I'm a beginner and sometimes I have 2 problems. One of them is Burpsuite, the other is that I don't know how to approach looking for a bug.
So, when I use burpsuite sometimes the proxy interferes with the https protocol and my browser gives me an error that my connection is not private and won't display the webpage. This is a problem for me because when Im bug hunting I cant intercept requests to see what the application is doing or modify user input which is important to me. I also have another problem where even if I do get a page to load and I try to intercept a request there will be millions of requests I have to forward and I have to constantly click the forward button even if I only wanted to modify one request. How can I make burpsuite more tolerable?
Another thing is that when I'm looking for bugs I'm just poking around and doing random things that obviously wouldn't work. I start off by doing recon. I do nmap scans, fuzz directories, and look for the frameworks the website is made of. I know alot of people are against scanning but I have learned a lot from them and they make content discovery easy. It's not like I completely rely on them either because I also manually scout the site for interesting things.
Then I try looking for opportunities to get unintended results such as changing the value of IDs (idor), looking for lack of sanitization (xss/sql), looking for files that might be exposed (information disclosure), and observing requests and responses (business logic).
Sometimes I think I won't find anything because I'm not educated enough about vulnerabilities and sometimes I could be missing crucial information to finding a bug that is right in front of me. Other times I think that maybe I'm not thinking outside of the box enough and I need to be creative to think of things that other people haven't. But it's hard to do that cuz I don't have an idea on how to think outside the box.
Is there anyway I can become a better bug hunter? I don't care if the things I find aren't critical or worthy of payment. I know that bug hunting isn't easy. I just want to make sure I'm on the right track to learning.
[link] [comments]
from hacking: security in practice https://ift.tt/px6kjoF
Comments
Post a Comment