How to Setup BurpSuite on Linux

BurpSuite is an Integrated Platform For Testing Web Applications, It allows us to intercept the data and the Web Application, it is used to Teach/Learn/Practice/Intercept the data packets being transfered between the Client and the Server, We can even brute force through BurpSuite. You can Buy the premium version once you become expert in Web app Pentesting.

BurpSuite

For this tutorial I am using FoxyProxy Addon in Firefox you can use any or even setup manual Proxy if you want.

Step 1 :- Open Firefox

Firefox

Step 2 :- Install Foxy Proxy

FoxyProxy is an advanced proxy management tool that completely replaces Firefox’s limited proxy capabilities.

Search for Foxy Proxy 
Click on Addon Link 
Install Foxy Proxy Standard after installing you can see it on the toolbar.

Foxy Proxy

Addon

Add to Extentions

Foxy Proxy on Toolbar

Step 3 :- Setting up Burpsuite

Open BurpSuite
Create Temporary Project by Clicking Next
Click Start Burp
Go to Proxy Tab
Go to Options subtab in Proxy Tab
Note down the IP Address and Port

BurpSuite

Start Temporary Project

Start Burp

Proxy Tab

Options Subtab

Note down IP and Port

Step 4 :- Configure Proxy

Click on Foxy Proxy Icon on toolbar in Firefox
Click option
Click Add
Give Title
Set Proxy Type to 'HTTP'
Fill above IP Adress from Burpsuite in Ip Address section
Fill above Port from Burpsuite in Port section
Click Save

Foxy Proxy Options

Add a Proxy

Fill Required Fields

Save The Proxy

Step 5 :- Setting up certificate

In Browser Go to http://{Above IP}:{Port}
Click on 'Get CA Certificate'
Save the file
Go to Settings
Go to Privacy and Security Tab
Go to Certificates Section
Click View Cerificate
Click on Import
Select the Certificate in popup
Click Ok

Download Certificate

Certificates

Import Certificate

Select Certificate

Now you can test it

Click on Foxy Proxy Icon on toolbar
Select the profile with your given title
Go to BurpSuite
Go to Proxy tab
Go to Intercept subtab
Click on 'Intercept is off' to turn on intercept
Go to Browser
Search Target
Go back to Burpsuite and chek if there is any request

Select Proxy

Turn Intercept on

Go to Target

See The Request

Congratulations!🎉 you have finally setup your Burpsuite for the Web Application Testing.

Meme of the day

From Infosec Writeups: A lot is coming up in the Infosec every day that it’s hard to keep up with. Join our weekly newsletter to get all the latest Infosec trends in the form of 5 articles, 4 Threads, 3 videos, 2 Github Repos and tools, and 1 job alert for FREE!