, CIS, Cal Poly Pomona
Home
101
WDD
ECOMM
SWA
SP
Secure Web Development
Home
Basics
Offense
Defense
SDLC
Code
Access
Parameter
Perimeter
Browser
Industry
Resource
Home
Description
Topics
Tools
Final
Exercises
Browser Proxy
SQL Injection
Messageboard XSS
Session Hijacking
Individual Projects
Input Validation
Defending SQL Injection
CAPTCHA Integration
Cryptography/Hashing
Access Control
Defending CSRF
Team Projects
Security Requirements
Issues in SWA
Print
Exercise #1: Browser Proxy
Description
Perform an ethical hacking by altering form values in an online store.
Set
Firefox proxy
or
Chrome proxy
setting to
manual proxy
HTTP Proxy ("Address" in Chrome): localhost
Port: 8080
Set
Burp
proxy setting to
Port: 8080
Intercept On
In Firefox
Visit this
online store
Add one item into the cart
Let Burp intercept it
Change the quantity through Burp
View cart
News in the Making
(source:
cgisecurity.com
)