Burp Suite integration
You would be hard-pressed to find a professional web application penetration tester who doesn’t use or at least hasn’t heard of Burp Suite. This tool is produced by a company called PortSwigger. We talked a bit about the structure of Burp Suite in Chapter 1 and encourage you to refer to that chapter if you’d like to review it.
Let’s quickly grab a copy and set it up for you to play with. Within your Kali Purple instance, open a web browser – ideally Firefox, in this case – and go to https://portswigger.net/burp/documentation/desktop/getting-started/download-and-install. Then, scroll down until you see the Choose your software options under the Download section, as shown in Figure 10.24. Select the Community Edition option:
Figure 10.24 – Burp Suite download
The website should identify your operating system and present the correct option by default. If it doesn’t, you can...
